In an access request policy, a Security Policy Administrator can require that a requester provide a reason for requesting access to a password or session. Then, when requesting access, the user can select a predefined reason from a list. For example, you might use these access request reasons:
To configure access request reasons
Name: Enter a name for the reason.
Limit: 50 characters
Description: Enter a description for the reason.
Limit: 255 characters
To edit a reason, click Edit Reason.
The Reason dialog appears allowing you to modify the name or description.
To delete a reason, click Delete Reason.
In the confirmation dialog, click Yes.
Use the Appliance settings to view general information about the appliance, run diagnostic tools, and reset or update the One Identity Safeguard for Privileged Passwords hardware appliance.
Safeguard for Privileged Passwords can be set up to use a virtual appliance. For more information, see Using the virtual appliance and web management console.
Navigate to Administrative Tools | Settings | Appliance.
Where you execute a trusted, secure diagnostics package to help solve a configuration issue, synchronization issue, clustering issue, or other internal issues.
|Where you view general information about the appliance, as well as its performance utilization and the memory usage. This page also contains power controls to shut down or restart your appliance.|
Where you run diagnostic tests on your appliance.
Where you enable or disable the Application to Application functionality.
Where you perform a factory reset to revert your appliance to its original state when it first came from the factory.
Where you add or update a Safeguard for Privileged Passwords license.
|Where you enable and disable lights out management, which allows you to remotely manage the power state and serial console to Safeguard for Privileged Passwords using the baseboard management controller (BMC).|
|Where you view and configure the primary network interface, and if applicable, the sessions network interface.|
Where you configure the operating system for the virtual appliance.
Where you create a support bundle containing system and configuration information to send to One Identity Support to analyze and diagnose issues with your appliance.
If you have the embedded sessions licensed, this is where you enable (and disable) session debug logging to be included in a support bundle.
Where you enable Network Time Protocol (NTP) and set the primary and secondary NTP servers.
|Where you upload and install an update file. For more information, see Updates.|
In addition to the appliance options, One Identity Safeguard for Privileged Passwords provides these troubleshooting tools:
|View the details of specific events or user activity. |
|An LCD screen on the appliance to view the status of the appliance as it is starting up or shutting down. |
|A terminal or laptop connected directly to the appliance to view basic appliance information, restart the appliance remotely, shut down the appliance, reset the bootstrap administrator’s password to its initial value, perform a factory rest, or to generate and send a support bundle to a Windows share. |
Appliance Administrators can execute a trusted, secure appliance diagnostics package to help solve issues with configuration, synchronization, and clustering as well as other other internal challenges. The appliance diagnostics package is available from the web support kiosk, not the serial kiosk. The appliance diagnostics package can be used even when the appliance is in quarantine. To protect against external threats, Safeguard rejects illegitimate appliance diagnostics packages. The manifest file in the appliance diagnostics package lists criteria which may include the minimum Safeguard version, appliance ID, and expiration timestamp UTC. New product code and database changes are not included in an appliance diagnostics package.
Navigate to Administrative Tools | Settings | Appliance | Appliance Information. The following displays on the top of the Appliance Information pane.
The name of the appliance.
To modify this name, click Edit.
|Host||The appliance network server IP address.|
|Client Version||The version of the Safeguard for Privileged Passwords desktop client application.|
|Appliance Version||The version of the Safeguard for Privileged Passwords Appliance.|
|Uptime||The amount of time (hours and minutes) the appliance has been running.|
In addition, this view contains two tabbed pages to display general information and performance data for the appliance.
Disk displays the amount of used and free disk space.
|Manufacturer||The system manufacturer.|
|Model||The system model.|
|Bios Description||The system bios description.|
|Bios Serial Number||The system's bios serial number.|
|Serial Number||The media access control address (MAC address) assigned to the network interface for communications.|
|Ship Date||The appliance ship date.|
|Processor||The processor information.|
|Virtual Memory||The virtual memory allocation.|
The physical memory allocation.
TLS 1.2 only
Click this toggle to disable earlier versions of the Transport Layer Security (TLS) protocol and use only TLS v1.2.
Use the power controls to shut down or restart your appliance.
|Processor||Displays the CPU information and the performance utilization of your appliance.|
|Memory||Displays the memory usage of your appliance; what is currently in use and what is free.|