Chat now with support
Chat with Support

Quest has tools and processes in place to identify, protect, detect, and remediate vulnerabilities and incidents when they occur, including external security partners. As part of our standard security operations, Quest does not use CrowdStrike in any of our operations. We are reviewing our third parties, and so far, there is minimal affect. It is Quest's policy not to provide further technical details unless they directly impact customer data.

Password Manager 5.13.1 - Administration Guide

About Password Manager Getting Started Password Manager Architecture
Password Manager Components and Third-Party Solutions Typical Deployment Scenarios Password Manager in Perimeter Network Management Policy Overview Password Policy Overview Secure Password Extension Overview reCAPTCHA Overview User Enrollment Process Overview Questions and Answers Policy Overview Password Change and Reset Process Overview Data Replication Phone-Based Authentication Service Overview
Management Policies
Checklist: Configuring Password Manager Understanding Management Policies Configuring Access to the Administration Site Configuring Access to the Self-Service Site Configuring Access to the Helpdesk Site Configuring Questions and Answers Policy Workflow overview Custom workflows Custom Activities Self-Service Workflows Helpdesk Workflows Notification Activities User Enforcement Rules
General Settings
General Settings Overview Search and Logon Options Import/Export Configuration Settings Outgoing Mail Servers Diagnostic Logging Scheduled Tasks Web Interface Customization Instance Reinitialization Realm Instances Domain Connections Extensibility Features RADIUS Two-Factor Authentication Internal Feedback Password Manager components and third-party applications Unregistering users from Password Manager Bulk Force Password Reset Fido2 key management Working with Redistributable Secret Management account Email Templates
Upgrading Password Manager Administrative Templates Secure Password Extension Password Policies Enable S2FA for Administrators & Enable S2FA for HelpDesk Users Reporting Password Manager Integration Accounts Used in Password Manager Open Communication Ports for Password Manager Customization Options Overview Feature imparities between the legacy and the new Self-Service Sites Glossary

Exporting Configuration Settings

By exporting configuration settings to a configuration file, you can back up the current instance or use the configuration file to create a Password Manager realm.

A realm is a group of Password Manager instances using common configuration settings, including but not limited to Management Policies, general settings, password policies, etc.

If you want to create a realm, you need to export the configuration settings from a Password Manager instance and create a replica of this instance by importing the configuration settings. To learn more about creating Password Manager realms, see Installing multiple instances of Password Manager.

To export configuration settings

  1. To connect to the Administration site, enter the Administration site URL in the address bar of your web browser. By default, the URL is http://<ComputerName>/PMAdmin/.

    NOTE: When prompted to log in, provide your domain user name in a domainname\username format.

  2. On the menu bar, click General Settings, then click the Import/Export tab and select the Export configuration settings option and click Export.

    IMPORTANT: Remember and store the password that is generated while exporting the configuration file. You must enter this password when importing the configuration file for a new instance when, you want to join to a realm or restoring the configuration. Losing this password requires re-installation of the application.

    Export the configuration settings and save in a secure location. Use these settings to create secondary instances of Password Manager, and to recover data in the event of server disaster, or serious data loss.

Importing Configuration Settings

To restore a Password Manager instance or to join an instance to a realm, you need to import the configuration settings to such an instance.

To import configuration settings

  1. To connect to the Administration site, enter the Administration site URL in the address bar of your Web browser. By default, the URL is http://<ComputerName>/PMAdmin/.

    NOTE: When prompted to log in, provide your domain user name in a domainname\username format.

  2. On the menu bar, click General Settings, then click the Import/Export tab and select the Import configuration settings option.

  3. Click Upload to select the configuration file that you exported earlier.

  4. Enter the password and click Import.

Outgoing Mail Servers

You can configure one or more outgoing mail servers to send email notifications. If there are several servers, Password Manager will first attempt to use the top one in the list.

To add outgoing mail servers (SMTP)

  1. Connect to the Administration site by typing the Administration site URL in the address bar of your web browser. By default, the URL is http://<ComputerName>/PMAdmin/.

    NOTE: When prompted to log in, provide your domain user name in a domainname\username format.

  2. On the menu bar, click General Settings > SMTP Servers, then click Add SMTP server.

  3. In the Add SMTP Server dialog box, configure the following options and click Save:

    Table 10: SMTP server details

    Option

    Description

    Server name

    Type the SMTP server name.

    If the SMTP server uses the port which is different from the default SMTP port 25, you may specify the port using the following format:

    <server name>:<port number>

    where <server name> is the server name and <port number> is the port number used for SMTP communication.

    Sender email address

    Type the sender's email address.

    This server requires authentication

    Select if the SMTP server requires authentication.

    User name

    Type the user name under which Password Manager will access the SMTP server.

    Password

    Type the password for this account.

    Confirm password

    Re-type the password.

    The server requires an encrypted connection (SSL)

    Select if the SMTP server requires an encrypted connection (SSL).

  4. Follow steps 2-3 to add any additional SMTP servers.

    NOTE: You can use the Test settings button to validate the SMTP server that you have configured. An email will be sent to the specified email address if the provided details are valid. If any of the details are invalid, a error message is displayed. You can configure the subject text of the email by configuring the value of Resource Id, ”Admin.Scenario.Action.TestSMTP.Settings.TestEmail.Subject” in the Admin.xml file.

  5. Use the Move Up and Move Down buttons to change the order of the SMTP servers in the list.

    The order of the servers in the list specifies how Password Manager uses the servers to send notification mail messages. Password Manager will first attempt to use the servers at the top of the list.

To remove a server from the list of outgoing SMTP mail servers

  1. Connect to the Administration site by typing the Administration site URL in the address bar of your Web browser. By default, the URL is http://<ComputerName>/PMAdmin/.

    NOTE: When prompted to log in, provide your domain user name in a domainname\username format.

  2. On the SMTP Servers page, select the SMTP server you want to remove and click Remove.

  3. On the menu bar, click General Settings, then click the SMTP Servers tab.

Diagnostic Logging

Password Manager provides a simple and convenient way to collect the diagnostic information about the activity of Password Manager. Diagnostic logging is mainly intended to be used by support personnel for troubleshooting purposes.

To enable diagnostic logging in Password Manager

  1. On the home page of the Administration site, click General Settings, then click the Logging tab.

  2. Configure the following options as required:

    Table 11: Diagnostic logging options

    Option

    Description

    Specify the path to the log file:

    Type a path to the file to store the diagnostic information.

    Set log level

    The following log levels are available:

    • Turn off logging: Select this option to turn off logging.

    • Log errors only : Select this option to log only errors.

    • Verbose logging: Select this option to log the most extended diagnostic information.

  3. Click Save.

    IMPORTANT: Do not enable verbose logging tracing for long periods of time. Verbose logging creates log files that can accumulate quickly. Always monitor available disk space when verbose logging is enabled.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating