Chat now with support
Chat with Support

One Identity Safeguard for Privileged Passwords 2.4 - Administration Guide

Introduction System requirements Installing the One Identity Safeguard for Privileged Passwords desktop client Setting up Safeguard for Privileged Passwords for the first time Getting acquainted with the console Privileged access requests Toolbox Accounts Account Groups Assets Asset Groups Directories Entitlements Partitions Settings
Access Request settings Appliance settings Asset Management settings Backup and Retention settings Certificate settings Cluster settings External Integration settings Messaging settings Profile settings Access settings Sessions settings
Users User Groups Disaster recovery Administrator permissions Preparing systems for management Troubleshooting Frequently asked questions
How do I access the API How do I audit transaction activity How do I configure external federation authentication How do I manage accounts on unsupported platforms How do I modify the appliance configuration settings How do I prevent Safeguard for Privileged Passwords messages when making RDP connections How do I see which assets and/or accounts are governed by a profile How do I set the appliance system time How do I setup discovery jobs How do Safeguard for Privileged Passwords database servers use SSL What are the access request states What do I do when an appliance goes into quarantine What is required for One Identity Safeguard for Privileged Passwords Privileged Sessions What is required to integrate with Starling Identity Analytics & Risk Intelligence What needs to be set up to use Application to Application What role-based email notifications are generated by default When does the rules engine run for dynamic grouping and tagging Why did the password change during an open request Why join Safeguard for Privileged Passwords to One Identity Starling
Safeguard Desktop Player Appendix: Safeguard ports

Telnet

Use Telnet to test TCP/IP connectivity between the Safeguard for Privileged Passwords Appliance and the specified host.

Navigate to Administrative Tools | Settings | Appliance | Diagnostics.

Table 143: Telnet diagnostic test settings
Property Description

Connect through

Select a network interface to issue the diagnostic command:

  • Network (X0): Select to test the primary interface.
  • Sessions (X1): Select to test the sessions interface. If one or more Safeguard Sessions Appliances are joined to Safeguard for Privileged Passwords, X1 is not available in Safeguard for Privileged Passwords.

IP or Hostname

Enter the remote host's IP address or Hostname.

Port

Enter the port number on a target host.
Connect

Click (or tap) Connect to run the test.

The test results display in the Output window.

More Settings

Select More Settings to configure this additional (optional) option:

  • Connection Timeout

Show Routes

Use Show Routes to retrieve routing tables to further investigate connectivity issues.

Navigate to Administrative Tools | Settings | Appliance | Diagnostics.

Table 144: Show Routes diagnostic test settings
Property Description

Show Routes through

Select a network interface to issue the diagnostic command:

  • Network (X0): Select to retrieve routing tables for the primary interface.
  • Sessions (X1): Select to retrieve routing tables for the sessions interface. If one or more Safeguard Sessions Appliances are joined to Safeguard for Privileged Passwords, X1 is not available in Safeguard for Privileged Passwords.
Show Routes

Click (or tap) Show Routes to run the test.

The test results display in the Output window.

Enable or Disable Services (Application to Application service)

Navigate to Administrative Tools | Settings | Appliance | Enable or Disable Services.

The Enable or Disable Services pane on the Appliance settings page, displays a single toggle, Application to Application Enabled, for enabling or disabling the Application to Application service. It is the responsibility of the Appliance Administrator to manage the Application to Application service.

The Application to Application service is disabled by default. The toggle appears blue with the switch to the right when the service is enabled and gray with the switch to the left when the service is disabled.

Factory Reset from the desktop client

As an Appliance Administrator, you can use the Factory Reset feature to reset a Safeguard for Privileged Passwords Appliance to recover from major problems or to clear the data and configuration settings on the appliance.

Caution: Care should be taken when performing a factory reset against an appliance, because this operation removes all data and audit history, returning it to its original state when it first came from the factory. The appliance must go through configuration again as if it had just come from the factory. For more information, see Setting up One Identity Safeguard for Privileged Passwords for the first time.

In addition, performing a factory reset may change the default SSL certificate and default SSH host key.

NOTE: Clustered environment: Performing a factory reset on a clustered appliance will not automatically remove the appliance from a cluster. You will need to unjoin an appliance that has been factory reset from the cluster. The factory reset appliance must be configured again. For more information, see Setting up One Identity Safeguard for Privileged Passwords for the first time.

To perform a factory reset from the desktop client

  1. Navigate to Administrative Tools | Settings | Appliance | Factory Reset.
  2. Click (or tap) Factory Reset.
  3. In the Factory Reset confirmation dialog, enter the words Factory Reset and click (or tap) OK.

    The appliance will go into Maintenance mode to revert the appliance. Once completed, you will be prompted to restart the desktop client. If the appliance had been in a cluster, you may need to unjoin the factory reset appliance. The factory reset appliance must be configured again. For more information, see Setting up One Identity Safeguard for Privileged Passwords for the first time. In addition, when you log into the appliance, you will be prompted to add your Safeguard for Privileged Passwords licenses.

Related Documents