Chat now with support
Chat with Support

Enterprise Single Sign-On 8.0.6 - Quest ESSO Console Administrator Guide

1. Overview 2 Authenticating to Quest ESSO Console and Managing Protection Modes 3 Searching the Directory Tree 4 Managing Administrators 5 Managing Security Profiles
5.1 Managing Time Slices 5.2 Managing Password Format Control Policies 5.3 Managing User Security Profiles 5.4 Managing Access Point Security Profiles 5.5 Managing Application Security Profiles 5.6 Defining Security Profiles Default Values 5.7 Managing User and Access Point Security Profiles Priorities
6 Managing Directory Objects
6.1 Managing Applications 6.2 Managing Users 6.3 Managing Access Points 6.4 Managing Representative Objects 6.5 Managing Clusters of Access Points 6.6 Selecting a Domain Controller
7 Importing/Exporting Security Profiles and Directory Objects 8 Managing Smart Cards
8.1 Assigning Smart Cards to Users 8.2 Formatting Smart Cards 8.3 Forcing a new PIN 8.4 Disabling Temporarily Smart Cards 8.5 Unlocking Smart Cards 8.6 Sending Smart Cards to a Blacklist 8.7 Extending the Validity of a Smart Card 8.8 Allowing Users to Renew their Smart Card Certificates 8.9 Displaying Smart Card Properties 8.10 Displaying the List of Supported Smart Cards 8.11 Managing Smart Card Configuration Profiles 8.12 Managing Loan Cards 8.13 Managing Smart Cards' Authentication Parameters 8.14 Managing Batches of Smart Cards
9 Managing SA Server Devices 10 Managing RFID Tokens 11 Managing Biometric Enrolment 13 Enabling the Public Key Authentication Method 14 Managing the Emergency Plan 15 Managing Audit Events 16 Managing Reports 17 Customizing Configuration Files 18 Creating Scripts Appendix A: Regular Expressions - Basic Syntax Appendix B: Listing Audit Events and Error Codes Appendix C: Correspondence Between Profile and Administration Rights

13.3.2 Importing an OCSP Responder

1.
In the Revocation Information area, select the Supports OCSP check box and click the Import button.
The Certificate file field becomes available.
4.
Once an OCSP responder has been taken into account, you may need to update its public key certificate. For that purpose, select the OCSP responder in the list, click the Certificate button and select the DER-encoded or PEM-encoded file that contains the public key certificate used by the OCSP responder to sign its responses.

13.3.3 Deleting a CRL Point of Distribution or an OCSP Responder

The removed CRL or OCSP responder is removed from the Quest ESSO PKA configuration in the domain directory and disappears from the list.

14 Managing the Emergency Plan

To enable UTF-8 characters, set the following registry key to 1: HKEY_LOCAL_MACHINE\SOFTWARE\Enatel\WiseGuard\FrameWork\
Directory\SendSSODataInUTF8.
1.
Click File | Emergency Plan.
The Emergency Plan window appears.
2.
Click the Configure button to configure the email content.
4.
5.
Click Activate and then click OK.
The Emergency Plan has been activated.

15 Managing Audit Events

D:\EKA_QS_workes\1344_Quesso\!_Shemes\Schema_ConsoleAuditEventStreams_US_1.tif
Audit events are created on users’ workstations and stored locally in audit cache files. Events are then collected (on a regular basis) by a Quest ESSO Controller that provides the Quest ESSO Audit Services. The controller stores the collected audit events in a local audit database.
The Quest ESSO Audit Services servers should then be configured to upload collected events into a consolidation central audit SQL database.
Administrators using Quest ESSO Console retrieve the audit events stored in the central audit database.
The Quest ESSO Controllers enabling the storage of the audit events if the server is disconnected from the SQL database.
The Quest ESSO Controller compiles all the events associated with user authentication and administration actions in all LDAP domains, and it provides a consistent overview of the history of the accesses to all your applications.
If the audit cache file is deleted, Quest ESSO sends an audit event to the Quest ESSO Controller. The event indicates the name of the workstation and when the file deletion was detected.
Quest ESSO Audit Servers
The Quest ESSO audit servers:
Make sure a Quest ESSO Controller is always available to Quest ESSO Administrators.
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating