Chat now with support
Chat with Support

One Identity Safeguard for Privileged Passwords 2.4 - Administration Guide

Introduction System requirements Installing the One Identity Safeguard for Privileged Passwords desktop client Setting up Safeguard for Privileged Passwords for the first time Getting acquainted with the console Privileged access requests Toolbox Accounts Account Groups Assets Asset Groups Directories Entitlements Partitions Settings
Access Request settings Appliance settings Asset Management settings Backup and Retention settings Certificate settings Cluster settings External Integration settings Messaging settings Profile settings Access settings Sessions settings
Users User Groups Disaster recovery Administrator permissions Preparing systems for management Troubleshooting Frequently asked questions
How do I access the API How do I audit transaction activity How do I configure external federation authentication How do I manage accounts on unsupported platforms How do I modify the appliance configuration settings How do I prevent Safeguard for Privileged Passwords messages when making RDP connections How do I see which assets and/or accounts are governed by a profile How do I set the appliance system time How do I setup discovery jobs How do Safeguard for Privileged Passwords database servers use SSL What are the access request states What do I do when an appliance goes into quarantine What is required for One Identity Safeguard for Privileged Passwords Privileged Sessions What is required to integrate with Starling Identity Analytics & Risk Intelligence What needs to be set up to use Application to Application What role-based email notifications are generated by default When does the rules engine run for dynamic grouping and tagging Why did the password change during an open request Why join Safeguard for Privileged Passwords to One Identity Starling
Safeguard Desktop Player Appendix: Safeguard ports

Login Notification

It is the responsibility of the Appliance Administrator to configure the login notification displayed when a user logs into One Identity Safeguard for Privileged Passwords.

To configure the login notification

  1. Navigate to Administrative Tools | Settings | Messaging| Login Notification.
  2. Select the Message check box and enter a message.
  3. Click (or tap) OK.

Message of the Day

It is primarily the responsibility of the Appliance Administrator to configure the message of the day displayed on the Home page, however any user with administrator permissions has the ability to set the message of the day.

To configure the message of the day

  1. Navigate to Administrative Tools | Settings | Messaging | Message of the Day.
  2. Choose either the RSS or Subject Line option.
  3. When the RSS option is selected, enter a web address.
  4. When the Subject line option is selected, enter the following information:
    • Subject Line: Enter a short description.
    • Message: Enter the text of up to 255 characters.
  5. Click (or tap) OK.

Profile settings

Use the Profile settings to define the profile configuration settings, including account password rules and password check and change schedules, which can then be used in partition or directory profile definitions.

Navigate to Administrative Tools | Settings | Profile.

Table 206: Profile settings
Setting Description
Account Password Rules

Where you define the complexity rules used by Safeguard for Privileged Passwords when constructing new passwords during an automatic account password change.

Change Password

Where you define the rules Safeguard for Privileged Passwords uses to reset account passwords.

Check Password

Where you define the rules Safeguard for Privileged Passwords uses to verify account passwords.

Directory Account Password Rules

Where you defined the complexity rules used by Safeguard for Privileged Passwords when constructing new passwords during automatic directory account password change.

Directory Change Password

Where you define the rules Safeguard for Privileged Passwords uses to reset directory account passwords.

Directory Check Password

Where you define the rules Safeguard for Privileged Passwords uses to verify directory account passwords.

Password Sync Groups

Where you define the password sync groups and associated accounts so Safeguard for Privileged Passwords can synchronize passwords across accounts.

Account Password Rules

Account password rules govern the construction of a new password created by Safeguard for Privileged Passwords during an automatic account password change. Some companies impose requirements on passwords, such as:

  • The use of both upper- and lower-case letters
  • Inclusion of one or more numerical digits
  • Inclusion of special characters, such as @, #, $ and so forth

Note: You select an account password rule set when defining a partition's profile. For more information, see Creating a partition profile. An account password rule applies to all accounts governed by the profile.

Navigate to Administrative Tools | Settings | Profile | Account Password Rules.

Use these toolbar buttons to manage your account password rules.

Table 207: Account Password Rules: Toolbar
Option Description
Add Account Password Rule

Add an account password complexity rule. For more information, see Adding an account password rule.

Delete Selected

Remove the selected rule.

Refresh

Update the list of account password rules.

Edit

Modify the selected rule.

Copy

"Clone" the selected rule.

Related Documents