Password Manager 5.8.2 - Administrator Guide (AD LDS edition)

About Password Manager Getting Started Upgrading Password Manager to 5.8.1 Password Manager Architecture Management Policies
Checklist: Configuring Password Manager Understanding Management Policies Configuring Access to the Administration Site Configuring Access to the Self-Service Site Configuring Access to the Helpdesk Site Configuring Questions and Answers Policy Workflow Overview Custom Workflows Custom Activities Self-Service Workflows Helpdesk Workflows User Enforcement Rules
General Settings Password Policies One Identity Hybrid Subscription One Identity Starling Reporting Appendix A: Accounts Used in Password Manager for AD LDS Appendix B: Open Communication Ports for Password Manager for AD LDS Appendix C: Customization Options Overview Glossary

Reminder to Create/Update Profile Task

Reminder to Create/Update Profile Task

This task is used to send notifications to users who have been invited to create or update their Q&A profiles. If you configure the notification schedule, the task will send email notification messages to corresponding users.

The scope of this task corresponds to the scope of the Remind Users to Create/Update Q&A Profiles user enforcement rule.

You should configure this scheduled task to enable the Remind Users to Create/Update Q&A Profiles user enforcement rule. If you disable the scheduled task, the user enforcement rule will not be implemented. For more information on this user enforcement rule, see Remind Users to Create/Update Profiles.

To schedule this task

  1. Connect to the Administration site by typing the Administration site URL in the address bar of your Web browser. By default, the URL is http://<ComputerName>/PMAdminADLDS/.
  2. On the menu bar, click General Settings, then click the Scheduled Tasks tab.
  3. Click Edit under the Reminder to Create/Update Profile task.
  4. Select the The task is enabled check box.
  5. From the drop-down list select one of the following options: Run hourly, Run daily or Run weekly.
  6. Depending on the option selected above, specify the time and/or days of the week when this task should be run.
  7. Under Run the task on this Password Manager instance, select the Password Manager server on which the task should be run.

    IMPORTANT: The task status can be viewed only on the Password Manager instance on which the task is scheduled to run.
  8. Click Save.

To force the task to run earlier than scheduled, click the Run now link under the task.

Reminder to Change Password Task

Reminder to Change Password Task

This task is used to send notifications about password expiration. Notifications will be sent to users whose passwords expire in the number of days specified in the Remind Users to Change Password user enforcement rule.

The scope of this task corresponds to the scope of the Remind Users to Change Password user enforcement rule.

You should configure this scheduled task to enable the Remind Users to Change Password user enforcement rule. If you disable the scheduled task, the user enforcement rule will not be implemented. For more information on this user enforcement rule, see Remind Users to Change Password.

To schedule this task

  1. Connect to the Administration site by typing the Administration site URL in the address bar of your Web browser. By default, the URL is http://<ComputerName>/PMAdminADLDS/.
  2. On the menu bar, click General Settings, then click the Scheduled Tasks tab.
  3. Click Edit under the Reminder to Change Password task.
  4. Select the The task is enabled check box.
  5. From the drop-down list select one of the following options: Run hourly, Run daily or Run weekly.
  6. Depending on the option selected above, specify the time and/or days of the week when this task should be run.
  7. Under Run the task on this Password Manager instance, select the Password Manager server on which the task should be run.

    IMPORTANT: The task status can be viewed only on the Password Manager instance on which the task is scheduled to run.
  8. Click Save.

To force the task to run earlier than scheduled, click the Run now link under the task.

Maximum Password Age Policy Task

Maximum Password Age Policy Task

This task is used to force users to change passwords at next logon if password’s maximum age is reached.

The scope of this task is the scopes of all configured One Identity password policies. For more information on One Identity password policies, see Creating a Password Policy.

This task applies the maximum password age rule set in the configured One Identity password policies. If the maximum password age is reached, users will be required to change password at next logon.

To schedule this task

  1. Connect to the Administration site by typing the Administration site URL in the address bar of your Web browser. By default, the URL is http://<ComputerName>/PMAdminADLDS/.
  2. On the menu bar, click General Settings, then click the Scheduled Tasks tab.
  3. Click Edit under the Maximum Password Age Policy task.
  4. Select the The task is enabled check box.
  5. From the drop-down list select one of the following options: Run hourly, Run daily or Run weekly.
  6. Depending on the option selected above, specify the time and/or days of the week when this task should be run.
  7. Under Run the task on this Password Manager instance, select the Password Manager server on which the task should be run.

    IMPORTANT: The task status can be viewed only on the Password Manager instance on which the task is scheduled to run.
  8. Click Save.

To force the task to run earlier than scheduled, click the Run now link under the task.

User Status Statistics Task

User Status Statistics Task

By default, the User Status Statistics task runs every day. Normally, it is not recommended to change the schedule, although if you have other heavy-duty tasks running at that time, we recommend that you reschedule the User Status Statistics task to run in off-peak hours. The User Status Statistics task is used to do the following:

  • Enumerating users for licensing purposes. Password Manager is licensed for a specific number of user accounts enabled for management. The task checks whether the managed user count is within the license limit.
  • Collecting statistic information about users including the total user count, the number of users registered and the users not-registered with Password Manager, the number of users required to register with Password Manager, and the number of users required to update profile. This information is collected for all application directory partitions managed by a specific Password Manager instance and displayed on the Reports page of the Administration site.

The scope of this task corresponds to user scopes of all configured Management Policies.

To schedule this task

  1. Connect to the Administration site by typing the Administration site URL in the address bar of your Web browser. By default, the URL is http://<ComputerName>/PMAdminADLDS/.
  2. On the menu bar, click General Settings, then click the Scheduled Tasks tab.
  3. Click Edit under the User Status Statistics task.
  4. From the drop-down list select one of the following options: Run hourly, Run daily or Run weekly.
  5. Depending on the option selected above, specify the time and/or days of the week when this task should be run.
  6. Under Run the task on this Password Manager instance, select the Password Manager server on which the task should be run.

    IMPORTANT: The task status can be viewed only on the Password Manager instance on which the task is scheduled to run.
  7. Click Save.

To force the task to run earlier than scheduled, click the Run now link under the task.

Related Documents