Enable 2FA for Administrators and Enable 2FA for HelpDesk Users
This section describes the steps to enable 2FA to protect AD LDS Administration Site and Helpdesk Site users.
To enable 2FA for Administrators and HelpDesk Users
-
On the home page of the AD LDS Administration Site, click the Management/2FA enforcement tab.
-
Select Use Secure Token Server for authentication checkbox for admin authentication and/or helpdesk authentication, then choose one of the Secure Token Server providers, which you need to use for 2FA authentication. The login interface presentation can be selected from the Choose the behaviour of the authentication dropdown.
-
Click Save to save the settings.
NOTE: At least one Secure Token Server provider needs to be configured. If there is an external provider, which loads their content while sending a X-Frame-Options : Deny header, then the iframe option will not work. In this case, the redirect or the popup option is required.
Password Manager provides a simple and convenient way to view, print, and save reports and charts allowing you to analyze information on how the application is used. The reporting functionality within the solution is based on Microsoft SQL Server Reporting Services as a common reporting environment.
The Reports section of the Administrator site includes a number of pre-defined reports that help you perform the following tasks:
-
Track user registration activity
-
Analyze information about what actions are performed by users in Password Manager
-
Check users’ registration status
-
View a list of users whose Questions and Answers profiles must be updated to comply with the current administrator-defined settings
-
Track helpdesk operators’ activity
The user action history provides records of all actions performed by users registered with Password Manager. You can search for records using a full-text search functionality. The user action history is provided by Enterprise Auditing Service embedded in Password Manager.
To use Password Manager reports, you need to connect to an SQL Server and a Report Server.
To use the user action history functionality, you need to connect to an SQL Server only.
Alternative options
You can use predefined Power BI templates to generate interactive reports as an alternative to Reporting. For more information on Power BI, see Working with Power BI templates.
To enable the reporting functionality of Password Manager, ensure that the following requirements are met:
-
A SQL Server is deployed in your environment and the Password Manager database is configured on that server.
-
A SQL Server Reporting Services report server is installed in your working environment.
-
You have configured a connection to the report server through the Administration Site.
The interactive Web-based reports are built on data that the report server retrieves from the Password Manager SQL database, and can be either viewed online or exported into multiple file formats.