Chat now with support
Chat with Support

Password Manager 5.13.0 - Administration Guide

About Password Manager Getting Started Password Manager Architecture
Password Manager Components and Third-Party Solutions Typical Deployment Scenarios Password Manager in Perimeter Network Management Policy Overview Password Policy Overview Secure Password Extension Overview reCAPTCHA Overview User Enrollment Process Overview Questions and Answers Policy Overview Password Change and Reset Process Overview Data Replication Phone-Based Authentication Service Overview
Management Policies
Checklist: Configuring Password Manager Understanding Management Policies Configuring Access to the Administration Site Configuring Access to the Self-Service Site Configuring Access to the Helpdesk Site Configuring Questions and Answers Policy Workflow overview Custom workflows Custom Activities Self-Service Workflows Helpdesk Workflows Notification Activities User Enforcement Rules
General Settings
General Settings Overview Search and Logon Options Import/Export Configuration Settings Outgoing Mail Servers Diagnostic Logging Scheduled Tasks Web Interface Customization Instance Reinitialization Realm Instances Domain Connections Extensibility Features RADIUS Two-Factor Authentication Internal Feedback Password Manager components and third-party applications Unregistering users from Password Manager Bulk Force Password Reset Fido2 key management Working with Redistributable Secret Management account Email Templates
Upgrading Password Manager Administrative Templates Secure Password Extension Password Policies Enable S2FA for Administrators & Enable S2FA for HelpDesk Users Reporting Password Manager Integration Accounts Used in Password Manager Open Communication Ports for Password Manager Customization Options Overview Feature imparities between the legacy and the new Self-Service Sites Glossary

Reporting Services Firewall Issues

If Password Manager fails to operate properly when Reporting Services are separated from Password Manager by a firewall, specific ports should be open in the firewall.

To get the complete list of Password Manager server port numbers, that have to be open for the application to function properly, see Open Communication Ports for Password Manager.

 

Password Manager Integration

Quest Enterprise Single Sign-On (QESSO)

This section includes the information on how to configure Password Manager for use with Quest Enterprise Single Sign-On (QESSO). To implement the guidance in this section, you must have a working knowledge of Quest Enterprise Single Sign-On (QESSO).

Quest Enterprise Single Sign-on is a solution that provides users with the ability to access all applications on their desktop using a single user ID and password. After users have logged in, they can access password-protected applications on their desktop without the need to enter any further account details.

If an application requires login name and password to be entered, QESSO will remember the entered details. When the application is next started, QESSO will automatically enter the required login name and password.

The account details for password-protected applications are encrypted by using user logon password. When user resets or changes this password, the encrypted data is lost. To prevent data loss, Password Manager should be configured to notify QESSO about password changes and QESSO will re-encrypt the data using new password.

To enable QESSO integration

  1. Run the QESSO Client 32-bit or 64-bit wizard on the server where Password Manager resides. The wizard is located on the Individual Components tab of QESSO Autorun CD.
  2. Follow the wizard instructions.
  3. Install at least one of the following QESSO components on the server running a Password Manager instance:
    • SSOWatch
    • Advanced Login
    • Enterprise SSO Console
  4. Restart the Password Manager Service.
  5. On the Administration site, open workflows for which you want to configure integration with QESSO. QESSO integration settings can be found in the following activities:
    • Reset password in Active Directory
    • Change password in Active Directory
    • Reset password in Active Directory and connected systems
    • Change password in Active Directory and connected systems
  6. In required activities, select the Enable QESSO integration check box.
  7. Provide the account details for the QESSO administrator to be used for password resets.
  8. Click OK.

For the complete information about installing and using QESSO, please refer to the documentation for QESSO.

Accounts Used in Password Manager

The following accounts can be used in Password Manager:

  • Password Manager Service account

  • Application pool identity

  • Domain management account

  • Password policy account

  • Account for One Identity Quick Connect Sync Engine

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating