Chat now with support
Chat with Support

Password Manager 5.9.7 - Administration Guide

About Password Manager Getting Started Password Manager Architecture
Password Manager Components and Third-Party Solutions Typical Deployment Scenarios Password Manager in Perimeter Network Management Policy Overview Password Policy Overview Secure Password Extension Overview reCAPTCHA Overview User Enrollment Process Overview Questions and Answers Policy Overview Password Change and Reset Process Overview Data Replication Phone-Based Authentication Service Overview
Management Policies
Checklist: Configuring Password Manager Understanding Management Policies Configuring Access to the Administration Site Configuring Access to the Self-Service Site Configuring Access to the Helpdesk Site Configuring Questions and Answers Policy Workflow overview Custom workflows Custom Activities Self-Service Workflows Helpdesk Workflows Notification Activities User Enforcement Rules
General Settings
General Settings Overview Search and Logon Options Import/Export Configuration Settings Outgoing Mail Servers Diagnostic Logging Scheduled Tasks Web Interface Customization Instance Reinitialization Realm Instances Domain Connections Extensibility Features RADIUS Two-Factor Authentication Unregistering users from Password Manager Working with Redistributable Secret Management account Email Templates
Upgrading Password Manager Administrative Templates Secure Password Extension Password Policies One Identity Starling Reporting Password Manager Integration Appendixes Glossary

Account for Using One Identity Quick Connect

You can configure cross-platform password synchronization using One Identity Quick Connect. If used in conjunction with Quick Connect, Password Manager allows you to enable users and helpdesk operators to manage passwords across a wide variety of connected systems.

To enable Password Manager to connect to Quick Connect and set passwords in connected systems, the account used to access Quick Connect must be a member of the local administrators group on the Quick Connect server. For more information on using Quick Connect with Password Manager, see Reset Password in Active Directory and Connected Systems.

Appendix B: Open Communication Ports for Password Manager

Appendix B: Open Communication Ports for Password Manager

This section provides a list of communication ports that need to be open in the firewall for Password Manager to function properly.

Administration Site

Port 80 (Default HTTP) TCP Inbound

Port 443 (Default HTTPS) TCP Inbound/Outbound

Port 8081 TCP Inbound/Outbound

Port 25 (Default SMTP port) TCP Outbound

Port 135 TCP Inbound/Outbound

Legacy Self-Service, Password Manager Self-Service, and Helpdesk Sites

Port 80 (Default HTTP) TCP Inbound

Port 443 (Default HTTPS) TCP Inbound/Outbound

Port 8081 TCP Inbound/Outbound

The Password Manager Self-Service site has all functionality similar to the Legacy Self-Service site with a new and improved user interface. The Password Manager Self-Service site can co-exist along with the already existing Legacy Self-Service site and you can select to revert anytime to the Legacy Self-Service site.

Password Manager Service

Port 53 (Outgoing DNS lookups) UDP Outbound

Port 88 (Kerberos Authentication) TCP/UDP Outbound

Port 389 (LDAP Access) TCP/UDP Outbound

Port 636 (LDAP Access) TCP Outbound

Port 137 (NetBIOS Name Service) TCP Outbound

Port 139 (NetBIOS Session Service) TCP Outbound

SQL Server

Port 1433 (SQL Server) TCP/UDP Outbound

Port 1434 (SQL Server Browser Service) TCP/UDP Outbound

Report Server

Port 80 (SQL Server Report Services) TCP Outbound

Email Notification

Port 25 (Default SMTP port) TCP Outbound

One Identity Quick Connect Sync Engine

Port 808 TCP Outbound

Secure Password Extension

Port 80 (Default HTTP) TCP Outbound

Port 88 (Kerberos Authentication) UDP Outbound

Port 389 (LDAP Access) TCP Outbound

Port 443 (Default HTTPS) TCP Outbound

Telesign

Port 443 TCP Outbound

Defender

Port specified in the activity settings (Authenticate with Defender) is used

BitLocker with MBAM

Port specified in the activity settings (Issue BitLocker recovery key) is used

Appendix C: Customization Options Overview

There are multiple ways to customize the Self-Service and Helpdesk sites. You can customize email notifications, change company and product logos and Web sites color scheme, etc.

The following customization options are available in Password Manager:

Customization of Steps in Self-Service and Helpdesk Tasks

Customization of steps in Legacy Self-Service, Password Manager Self-Service site, and Helpdesk Tasks

You can change the steps and the order of steps in Legacy self-service, Password Manager Self-Service site, and helpdesk tasks by modifying the workflows that correspond to these tasks. For example, to modify the Forgot My Password task on the Self-Service site you need to modify the Forgot My Password workflow on the Administration site.

A workflow consists of activities; each activity can be configured independently of other activities. Almost each activity corresponds to a single step in a task, that is a single page in the wizard a user goes through to complete the task.

By adding and removing activities and changing activities’ order in a self-service workflow you can define what wizard pages and in what order users will go through when performing a task on the Self-Service site. The same applies to the Helpdesk site and helpdesk workflows.

To edit a workflow, open the workflow on the Administration site and add or remove activities in the workflow designer.

For more information on configuring workflows, see Workflow structure.

For more information on modifying self-service workflows and activities, see Legacy Self-Service or Password Manager Self-Service site workflows.

For more information on modifying helpdesk workflows and activities, see Helpdesk Workflows.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating