立即与支持人员聊天
与支持团队交流

Password Manager 5.9.7 - How-to Guide

Overview Licensing Upgrading Secure Password Extension Password Policy Manager Configuration Reinitialization Reports Starling 2FA Customizations Troubleshooting

How to move the Password Manager database

Password Manager uses the database to store user information for statistics and reporting. This is assuming that the database will move to another SQL Server with a new instance of SQL Reporting Services.

How to move the Password Manager Database:

  1. Open SQL Management Studio on the existing SQL Server and detach the database
  2. Move the Database files to the new SQL Server (both the MDF and LDF files are required)
  3. Attach to the database on the new SQL Server
  4. Open the Password Manager Admin site and browse to the Reports tab
  5. Select Edit Connection and follow the Wizard inputting the new server name and credentials to re-attach the database and to redeploy the SQL Reporting Services Reports to the new SQL Reporting Services Server.

Also see Solution 87872:

https://support.oneidentity.com/password-manager/kb/87872

Changing the Password Manager service account

Password Manager has two main sections where a password must be changed. The Password Manager service and the Application Pool identity.

NOTE: If you want to modify the service account after installing Password Manager 5.9.7, you cannot modify it by changing the account on Password Manager service because the new account will not be able to read the current configuration.

To modify the service account after installing Password Manager 5.9.7:

  1. On the menu bar, click General Settings, then click the Import/Export tab and export the configuration file of the primary instance of Password Manager.

    NOTE: Due to security enhancements, a complex password is generated while exporting the configuration. You must remember the password or store it in a secure place, to use while importing the configuration.
  2. Stop the Password Manager Service.
  3. At the command prompt, type services.msc and select Password Manager Service in the console and change the log on details.
  4. Start the Password Manager Service.

    NOTE: Before you continue, it is recommended to back up the One Identity folder at C:\ProgramData.
  5. Delete the One Identity folder at C:\ProgramData.
  6. Restart the computer.
  7. Open the Administration site.
  8. On the Instance Initialization page, select Unique instance and click Save. On the menu bar, click General Settings, then click the Import/Export tab and import the configuration file, which was exported before changing the service account.

To change the Password Manager Application Pool account:

  1. Launch IIS (Internet Information Server)
  2. Select Application Pools
  3. Right-click PMAdmin
  4. Select Advanced settings
  5. Select Identity
  6. Within the Application Pool identity select “Set…”
  7. Then set the new credentials
  8. Restart the application pool to make sure it starts
  9. Repeat Steps 4-8 for the Helpdesk and Self-Service Application pools

Workflow design considerations

A Workflow is the set of options available to Users and Helpdesk staff on the Self Service and Helpdesk sites. Each of these options are also comprised of various actions that will be performed. For instance, if a user chooses Forgot My Password, you can add in options to authenticate the user using the Question and Answer profiles and send an email upon completion.

Each Workflow contains specific user scopes to which the Workflow will be applied. As such, it is recommended to keep the number of Workflows to a minimum. For instance, if you have two domains but the rules are the same for each, you can simply add in both domains for the Workflow.

When to use one Workflow

  • Same Question & Answer profiles for all users in all Domains
  • Same email notification requirements (languages, logos, same text)
相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级