Chat now with support
Chat with Support

Password Manager 5.8.2 - Administrator Guide (AD LDS edition)

About Password Manager Getting Started Upgrading Password Manager to 5.8.1 Password Manager Architecture Management Policies
Checklist: Configuring Password Manager Understanding Management Policies Configuring Access to the Administration Site Configuring Access to the Self-Service Site Configuring Access to the Helpdesk Site Configuring Questions and Answers Policy Workflow Overview Custom Workflows Custom Activities Self-Service Workflows Helpdesk Workflows User Enforcement Rules
General Settings Password Policies One Identity Hybrid Subscription One Identity Starling Reporting Appendix A: Accounts Used in Password Manager for AD LDS Appendix B: Open Communication Ports for Password Manager for AD LDS Appendix C: Customization Options Overview Glossary

Helpdesk Site

Helpdesk Site

The Helpdesk site handles typical tasks performed by helpdesk operators, such as resetting passwords, unlocking user accounts, assigning temporary passcodes, and managing users' Questions and Answers profiles.

The Helpdesk site can be installed either on the same server as the as the Administration Site and Password Manager Service, or on a stand-alone server.

TeleSign

TeleSign

TeleSign is a service that provides phone-based authentication for Password Manager users. To enable the TeleSign service, it must be covered by your license and the administrator must configure the Authenticate via Phone activity and include the activity in corresponding workflows. If TeleSign is enabled, when performing a task on the Self-Service or Helpdesk site, users will prompted to select their phone number to which a one-time code will be sent by TeleSign and then enter the code on the site for verification.

TeleSign service is available anywhere where users can receive calls or text messages. To receive verification codes, users do not need to install any applications on their phones.

To communicate with TeleSign Password Manager uses REST API.

For more information, see Phone-Based Authentication Service Overview.

SQL Server Database and SQL Server Reporting Services

SQL Server Database and SQL Server Reporting Services

Using an SQL database and SQL Server Reporting Services you can manage reports that allow you to analyze how the application is used.

The available out-of-the-box reports help you track user registration activity, helpdesk tasks, user statuses, etc.

For more information, see Reporting and User Action History Overview.

Quick Connect Sync Engine

Quick Connect Sync Engine

Quick Connect Sync Engine is a Password Manager product that provides unified identity and access management. Integrating Password Manager with Quick Connect Sync Engine allows you to enable users and helpdesk operators to manage their passwords across different connected data sources.

To use Quick Connect Sync Engine, configure the Change password in AD LDS and connected systems or Reset password in AD LDS and connected systems activities.

To communicate with Quick Connect Sync Engine, Password Manager uses TCP (Transmission Control Protocol).

For more information, see Using this activity, you can configure Password Manager to use One Identity Quick Connect to reset passwords in connected systems. If used in conjunction with Quick Connect, Password Manager allows you to enable users and helpdesk operators to manage passwords across a wide variety of connected systems. To be able to integrate Password Manager with Quick Connect, you must have a working knowledge of Quick Connect Sync Engine.

Related Documents