Chat now with support
Chat with Support

One Identity Safeguard for Privileged Passwords 2.4 - Administration Guide

Introduction System requirements Installing the One Identity Safeguard for Privileged Passwords desktop client Setting up Safeguard for Privileged Passwords for the first time Getting acquainted with the console Privileged access requests Toolbox Accounts Account Groups Assets Asset Groups Directories Entitlements Partitions Settings
Access Request settings Appliance settings Asset Management settings Backup and Retention settings Certificate settings Cluster settings External Integration settings Messaging settings Profile settings Access settings Sessions settings
Users User Groups Disaster recovery Administrator permissions Preparing systems for management Troubleshooting Frequently asked questions
How do I access the API How do I audit transaction activity How do I configure external federation authentication How do I manage accounts on unsupported platforms How do I modify the appliance configuration settings How do I prevent Safeguard for Privileged Passwords messages when making RDP connections How do I see which assets and/or accounts are governed by a profile How do I set the appliance system time How do I setup discovery jobs How do Safeguard for Privileged Passwords database servers use SSL What are the access request states What do I do when an appliance goes into quarantine What is required for One Identity Safeguard for Privileged Passwords Privileged Sessions What is required to integrate with Starling Identity Analytics & Risk Intelligence What needs to be set up to use Application to Application What role-based email notifications are generated by default When does the rules engine run for dynamic grouping and tagging Why did the password change during an open request Why join Safeguard for Privileged Passwords to One Identity Starling
Safeguard Desktop Player Appendix: Safeguard ports

Copying an access request policy

To copy an access request policy

  1. Navigate to Administrative Tools | Entitlements.
  2. In Entitlements, select an entitlement from the object list and open the Access Request Policies tab.
  3. Choose a policy and click (or tap) Copy Access Policy.
  4. Enter a unique policy name.
  5. Edit the new policy's settings as desired.

Note: You cannot copy a policy and add it to another entitlement; policies are entitlement-specific.

Viewing policy details

To view the details of an entitlement's policy

  1. Navigate to Administrative Tools | Entitlements.
  2. In Entitlements, select an entitlement from the object list and open the Access Request Policies tab.
  3. Select a policy and click (or tap) Details.

    The policy's properties dialog displays.

  4. To edit the properties, double-click (or double-tap) a property pane (General, Scope, Requester, Approver, Reviewer, Access Config, Session Settings, Time Restrictions, or Emergency), or click (or tap) the  Edit icon to the right of a property pane.

    The Access Request Policies dialog displays allowing you to make the necessary changes.

    Note: You must have Security Policy Administrator permissions to modify policy settings.

Modifying an entitlement

To modify an entitlement

  1. Navigate to Administrative Tools | Entitlements.
  2. In Entitlements, select an entitlement.
  3. Select the view of the entitlement's information you want to modify (General, Users, or Access Request Policies).

    For example:

    • To change the selected entitlement's name, description, or time restrictions, double-click (or double-tap) the General information on the General tab or click (or tap) the  Edit icon.

      Note: You can also double-click (or double-tap) an entitlement name to open the General settings edit window.

    • To add authorized requesters to the selected entitlement, switch to the Users tab.

      For more information, see Adding users or user groups to an entitlement.

    • To modify an access request policy, switch to the Access Request Policies tab.

      For more information about access request policy details, see Creating an access request policy.

  4. To change an entitlement's priority, select the priority number in the entitlement list and enter another number. For more information, see About priority precedence.
  5. To view or export the details of each operation that has affected the selected entitlement, switch to the History tab.

Deleting an entitlement

Important: When you delete an entitlement, Safeguard for Privileged Passwords deletes all access request policies associated with that entitlement.

To delete an entitlement

  1. Navigate to Administrative Tools | Entitlements.
  2. In Entitlements, select an entitlement from the object list.
  3. Click (or tap) Delete Selected.
  4. Enter the name of the entitlement to confirm you want to delete the entitlement.
Related Documents