Chat now with support
Chat with Support

Password Manager 5.8.2 - Administrator Guide (AD LDS edition)

About Password Manager Getting Started Upgrading Password Manager to 5.8.1 Password Manager Architecture Management Policies
Checklist: Configuring Password Manager Understanding Management Policies Configuring Access to the Administration Site Configuring Access to the Self-Service Site Configuring Access to the Helpdesk Site Configuring Questions and Answers Policy Workflow Overview Custom Workflows Custom Activities Self-Service Workflows Helpdesk Workflows User Enforcement Rules
General Settings Password Policies One Identity Hybrid Subscription One Identity Starling Reporting Appendix A: Accounts Used in Password Manager for AD LDS Appendix B: Open Communication Ports for Password Manager for AD LDS Appendix C: Customization Options Overview Glossary

About Password Manager

Password Manager Overview

Password Manager Overview

One Identity Password Manager (Active Directory Lightweight Services) is a Web-based application that provides an easy-to-implement and use, yet highly secure, password management solution. Users can connect to Password Manager by using their favorite browser and perform password self-management tasks, thus eliminating the need for assistance from high-level administrators and reducing help desk workload. The solution offers a powerful and flexible password policy control mechanism that allows the Password Manager administrator to ensure that all passwords in the organization comply with the established policies.

Password Manager allows managing users that do not have accounts in the Active Directory. For example, using Password Manager you can manage passwords for contractors and other external users.

Integration with One Identity Quick Connect Sync Engine facilitates cross-platform password synchronization that enables Password Manager to change user passwords across multiple connected data sources.

The key features and benefits of Password Manager include:

  • Global access. Password Manager provides 24x7x365 access to the Self-Service site from intranet computers as well as via Internet from any most common browser. The solution supports flexible access modes and logon options.
  • Strong data encryption and secure communication. The solution relies on industry-leading technologies for enhanced communication security and data encryption.
  • Cross-platform password synchronization.Password Manager has been designed for use One Identity Quick Connect Sync Engine, which makes it possible to automatically synchronize users' passwords across multiple connected data sources.
  • Web interface for a helpdesk service.Password Manager features the Helpdesk site which allows administrators to delegate helpdesk tasks to dedicated operators. These tasks include resetting user passwords, managing users' Questions and Answers profiles, and assigning temporary passcodes to users.
  • Email event notifications.Administrators can configure event notifications that are sent by email to designated recipients when specified events occur.
  • Powerful password policies.Password Manager ensures that only passwords that meet administrator-defined policies are accepted. Unsuccessful authentication attempts are logged and the corresponding accounts are locked if necessary.
  • Granular policy enforcement.Password policies are applied on a per-group or per OU basis.
  • Questions and Answers authentication mechanism.To reset passwords or unlock accounts, users are prompted to answer a series of questions for which users provide their secret answers when registering with Password Manager.
  • Enhanced user name search options.Users can be allowed to view their account attributes, such as user logon name, first name, display name, and SMTP address, when searching for their forgotten user names. A more specific search query returns the most relevant search results.
  • Fault tolerance and scalability.Password Manager is designed to work with network load balancing clusters and in a Web farm environment.

Getting Started

Different Site for Different Roles

Different Site for Different Roles

The Web Interface allows multiple Web sites to be installed with individual, customizable configurations. The following is a list of Web sites that are available out-of-the box.

  • Administration site is designed for individuals who are responsible for implementing password self-management tasks and password policies to suit the specific needs of their organization.
  • Helpdesk site handles typical tasks performed by helpdesk operators, such as resetting passwords, unlocking user accounts, assigning temporary passcodes, and managing users' Questions and Answers profiles.
  • Self-Service site provides users with the ability to easily and securely manage their passwords, thus eliminating the need for assistance from high-level administrators and reducing helpdesk workload.
Self Service Tools
Knowledge Base
Notifications & Alerts
Product Support
Software Downloads
Technical Documentation
User Forums
Video Tutorials
Contact Us
Licensing Assistance
Technical Support
View All
Related Documents