Chat now with support
Chat with Support

Enterprise Single Sign-On 8.0.6 - Quest ESSO Console Administrator Guide

1. Overview 2 Authenticating to Quest ESSO Console and Managing Protection Modes 3 Searching the Directory Tree 4 Managing Administrators 5 Managing Security Profiles
5.1 Managing Time Slices 5.2 Managing Password Format Control Policies 5.3 Managing User Security Profiles 5.4 Managing Access Point Security Profiles 5.5 Managing Application Security Profiles 5.6 Defining Security Profiles Default Values 5.7 Managing User and Access Point Security Profiles Priorities
6 Managing Directory Objects
6.1 Managing Applications 6.2 Managing Users 6.3 Managing Access Points 6.4 Managing Representative Objects 6.5 Managing Clusters of Access Points 6.6 Selecting a Domain Controller
7 Importing/Exporting Security Profiles and Directory Objects 8 Managing Smart Cards
8.1 Assigning Smart Cards to Users 8.2 Formatting Smart Cards 8.3 Forcing a new PIN 8.4 Disabling Temporarily Smart Cards 8.5 Unlocking Smart Cards 8.6 Sending Smart Cards to a Blacklist 8.7 Extending the Validity of a Smart Card 8.8 Allowing Users to Renew their Smart Card Certificates 8.9 Displaying Smart Card Properties 8.10 Displaying the List of Supported Smart Cards 8.11 Managing Smart Card Configuration Profiles 8.12 Managing Loan Cards 8.13 Managing Smart Cards' Authentication Parameters 8.14 Managing Batches of Smart Cards
9 Managing SA Server Devices 10 Managing RFID Tokens 11 Managing Biometric Enrolment 13 Enabling the Public Key Authentication Method 14 Managing the Emergency Plan 15 Managing Audit Events 16 Managing Reports 17 Customizing Configuration Files 18 Creating Scripts Appendix A: Regular Expressions - Basic Syntax Appendix B: Listing Audit Events and Error Codes Appendix C: Correspondence Between Profile and Administration Rights

17 Customizing Configuration Files

Quest ESSO Console uses configuration files that can be customized if the default configuration parameters do not meet your requirements. You can customize the list of supported authentication tokens and user information retrieved from the LDAP directory.

17.1 Importing a List of Supported Authentication Tokens

1.
In the File menu, select Configuration.
2.
Click the Authentication tab.
3.
Click the Select button, and in the displayed window, browse to the new XML configuration file.
4.
5.
Restart Quest ESSO Controllers and workstations to take into account the new XML file.

17.2 Adding User Attribute Information

As described in Section 6.2.1, "Displaying User General Information", you can display Extended User information using the Other button of the User Information tab. This section describes how to configure the information displayed by this button.
1.
In the File menu, select Configuration.
2.
Click the Other User Attributes tab.
3.
In the Attributes area, add the LDAP attributes you want to see appear in the User Information tab as follows:
4.
Fill-in the Attribute description, Attribute type and LDAP fields as described in the following Tab Description section.
5.
Click Add.
At any time, you can click the Delete button to delete an entry of the attributes list.
6.
In the Audit Identifier area, you can choose the LDAP attribute you want to use to identify users in audit events (by default, a GUID is used): see the following Tab Description for more details.
7.
b)
Attribute type drop-down list
Type of the attribute: Integer or String.
c)
LDAP field
a)
b)
Test button

18 Creating Scripts

Quest ESSO Console allows you to write scripts. This may help you to batch process accesses to applications and to automate accounts creation. For more details, see the following topics:
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating