Chat now with support
Chat with Support

Safeguard for Privileged Passwords On Demand Hosted - Administration Guide

Introduction System requirements and versions Using API and PowerShell tools Using the virtual appliance and web management console Cloud deployment considerations Setting up Safeguard for Privileged Passwords for the first time Using the web client Getting started with the desktop client Using the desktop client Activity Center Search box Privileged access requests Toolbox Accounts Account Groups Assets
General/Properties tab (asset) Accounts tab (asset) Account Dependencies tab (asset) Owners tab (asset) Access Request Policies tab (asset) Asset Groups tab (asset) Discovered SSH Keys (asset) Discovered Services tab (asset) History tab (asset) Managing assets
Asset Groups Discovery Entitlements Linked Accounts Partitions Profiles Settings
Access Request settings Appliance settings Asset Management settings Tags Backup and Retention settings Certificates settings Cluster settings Enable or Disable Services settings External Integration settings Password Management settings Real-Time Reports Safeguard Access settings SSH Key Management settings Security Policy Settings
Users User Groups Disaster recovery and clusters Administrator permissions Preparing systems for management Troubleshooting Frequently asked questions Appendix A: Safeguard ports Appendix B: SPP 2.7 or later migration guidance Appendix C: SPP and SPS join guidance Appendix D: Regular Expressions About us

History tab (asset group)

The History tab allows you to view or export the details of each operation that has affected the selected asset group.

To access History:

  • desktop client: Navigate to Administrative Tools | Asset Groups | History.

    The top of the History tab contains the following information:

    • Items: Total number of entries in the history log.
    • Refresh: Update the list displayed.
    • Export: Export the data to a .csv file.
    • Search: For more information, see Search box.

    • Time Frame: By default, the history details are displayed for the last 24 hours. Click one of the time intervals at the top of the grid to display history details for a different time frame. If the display does not refresh after selecting a different time interval, click Refresh.
  • web client: Navigate to Security Policy Management | Asset Groups | (Edit) | History.

    The top of the History tab contains the following information:

    • Date Range: By default, the history details are displayed for the last 24 hours. From the drop-down, select one of the time intervals to display history details for that time frame.

    • Refresh: Update the list displayed.

    • Search: For more information, see Search box.

Table 92: Asset Groups: History tab properties
Property Description
Date/Time The date and time of the event.
User The display name of the user that triggered the event.
Source IP The network DNS name or IP address of the managed system that triggered the event.
Object Name The name of the selected asset group.
Event

The type of operation made to the selected account group:

  • Create
  • Delete
  • Update
  • Add Membership
  • Remove Membership

NOTE: A membership operation indicates a "relationship" change with a related or parent object such as the selected asset group was added or removed from the membership of a policy, or an asset was added or removed from the membership of the selected asset group.

Related Object The name of the related object.
Related Object Type The type of the related object.
Parent The name of the object to which the selected asset group is a child.
Parent Object Type The parent object type.

Managing asset groups

Use the controls and tabbed pages in the Asset Groups view to perform the following tasks to manage Safeguard for Privileged Passwords asset groups:

Adding an asset group

It is the responsibility of the Security Policy Administrator to add asset groups to Safeguard for Privileged Passwords.

Use the Asset Groups view to add new asset groups to Safeguard for Privileged Passwords.

Only the assets that support session management can be added to asset groups and dynamic asset groups. Assets that do not support session management include but may not be limited to Directory assets. When you create the asset, the Management tab has an Enable Session Request check box if sessions is supported. For more information, see Supported platforms. This section lists SPP and SPS support by platform.

Adding a dynamic asset group

It is the responsibility of the Security Policy Administrator to add asset groups to Safeguard for Privileged Passwords.

Only the assets that support session management can be added to asset groups and dynamic asset groups. Assets that do not support session management include but may not be limited to Directory assets. When you create the asset, the Management tab has an Enable Session Request check box if sessions is supported. For more information, see Supported platforms. This section lists SPP and SPS support by platform.

To add a dynamic asset group

  1. Navigate to Administrative Tools | Asset Groups.
  2. From Asset Groups, click  Add | Add Asset Dynamic Group from the toolbar.
  3. In the Dynamic Asset Group/New Asset Group dialog, provide information in each of the tabs.

    General tab (add dynamic account group)

    Where you add general information about the dynamic asset group.

    Account Rules tab (add dynamic account group)

    Where you define the rules to be used to identify what assets are to be included in the dynamic asset group.

    Summary tab (add dynamic account group) Where you review the rules defined for adding assets to this dynamic asset group, and where you save your selections and create the dynamic asset group.

Related Topics

When does the rules engine run for dynamic grouping and tagging

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating