立即与支持人员聊天

获得即时帮助
完成注册

登录

请求定价

联系销售人员

Active Roles 7.5 - User Guide

Introduction Getting Started

Starting the Active Roles console

MMC interface access management Getting and using help

User Interface overview

Console_tree Details_pane Advanced_pane

Active Roles Security, Links Active Roles Policy Native Security Member Of, Members

Controlled_objects

Using Managed Units Setting up filter

Steps for sorting and filtering lists in the details pane

Finding objects

Steps for searching for a user, contact, or group Steps for searching for a computer Steps for searching for an Organizational Unit Steps for using advanced search options Steps for building a custom search LDAP syntax

Search filter format Operators Wildcards Special characters

Getting policy-related information

One Identity Starling Two-factor Authentication for Active Roles

Pre-requisites to configure One Identity Starling Logging in to MMC interface through 2FA authentication

User or Service Account Management

About user accounts User account management tasks

Creating a user account

Steps for creating a user account Steps for finding a user account

Finding a user account

Steps for finding a user account

Copying a user account

Steps for copying a user account

Modifying user account properties

Steps for modifying user account properties

Renaming a user account

Steps for renaming a user account

Disabling and enabling a user account

Steps for disabling a user account Steps for enabling a disabled user account

Resetting user password

Steps for resetting a user password

Adding user accounts to groups

Steps for adding a user account to a group

Removing a user account from groups

Steps for removing a user account from a group

Changing a user’s primary group

Steps for changing a user’s primary group

Performing Exchange tasks on a user account

Steps for performing Exchange tasks

Moving user accounts

Steps for moving a user account

Exporting and importing user accounts Deleting user accounts

Steps for deleting a user account

Deprovisioning a user account

Steps for deprovisioning a user account

Restoring a deprovisioned user account

Steps for restoring a deprovisioned user account

Managing user certificates

Steps for managing user certificates

Management of group Managed Service Accounts

gMSA management tasks

Creating_a_gMSA Managing_properties_of_a Searching_for_gMSA_in_th Disabling_or_re_enabling

Group Management

About groups Group management tasks

Creating a group

Steps for creating a group

Finding a group

Steps for finding a group Steps for finding groups in which a user is a member

Copying a group

Steps for copying a group

Modifying group properties

Steps for modifying group properties

Changing group type and group scope

Steps for changing group scope Steps for converting a group to another group type

Renaming a group

Steps for renaming a group

Assigning a manager over a group

Steps for assigning a manager over a group

Adding members to a group

Steps for adding a member to a group

Removing members from a group

Steps for removing a member from a group

Performing Exchange tasks on a group

Steps for performing Exchange tasks

Steps for moving a group

Exporting and importing groups Deleting groups

Steps for deleting a group

Deprovisioning groups

Steps for deprovisioning a group

Restoring deprovisioned groups

Steps for restoring a deprovisioned group

Administering query-based distribution groups

Steps for creating a query-based distribution group

Administering dynamic (rule-based) groups

Using temporal group memberships

Adding temporal members Viewing temporal members Rescheduling temporal group memberships Removing temporal members

Computer Account Management

About computer accounts Computer account management tasks

Creating a computer account

Steps for creating a computer account

Finding a computer account

Steps for finding a computer account

Modifying computer account properties

Steps for modifying computer account properties

Disabling and enabling a computer account

Steps for disabling a computer account Steps for enabling a disabled computer account

Resetting a computer account Adding computer accounts to groups

Steps for adding a computer account to a group

Removing a computer account from groups

Steps for removing a computer account from a group

Moving computer accounts

Steps for moving a computer account

Exporting and importing computer accounts Deleting computer accounts

Steps for deleting a computer account

Managing a remote computer Using Remote Desktop Connection Viewing BitLocker recovery passwords

Steps for viewing BitLocker recovery passwords

Organizational Unit Management

About Organizational Units Organizational Unit management tasks

Creating an Organizational Unit

Steps for creating an Organizational Unit

Finding an Organizational Unit

Steps for finding an Organizational Unit

Modifying Organizational Unit properties

Steps for modifying Organizational Unit properties

Renaming an Organizational Unit

Steps for renaming an Organizational Unit

Moving an Organizational Unit

Steps for moving an Organizational Unit

Deleting an Organizational Unit

Steps for deleting an Organizational Unit

Management of Contacts

About contacts Contact management tasks

Creating a contact

Steps for creating a contact

Finding a contact Modifying contact properties Renaming a contact Adding and removing contacts from groups Performing Exchange tasks on a contact

Steps for performing Exchange tasks

Moving contacts Exporting and importing contacts Deleting contacts

Management of Exchange Recipients

Creating an Exchange mailbox

Steps for creating a user mailbox Steps for creating a room or equipment Mailbox Steps for creating a linked mailbox Steps for creating a shared mailbox

Performing Exchange tasks

Exchange tasks on user accounts

Steps for performing Exchange tasks on a user account Move Mailbox task in Exchange 2013 or later

Exchange tasks on groups

Steps for performing exchange tasks on groups

Exchange tasks on contacts

Steps for performing Exchange tasks on contacts

Managing Exchange-related properties

Exchange General tab Exchange Advanced tab E-mail Addresses tab Mail Flow Settings tab Mailbox Settings tab Mailbox Features tab Calendar Settings tab Resource Information tab

Resource_Policy Resource_Information Resource_In_Policy_Reque Resource_Out_of_Policy_R

Master Account tab Mailbox Sharing tab

Managing Unified Messaging users

Enable a user for Unified Messaging View or change the properties of a UM-enabled user Reset Unified Messaging PIN for a UM-enabled user Disable Unified Messaging for a user

Logging in to MMC interface through 2FA authentication

When a Starling 2FA enabled user tries to log in to the Active Roles MMC interface, the user is prompted to enter the Starling Two-factor token response. Based on the option selected by the user, the token response is provided through SMS, Phone Call or Push Notifications. After the token is generated the token request options are disabled.

In case the token must be generated again, you need to wait for the minimum notification retry interval for the request options to get enabled. The default value for the notification retry interval period is 30 seconds.

On entering the token response and after successful verification the MMC interface is displayed.

NOTE: Push Notification works only if the Starling App is installed on the device with registered mobile number. The link to install the Starling App will be send to your registered mobile number at the time of registering to Starling.

If the system is kept idle for more than 30 minutes, the 2FA session expires and the MMC console gets disconnected with a session timeout warning.

User or Service Account Management

About user accounts

Active Roles allows you to perform administrative tasks such as create, copy, rename, modify, and delete user accounts in Active Directory. You can also use this tool to unlock accounts, add and remove accounts from groups, and reset user passwords. Active Roles also supports Exchange tasks, such as create, delete, and move user mailboxes.

The following section guides you through the Active Roles console to manage user accounts. You can also perform these tasks using the Active Roles Web Interface.

User account management tasks

This section covers the following tasks:

相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级

© 2024 One Identity LLC. ALL RIGHTS RESERVED. 使用条款隐私 Cookie Preference Center