Chat now with support
Chat with Support

One Identity Safeguard for Privileged Passwords 2.5 - Administration Guide

Introduction System requirements Installing the One Identity Safeguard for Privileged Passwords desktop client Setting up Safeguard for Privileged Passwords for the first time Getting acquainted with the console Privileged access requests Toolbox Accounts Account Groups Assets Asset Groups Directories Entitlements Partitions Settings
Access Request settings Appliance settings Asset Management settings Backup and Retention settings Certificate settings Cluster settings External Integration settings Messaging settings Profile settings Access settings Sessions settings
Users User Groups Disaster recovery and clusters Administrator permissions Preparing systems for management Troubleshooting Frequently asked questions
How do I access the API How do I audit transaction activity How do I configure external federation authentication How do I manage accounts on unsupported platforms How do I modify the appliance configuration settings How do I prevent Safeguard for Privileged Passwords messages when making RDP connections How do I see which assets and/or accounts are governed by a profile How do I set the appliance system time How do I setup discovery jobs How do Safeguard for Privileged Passwords database servers use SSL What are the access request states What do I do when an appliance goes into quarantine What is required for One Identity Safeguard for Privileged Passwords, embedded sessions module What is required to integrate with Starling Identity Analytics & Risk Intelligence What needs to be set up to use Application to Application What role-based email notifications are generated by default When does the rules engine run for dynamic grouping and tagging Why did the password change during an open request Why join Safeguard for Privileged Passwords to One Identity Starling
Safeguard Desktop Player Appendix: Safeguard ports

Appliance settings

Use the Appliance settings to view general information about the appliance, run diagnostic tools, and reset or update the One Identity Safeguard for Privileged Passwords appliance.

Navigate to Administrative Tools | Settings | Appliance.

One Identity Safeguard for Privileged Passwords provides the following information to help you resolve many common problems you may encounter as you deploy and use your appliance.

Table 134: Appliance settings
Setting Description

Appliance Information

Where you view general information about the appliance, as well as its performance utilization and the memory usage. This page also contains power controls to shut down or restart your appliance.

Diagnostics

Where you run diagnostic tests on your appliance.

Enable or Disable Services (Application to Application service)

Where you enable or disable the Application to Application functionality.

Factory Reset from the desktop client

Where you perform a factory reset to revert your appliance to its original state when it first came from the factory.

Licensing

Where you add or update a Safeguard for Privileged Passwords license.

Lights Out Management (BMC)

Where you enable and disable lights out management, which allows you to remotely manage the power state and serial console to Safeguard for Privileged Passwords using the baseboard management controller (BMC).

Networking

Where you view and configure the primary network interface, and if applicable, the sessions network interface.

Support Bundle

Where you create a support bundle containing system and configuration information to send to One Identity Support to analyze and diagnose issues with your appliance.

If you have the Privileged Sessions module licensed, this is where you enable (and disable) session debug logging to be included in a support bundle.

Time

Where you enable Network Time Protocol (NTP) and set the primary and secondary NTP servers.

NOTE: A replica in the cluster will always reference the primary appliance as its NTP server.

Updates

Where you upload and install an update file. For more information, see Updates.

In addition to the appliance options, One Identity Safeguard for Privileged Passwords provides these troubleshooting tools:

Table 135: Additional troubleshooting tools
Tool Description

Activity Center

View the details of specific events or user activity. For more information, see Activity Center.

LCD status messages

An LCD screen on the appliance to view the status of the appliance as it is starting up or shutting down. For more information, see LCD status messages.

Recovery kiosk

A terminal or laptop connected directly to the appliance to view basic appliance information, restart the appliance remotely, shut down the appliance, reset the bootstrap administrator’s password to its initial value, perform a factory rest, or to generate and send a support bundle to a Windows share. For more information, see Recovery kiosk.

Appliance Information

It is the responsibility of the Operations Administrator or the Appliance Administrator to monitor the status of the appliance.

Navigate to Administrative Tools | Settings | Appliance | Appliance Information. The following displays on the top of the Appliance Information pane.

Table 136: Appliance properties
Property Description
Appliance Name

The name of the appliance.

To modify this name, click Edit.

Host The appliance network server IP address.
Client Version The version of the Safeguard for Privileged Passwords desktop client application.
Appliance Version The version of the Safeguard for Privileged Passwords Appliance.
Uptime The amount of time (hours and minutes) the appliance has been running.

In addition, this view contains two tabbed pages to display general information and performance data for the appliance.

Appliance: General tab properties

Disk displays the amount of used and free disk space.

Table 137: General tab: Appliance properties
Property Description
Manufacturer The system manufacturer.
Model The system model.
Bios Description The system bios description.
Bios Serial Number The system's bios serial number.
Serial Number The media access control address (MAC address) assigned to the network interface for communications.
Ship Date The appliance ship date.
Processor The processor information.
Virtual Memory The virtual memory allocation.
Physical Memory

The physical memory allocation.

TLS 1.2 only

Click this toggle to disable earlier versions of the Transport Layer Security (TLS) protocol and use only TLS v1.2.

NOTE: You must reboot your appliance after enabling TLS 1.2 only.

Power

Use the power controls to shut down or restart your appliance.

Appliance: Performance tab properties
Table 138: Performance tab: Performance properties
Property Description
Processor Displays the CPU information and the performance utilization of your appliance.
Memory Displays the memory usage of your appliance; what is currently in use and what is free.

Setting the appliance name

Safeguard for Privileged Passwords automatically assigns a name to the appliance; however, you can change the name from the Appliance Information page.

To set the appliance name

  1. Navigate to Administrative Tools | Settings | Appliance | Appliance Information.
  2. Click Edit to enable the Appliance Name text box.
  3. Enter a new appliance name and click Save.

Shutting down the appliance

You can shut down an appliance from the Administrative Tools view in the Windows desktop client or directly from the appliance itself.

Caution: Rebooting the appliance causes a service outage for any current users.

To shutdown an appliance

  1. Navigate to Administrative Tools | Settings | Appliance | Appliance Information.
  2. Type an explanation for shutting down the Safeguard for Privileged Passwords Appliance in the Reason box and click Shut Down.

    Important: After the appliance powers off you will need physical access to start it. Press the Green check mark button on the front panel of the appliance for NO more than one second to power on the appliance.

    Caution: Once the Safeguard appliance is booted, DO NOT press and hold the Green check mark button. Holding this button for four or more seconds will cold reset the power of the appliance and may result in damage.

  3. To confirm your action, enter the words Shut Down in the box and click OK.
  4. The One Identity Safeguard for Privileged Passwords 2000 Appliance LCD screen displays "LCD service terminating."

NOTE: You can also use the Red X button on the front panel of the appliance to shut it down. Press and hold the Red X button for four seconds until it displays POWER OFF.

Caution: Once the Safeguard appliance is booted, DO NOT press and hold the Red X button for more than 13 seconds. This will hard power off the appliance and may result in damage.

Related Documents