Chat now with support
Chat with Support

Identity Manager 9.2.1 - Authorization and Authentication Guide

About this guide One Identity Manager application roles Granting One Identity Manager schema permissions through permissions groups Managing permissions to program functions One Identity Manager authentication modules OAuth 2.0/OpenID Connect authentication Multi-factor authentication in One Identity Manager Granular permissions for the SQL Server and database Installing One Identity Redistributable Secure Token Server Preventing blind SQL injection Program functions for starting the One Identity Manager tools Minimum access levels of One Identity Manager tools

Displaying database users

To display information about a database user

  1. In the Designer, select the Base data > Security settings > Database server permissions > Database users category.

  2. Select the database user The following information is displayed:

    • Login name: The user's SQL Server login.

    • Database server login: Type of database user.

    • Access level: The access level for logging in. The access levels displayed are End user, Configuration user, Administrative user, System administrator, and Unknown.

  3. To show assigned database roles and server roles, select the Database or server role tab.

Related topics

Displaying users' access levels

NOTE:

  • If you select an existing database connection in the connections dialog, the access level of the login to be used is shown in a tooltip.

  • Some user interfaces expect configuration user permissions at least. Logging in as an end user is not possible in this case.

To find the access level of the logged in user

  • To display user information, double-click the icon in the program status bar

    On the System user tab, in the SQL access level field, you will see the access level for the current login. The access levels displayed are End user, Configuration user, Administrative user, System administrator, and Unknown.

Related topics

Displaying database role and server role permissions

Database role and sever role permissions are predefined and cannot be modified.

NOTE: The End user role database role is permitted for custom schema extensions.

To display database role and server role permissions

  • In the Designer, select a database role or server role in the Base data > Security settings > Database server permissions > Database and server roles category.

    This opens the List Editor showing each of the permissions.

Installing One Identity Redistributable Secure Token Server

The Redistributable Secure Token Server (RSTS) is a Secure Token Server component service designed to provide user authentication using standard federation protocols such as WS-Federation and OAuth 2.0. One Identity Manager uses the RSTS for authentication to web applications with Webauthn and OAuth 2.0.

For more information about the Webauthn configuration, see the One Identity Manager Web Application Configuration Guide.

Related topics
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating