立即与支持人员聊天
与支持团队交流

One Identity Safeguard for Privileged Passwords 6.13.1 - Administration Guide

Introduction System requirements and versions Using API and PowerShell tools Using the virtual appliance and web management console Cloud deployment considerations Setting up Safeguard for Privileged Passwords for the first time Using the web client Getting started with the desktop client Using the desktop client Activity Center Search box Privileged access requests Toolbox Accounts Account Groups Assets
General/Properties tab (asset) Accounts tab (asset) Account Dependencies tab (asset) Owners tab (asset) Access Request Policies tab (asset) Asset Groups tab (asset) Discovered SSH Keys (asset) Discovered Services tab (asset) History tab (asset) Managing assets
Asset Groups Discovery Entitlements Linked Accounts Partitions Profiles Settings
Access Request settings Appliance settings Asset Management settings Tags Backup and Retention settings Certificates settings Cluster settings Enable or Disable Services settings External Integration settings Password Management settings Real-Time Reports Safeguard Access settings SSH Key Management settings Security Policy Settings
Users User Groups Disaster recovery and clusters Administrator permissions Preparing systems for management Troubleshooting Frequently asked questions Appendix A: Safeguard ports Appendix B: SPP 2.7 or later migration guidance Appendix C: SPP and SPS join guidance Appendix D: Regular Expressions About us

Adding a registered connector

desktop client only

It is the responsibility of the Asset Administrator to configure registered connectors.

To add a registered connector

IMPORTANT: Before adding a registered connector, read the Starling Connect documentation for instructions on configuring the connector within Starling Connect for use with Safeguard for Privileged Passwords. The connectors currently available for use with Safeguard for Privileged Passwords are listed in the Starling Connect documentation.

  1. Navigate to Administrative Tools | Settings | Asset Management | Registered Connectors.
  2. Click  Add.
  3. These fields display:
    1. Registered Connectors: Select the connector (already configured in Starling Connect) to register with Safeguard for Privileged Passwords.
    2. Starling Connector Version: Select the version for the Starling connector.
    3. Display: Enter a display name for the connector.
    4. Visible To All Partitions: Select this check box to make the registered connector visible to all partitions.
    5. Visible To Partitions: Available when Visible To All Partitions is not selected, use this section to define which partitions this registered connector will be visible to:
      • (Add): Use this button to add a new partition.
      • (Remove): Use this button to remove a previously selected partition.
  4. To add the registered connector, click OK.

    The connector will now be registered as a platform and be available as a platform type in the definition of an asset.

IMPORTANT: When using a registered connector with Safeguard for Privileged Passwords, there may be additional considerations involved when configuring certain functionalities. For example, Azure AD uses throttling to limit the number of password changes that can occur within a set period of time. This can mean errors are reported within Safeguard for Privileged Passwords when a large number of accounts associated with a registered Azure AD connector are all scheduled to automatically update their passwords due to their password management settings.

Tags

On the desktop client, Asset Administrators can define rules that will dynamically add tags to assets and asset accounts so that they can be easily identified and added to dynamic groups. On the web client, Asset Administrators can create and manage tags.

  • desktop client: Use the Administrative Tools | Settings | Asset Management | Tags pane to create and manage dynamic tags for assets and asset accounts.

  • web client: Use Asset Management | Tags to create and manage tags for assets and asset accounts.

In addition, Asset Administrators can manually add static tags to assets and accounts on the General tab of the Assets or Accounts view. For more information, see Manually adding a tag to an asset and Manually adding a tag to an account.

The Tags page provides a centralized view of all the tags defined for assets and asset accounts, regardless of how they were assigned. It displays the following details.

Table 173: Tags: Properties
Property Description

Name

The name assigned to the tag when it was created.

Partition

The asset partition to which the tag belongs.

Account Rules

Indicates whether there is a rule associated with the selected tag. A check mark in this column indicates that the tag has an account rule.

Asset Rules

Indicates whether there is a rule associated with the selected tag. A check mark in this column indicates that the tag has an asset rule.

Description

Information about the tag.

Assigned Owners

Information on the owner(s).

Use these toolbar buttons to manage tags.

Table 174:  Tags: Toolbar
Option Description

New / New Tag

Add a tag. For more information, see Adding a tag for tagging of assets or asset accounts.

Delete

Remove the selected tag. For more information, see Deleting an asset or asset account tag.

Refresh

Update the list of tags.

Edit

Modify the selected tag. For more information, see Modifying an asset or asset account tag.

NOTE: You cannot modify the partition assignment of an existing tag using the Edit operation. Use the Copy operation to clone the tag and assign it to an additional partition. Use the Delete operation to remove the tag from the existing partition.

Copy

Clone the selected tag and assign it to one or more additional partitions. For more information, see Copying an asset or asset account tag to another partition.

NOTE: If the tag already exists in the partition, the tag will be replaced with the cloned one.

Occurrences

View a list of assets and asset accounts that are assigned to the selected tag. For more information, see Viewing asset and asset account tag assignments.

Search

Search for a specific tag or set of tags in this list.

Adding a tag for tagging of assets or asset accounts

Use the New/New Tag button on the Tags page to add a tag for an asset or asset account.

Deleting an asset or asset account tag

A tag can be assigned to multiple object types. That is, you can have the same tag assigned to assets and asset accounts including directory accounts. When deleted, all references to a tag will be removed, no matter how it was assigned (dynamically or manually).

相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级