The Administrative Tools allow you to add all the objects you need to write access request policies, such as users, accounts, and assets. From this view, you can also configure all of the Safeguard for Privileged Passwords settings.
|
Note: You must have administrator permissions to use the |
The navigation pane along the left side of the console gives you access to these administrative tools.
Administrative Tools | Description | Administrator permissions |
---|---|---|
Toolbox | Where you can gain quick access to all the tasks you can perform from a single portal. | Users with any Safeguard administrator privileges. |
Accounts | Where you associate account identities with managed systems. | Asset Administrator or Auditor |
Account Groups | Where you define sets of accounts which you can add to the scope of an access request policy. | Auditor or Security Policy Administrator |
Assets | Where you add computers, servers, network devices, or applications to be managed by a Safeguard for Privileged Passwords Appliance. | Asset Administrator or Auditor |
Asset Groups | Where you define sets of assets which you can add to the scope of an access request policy. | Auditor or Security Policy Administrator |
Directories | Where you add external identity providers such as Microsoft Active Directory to Safeguard for Privileged Passwords. | Auditor or Directory Administrator |
Entitlements | Where you specify the access request policies that restrict system access to authorized users. | Auditor or Security Policy Administrator |
Partitions | Where you define collections of assets which can be used to segregate assets for delegation. | Asset Administrator, Auditor, or delegated partition owner |
Settings |
Where you configure Safeguard for Privileged Passwords to run backups, install updates, manage clusters, manage certificates, enable event notifications, configure external integration, define profile configurations settings, define user password rules, define discovery rules, and run troubleshooting tools. |
Users with any Safeguard administrator privileges, however, the settings available depend on the administrative permissions assigned. |
Users | Where you set up users who can log into Safeguard for Privileged Passwords. |
Bootstrap, Asset Administrator, Auditor, Authorizer Administrator, Help Desk Administrator, Security Policy Administrator, or User Administrator |
User Groups | Where you define sets of Safeguard for Privileged Passwords users which you can add to an entitlement. |
Bootstrap, Auditor, Authorizer Administrator, Security Policy Administrator, or User Administrator |
All of the Administrative Tools views have the following components, except for the Toolbox and Settings:
The toolbar at the top of the views (except for the Toolbox and Settings), contain these options, depending on your Administrator permissions and the administrative tool you are in.
Option | Description |
---|---|
Add objects to the Safeguard for Privileged Passwords appliance. | |
Remove objects from the appliance. | |
Refresh the screen. | |
Only available for Accounts, Assets and Users: Add a set of objects from a .csv file. For more information, see Importing objects. | |
|
Only available for Users: Menu options include: Set Password and Unlock accounts. For more information about these options, refer to Setting a local user's password and Unlocking a user's account. |
Only available for Accounts: Menu options include: Set Password, Check Password, and Change Password. For more information, see Checking, changing, or setting an account password. | |
Only available for Users: Set administrator permissions for users. For more information, see Administrator permissions. | |
Only available for Partitions: Set a directory or partition as the default. For more information, see Setting a default partition, Setting a default partition profile, and Setting a default directory profile. | |
|
Only available for Assets: Add the SSH Key to the selected asset. For more information, see Downloading a public SSH key. |
Only available for Accounts: Display the password history for the selected account. For more information, see Viewing password archive. | |
Only available for Accounts: Enable or disable access request services for the selected account. | |
Only available for Assets: Add or manage asset discovery jobs. For more information, see Discovery. | |
Only available for Assets: Display the hidden assets. | |
Only available for Assets: Hide assets marked as "Ignore". | |
Only available for Directories: Run the directory addition and deletion synchronization process on demand. In addition, it runs through the discovery, if there are discovery rules and configurations set up. |
The search box located at the top of the object list pane can be used to filter the data being displayed. When you enter a text string into the search box, the results include items that have a string attribute that "contains" the text that was entered. This same basic search functionality is also available for many of the detail panes and selection dialogs allowing you to filter the data displayed in the associated pane or dialog.
When searching for objects in the object lists, an attribute search functionality is also available where you can filter the results, based on a specific attribute. That is, the search term matches if the specified attribute "contains" the text. To perform an attribute search, click the icon to select the attribute to be searched.
Rules for using the search functionality:
Try using quotes and omitting quotes. As you use the product, you will become familiar with the search requirements for the search fields you frequent. Safeguard may perform a general search (for example, omits quotes) or a literal search (for example, includes quotes). Example scenarios follow:
On the Users pane search box:
For example, enter T in the search box to search for items that contain the letter "T", or enter sse to list all items that contain the string "sse", such as "Asset".
|
Note: The status bar along the bottom of the console shows the number of items returned. |
To clear the search criteria, click Clear.
When you clear the search criteria, the original list of objects are displayed.
To conduct an attribute search
The attributes available for searching are dependent on the type of object being searched. The search drop-down menu lists the attributes that can be selected.
The drop-down menu lists a limited number of attributes that can be searched; however, you can perform an attribute search using the English name of any attribute as it appears in the API. Nested attributes can be chained together using a period (.). To see a list of all the attributes, see the API documentation. For information about the API, see How do I access the API.
Click the icon and select the attribute to be searched.
The selected attribute is added to the search box. For example, if you select Last Name, LastName: is added to the search box.
In the search box, enter the text string after the colon in the attribute label.
You can specify multiple attributes, repeating these steps to add an additional attribute to the search box. Do not add punctuation marks, such as commas or colons to separate the different attributes. When multiple attributes are included, all search criteria must be met in order for an object to be included in the results list.
As you type, the list displays items whose selected attributes contain the text that was entered.
|
Note: The status bar along the bottom of the console shows the number of items returned. |
To clear the search criteria, click Clear.
When you clear the search criteria, the original list of objects are displayed.
By default the objects are listed in alphabetical order; however, you can use the controls located above the list to sort the object list.
To sort the object lists
To sort the list of Account Groups, open the drop-down menu under the Search box and choose one of the following options before sorting the list in either Ascending or Descending order:
To sort the list of Asset Groups, open the drop-down menu under the Search box and choose one of the following options before sorting the list in either Ascending or Descending order:
To sort the list of Directories, open the drop-down menu under the Search box and choose one of the following options before sorting the list in either Ascending or Descending order:
To sort the list of Partitions, open the drop-down menu under the Search box and choose one of the following options before sorting the list in either Ascending or Descending order:
© 2021 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy