One Identity Management Console for Unix 2.5.2 - Administration Guide

One Identity Privileged Access Suite for Unix Introducing One Identity Management Console for Unix Installing Management Console for Unix Preparing Unix hosts Working with host systems Managing local groups Managing local users Active Directory integration Authentication Services integration Privilege Manager integration
Getting started Configure a primary policy server Configure a secondary policy server Install PM agent or Sudo plugin on a remote host Security policy management
Opening a policy file Edit panel commands Editing PM policy files Reviewing the Access and Privileges by User report Reviewing the Access and Privileges by Host report
Event logs and keystroke logging
Reporting Setting preferences
User preferences System preferences
Security Troubleshooting tips
Auto profiling issues Active Directory Issues Auditing and compliance Cannot create a service connection point Check Authentication Services agent status commands not available CSV or PDF reports do not open Database port number is already in use Elevation is not working Hosts do not display Import file lists fakepath Information does not display in the console License information in report is not accurate Out of memory error Post install configuration fails on Unix or Mac Privilege Manager feature issues Profile task never completes questusr account was deleted Readiness check failed Recovering from a failed upgrade Reports are slow Reset the supervisor password Running on a Windows 2008 R2 domain controller Service account login fails Setting custom configuration settings Single Sign-on (SSO) issues JVM memory tuning suggestions Start/stop/restart Management Console for Unix service Toolbar buttons are not enabled UID or GID conflicts
System maintenance Command line utilities Web services Database maintenance About us

Reviewing host properties

Once you add and profile a host you can review the system, user, and group information, as well as the current status of the host.

To review host properties

  1. Select the host and click the Properties toolbar button from the Host panel of the toolbar.

    Note: You can also double-click a host name to open its Properties or right-click the host and choose Properties from the context menu.

  2. The mangement console adds a tab to the All Hosts view for the selected host with these tabs:
    • Details
    • Users
    • Groups
    • Readiness Check Results
    • Software
    • Host Access Control (console must be configured for AD and host must be joined to AD)
  3. To close a host properties, click the close button in the right-hand corner of the host's properties.

Removing hosts from Management Console

Removing a host means that you will no longer be able to access information about the host or manage the host's local users and groups from the mangement console. The host is removed from the database, but this does not change the configuration of the Authentication Services Agent, PM Agent, or Sudo Plugin host, or prevent further Active Directory log on.

To remove hosts from mangement console

  1. Select one or more hosts from the All Hosts view and click the Remove Host toolbar button.
  2. Confirm you want to remove the selected hosts from the mangement console.

    Once removed, the mangement console no longer lists the Unix hosts on the All Hosts view. In addition, associated users and groups for these hosts are removed from the mangement console and you will lose the system user markings identified for any of these users.

Importing SSH host key

You can upload a new SSH key and replace the one that is cached for a host on the server by importing an SSH host key.

To import SSH host key

  1. Select a managed host from the All Hosts view and click the Import SSH Host Key toolbar button.
  2. At the Import SSH host key from file dialog, browse to select an SSH host key file.

    See Known_hosts file format for details.

For more information, see Managing SSH host keys.

Managing local groups

The profiling operation imports system information about the local groups so you can remotely manage them through the mangement console.

A host's properties contains a Groups tab, from which you can manage the local groups.

The topics in this section step you through the local group management tasks you can perform from the Groups view. For a detailed description of these tasks, please refer to the online help.

Related Documents