立即与支持人员聊天
与支持团队交流

Password Manager 5.10.1 - Administration Guide (AD LDS Edition)

About Password Manager Getting Started Upgrading Password Manager Password Manager Architecture
Password Manager Components and Third-Party Solutions Typical Deployment Scenarios Password Manager in Perimeter Network Management Policy Overview Password Policy Overview reCAPTCHA Overview User Enrollment Process Overview Questions and Answers Policy Overview Data Replication Phone-Based Authentication Service Overview Configuring Management Policy
Management Policies
Checklist: Configuring Password Manager Understanding Management Policies Configuring Access to the Administration Site Configuring Access to the Self-Service Site Configuring Access to the Helpdesk Site Configuring Questions and Answers Policy Workflow overview Custom workflows Custom Activities Self-Service Workflows Helpdesk Workflows User Enforcement Rules
General Settings
General Settings Overview Search and Logon Options Import/Export Configuration Settings Outgoing Mail Servers Diagnostic Logging Scheduled Tasks Web Interface Customization Instance Reinitialization Realm Instances AD LDS Instance Connections Extensibility Features RADIUS Two-Factor Authentication Password Manager components and third-party applications Unregistering users from Password Manager Working with Redistributable Secret Management account Email Templates
Password Policies One Identity Starling Reporting Appendix A: Accounts Used in Password Manager for AD LDS Appendix B: Open Communication Ports for Password Manager for AD LDS Appendix C: Customization Options Overview Appendix D: Feature imparities between the legacy and the new Self-Service Sites Glossary

Maximum Password Age Policy Task

This task is used to force users to change passwords at next logon if password’s maximum age is reached.

The scope of this task is the scopes of all configured One Identity password policies. For more information on One Identity password policies, see Creating a Password Policy.

This task applies the maximum password age rule set in the configured One Identity password policies. If the maximum password age is reached, users will be required to change password at next logon.

To schedule this task

  1. Connect to the Administration site by typing the Administration site URL in the address bar of your Web browser. By default, the URL is http://<ComputerName>/PMAdminADLDS/.

    NOTE: When prompted to log in, provide your domain user name in a domainname\username format.

  2. On the menu bar, click General Settings, then click the Scheduled Tasks tab.
  3. Click Edit under the Maximum Password Age Policy task.
  4. Select the The task is enabled check box.
  5. From the drop-down list select one of the following options: Run hourly, Run daily or Run weekly.
  6. Depending on the option selected above, specify the time and/or days of the week when this task should be run.
  7. Under Run the task on this Password Manager instance, select the Password Manager server on which the task should be run.

    IMPORTANT: The task status can be viewed only on the Password Manager instance on which the task is scheduled to run.
  8. Click Save.

To force the task to run earlier than scheduled, click the Run now link under the task.

Update RADIUS server status

This task is used to update the RADIUS server status. By default, the schedule task runs for every 5 minutes.

To schedule the task

  1. Connect to the Administration site by typing the Administration site URL in the address bar of your Web browser. By default, the URL is http://<ComputerName>/PMAdminADLDS/.

    NOTE: When prompted to log in, provide your domain user name in a domainname\username format.

  2. On the menu bar, click GeneralSettings, then click the Scheduled Tasks tab.
  3. Click Edit under the Update RADIUS server status task.
  4. From the drop-down list select one of the following options: Run hourly, Run daily or Run weekly.
  5. Depending on the option selected above, specify the time and/or days of the week when this task should be run.
  6. Under Run the task on this Password Manager instance, select the Password Manager server on which the task should be run.

    IMPORTANT: The task status can be viewed only on the Password Manager instance on which the task is scheduled to run.

  7. Click Save.

User Status Statistics Task

By default, the User Status Statistics task runs every day. Normally, it is not recommended to change the schedule, although if you have other heavy-duty tasks running at that time, we recommend that you reschedule the User Status Statistics task to run in off-peak hours. The User Status Statistics task is used to do the following:

  • Enumerating users for licensing purposes. Password Manager is licensed for a specific number of user accounts enabled for management. The task checks whether the managed user count is within the license limit.
  • Collecting statistic information about users including the total user count, the number of users registered and the users not-registered with Password Manager, the number of users required to register with Password Manager, and the number of users required to update profile. This information is collected for all application directory partitions managed by a specific Password Manager instance and displayed on the Reports page of the Administration site.

The scope of this task corresponds to user scopes of all configured Management Policies.

To schedule this task

  1. Connect to the Administration site by typing the Administration site URL in the address bar of your Web browser. By default, the URL is http://<ComputerName>/PMAdminADLDS/.

    NOTE: When prompted to log in, provide your domain user name in a domainname\username format.

  2. On the menu bar, click General Settings, then click the Scheduled Tasks tab.
  3. Click Edit under the User Status Statistics task.
  4. From the drop-down list select one of the following options: Run hourly, Run daily or Run weekly.
  5. Depending on the option selected above, specify the time and/or days of the week when this task should be run.
  6. Under Run the task on this Password Manager instance, select the Password Manager server on which the task should be run.

    IMPORTANT: The task status can be viewed only on the Password Manager instance on which the task is scheduled to run.
  7. Click Save.

To force the task to run earlier than scheduled, click the Run now link under the task.

Clear Old Records from Reporting Database

Use this task to clean up records in the reporting database. The administrator needs to provide a date range and select particular record types to delete the records. The administrator can schedule a task on a specific date and time.

To schedule the task:

  1. Connect to the Administration site by typing the Administration site URL in the address bar of your Web browser. By default, the URL is http://<ComputerName>/PMAdminADLDS/.

    NOTE: When prompted to log in, provide your domain user name in a domainname\username format.

  2. On the menu bar, click General Settings, then click the Scheduled Tasks tab.
  3. Click Edit under Clear Old Records from Reporting Database to open the console.
  4. Select the The task is enabled checkbox.
  5. Select Archive and Clear Records or Clear Records.
  6. Select the date range from the From Date and To Date date pickers.
  7. Select the checkboxes corresponding to the record types that you want to clear, in Select Record Types section.
  8. Alternatively, select the Select All checkbox to select all the record types to clear.
  9. Select the date and time from the Start at date picker to schedule the task to clear the records.
  10. Select the Password Manager instance to run the task.
  11. Click Save to save all the settings, and schedule the task.
相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级