立即与支持人员聊天
与支持团队交流

Active Roles 8.2 - Feature Guide

Introduction About Active Roles
Main Active Roles features Technical overview of Active Roles
About presentation components Overview of service components About network data sources About security and administration elements About Active Directory security management Customization using ADSI Provider and script policies About dynamic groups About workflows Operation in multi-forest environments
Examples of use
Administrative rules and roles
About Managed Units About Access Templates About Access Rules About rule-based autoprovisioning and deprovisioning
Configuring and administering Active Roles Overview of Active Roles Synchronization Service Support for AWS Managed Microsoft AD FIPS compliance LSA protection support STIG compliance

Export the configuration of a Web Interface site to a file

You can export the configuration object of an existing Web Interface site with the Web Interface > Export Configuration option of the Configuration Center. This opens the Export Web Interface Site Configuration wizard, allowing you to save the configuration of the site from the Administration Service into an *.xml file with the specified name to the specified location.

TIP: Use this option to back up the configuration of existing Web Interface sites, then use them as a baseline for creating additional Web Interface sites in your organization.

Delegation of user access to the Active Roles Console

By default, after installing Active Roles, every user can log in to the Active Roles Console (also known as the MMC Interface). To restrict user access to the Console, in the Configuration Center, use the MMC Interface Access > Modify menu, then select the Restrict Console (MMC Interface) access for all users option.

Doing so restricts all non-Active Roles Admin users from using the Active Roles Console.

TIP: You can give Active Roles Console access later to selected users with the User Interface Management - MMC Full control Access Template (AT) of the Active Roles Console. This AT gives access permission to the Server Configuration > User Interfaces > MMC Interface object.

For more information on how to use ATs, see Applying Access Templates in the Active Roles Administration Guide.

Configuration of Active Roles logging settings

The Active Roles Configuration Center also allows you to manage the logging settings of the various Active Roles components. As part of this, you can:

  • Enable or disable logging for each Active Roles component.

  • Open the location of the various component log files.

  • Open the component logs directly in the Active Roles Log Viewer utility.

To view, configure and manage Active Roles logs, in the Configuration Center, navigate to the Logging page. Once opened, the page lists the following information:

  • Component: The name of the Active Roles component producing the log, such as the Administration Service or the Active Roles Console.

  • Logging: Indicates whether logging is enabled or disabled for the component, and shows the logging level (Basic or Verbose). While Basic logging includes only errors, warnings and informational messages in the log files, Verbose logging also adds debugging and tracing messages.

  • Log location: Indicates the full path of the log file.

The toolbar of the Logging page allows you to perform the following log management tasks:

  • To enable or disable logging for a component, or change the logging level, select the component in the list, then click Modify.

  • To open the folder that contains the log file(s) of a component, select the component in the list, then click Browse with Explorer.

  • To open the Administration Service log in the Active Roles Log Viewer utility, select Administration Service in the list of components, then click Open in Log Viewer. For more information, see About Active Roles Log Viewer.

Configuration of Solution Intelligence

You can enable or disable Solution Intelligence in the Active Roles Configuration Center for your Web Interface sites. Solution Intelligence is an optional Active Roles feature used by One Identity to gather standard telemetry data about your Active Roles deployment, containing load, performance and usage metrics, exception reports, and other diagnostic information used to improve Active Roles.

Solution Intelligence is disabled by default.

相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级