Category
Product Version
Topic
Subtopic
General logging process for Active Roles (4338946)
When working with Support or when investigating issues, it may be necessary to gather logging from certain components in order to diagnose a root cause. ... Please review the below solutions for instructions on gathering these logs.
Active Roles Licensing (4221522)
Active Roles Licensing ... The following article explains Active Roles Licensing:
Is Windows 10 supported? (4314961)
Active Roles 7.0 supports Windows 10 for the Active Roles Console (MMC).
How do you start, stop or restart the Administration service? (4306568)
You can start, stop or restart the Administration Service by clicking the Start, Stop or Restart button at the top of the Administration Service page in the Configuration Center main window.
How can you change service account details, such as updating the password? (4290711)
From the Administration Service page in the Configuration Center main window, click Change in the Service account area. ... In the wizard that appears, supply the logon name and password of the domain user account in which you want the Administration Service to run.
How do you change the Active Roles database? (4295050)
In the wizard that appears, specify the SQL Server instance and the database you want the Administration Service to use, and choose the database connection authentication mode (Windows authentication or SQL Server login).
How do you import Management History data? (4315826)
Please refer to feature guide for details.
How can you check the status of the Administration service? (4217075)
On the Administration Service page in the Configuration Center main window, you can view the state of the Administration Service. ... Please refer to the Feature Guide for further details.
How can you import configuration data? (4302552)
Please refer to feature guide for details.
How can you change which group has Active Roles admin rights? (4297932)
In the wizard that appears, specify the group that you want to have the Active Roles Admin rights.
Which Version of TLS is Supported by the Active Roles Web Interface (4319325)
Which version of TLS (Transport Layer Security) is supported by the Active Roles Web Interface? <p>Active Roles 7.2.x and later versions support TLS 1.2</p> ... <p><strong>Note:</strong> Disabling TLS in an environment has no impact on Active Roles. There may be other dependencies in your environment that may require updating when upgrading the version, or when disabling this protocol.</p>
A change in functionality noted with delegated Move operations after upgrading to Active Roles 8.2.x (4376932)
After upgrading to Active Roles 8.2.x, delegated Active Roles Users are now encountering error when attempting to move objects into or out of containers where in previous versions, the delegated permissions were sufficient.
How does the Change History work in Active Roles? (4336407)
Operations made on native Active Directory by native Active Directory clients such as Active Directory Users and Computers or Active Directory PowerShell will not be recorded in Active Roles Change History.
How does Active Roles handle the LAPS ms-Mcs-AdmPwd attribute? (4336879)
How will Active Roles handle the ms-Mcs-AdmPwd attribute which is present after implementing LAPS? ... In Windows, the LAPS attributes are marked as confidential attributes in the Active Directory schema.
Azure Communication Port and URLs (4272035)
This article clarifies what communication port and URLs’ access is required by AR. ... <p>Port 443 needs to be opened on the firewall as well as the following ports:</p> ... <p> </p> ... <p><a href="https://support.oneidentity.com/kb/30256/communication-ports-for-active-roles" target="_blank">https://support.oneidentity.com/kb/30256/communication-ports-for-active-roles</a></p>
Grouptype property showing as "default" instead of "security" (4378828)
When running a query on Active Roles Management Shell to retrieve a group type, for example: ... The results for groupType return "Default" for a security group type. ... Active Roles Management Shell should return security as a result.
Active Roles Logging (4216506)
This article explains how to enable the Active Roles Administration service log and where the log is located. ... It should only be enabled during troubleshooting scenarios as the logs may grow quite large in a very short period of time.</p>
Inplace upgrade with multiple instances connected to the same DB is not supported (4377003)
When running an inplace upgrade with 2 or more Active Roles instances, first Active Roles instance upgrades and creates Configuration and Management History DBs succesfully. ... When upgrading the next Active Roles server the following error appears:<br><br><strong>"Verification failed:<br><br>- The destination Configuration database already exists on the server.
The Change History timestamp is UTC and not local time (4334352)
The Active Roles Change History and Activity Reports shows entries in UTC format and not showing local time.
Does Active Roles support LAPS version 2? (4373338)
STATUS ... Enhancement Request 433324 has been logged to support LAPS version 2, and will be considered in a future release of Active Roles.
Change History is logging the activity changed in the Dynamic Group for all the users (4372052)
Change History is logging the activity changed in the Dynamic Group for all the users even if the users are not members of the group changed. ... The following <strong>Defect ID#: 421340</strong>, has been submitted to remove this behavior of logging Change History for Dynamic Groups of which the user is not a member.
Active Roles wipes down attributes in Azure after the group becomes hybrid (4378736)
Active Roles wipes down attributes in Azure such as MailEnabled and ProxyAddresses after the group becomes a hybrid by BackSync. ... If there is a mismatch in attribute values between AD On-Premises and Azure, as soon as the group becomes hybrid Active Roles will preserve and replicate the attributes from Active Directory.
STS configured in multiple ARS not working (4378715)
There is a requirement to implement multiple Active Roles Admin service hosts in a standalone configuration. ... The first ARS Admin host STS has been successfully configured and works as expected, however the other ARS Admin service hosts ARS WI do not appear correctly configured, when trying to configure ARS WI to STS in a second ARS instance, in the page with the RSTS Proxy and port-number, the following error appears:
HOW TO: Remove objects counted towards the Managed Objects total in Active Roles Licensing (4223966)
There may be a requirement to reduce the overall licensed user account total in an Active Roles environment. ... This will prevent using licenses when these objects are not in use and will prevent exceeding the total Managed Objects total.
Error: AADSTS7000222: The provided client secret keys are expired. (4292344)
Log in to the Azure portal at portal.azure.com ... Navigate to Azure Active Directory | App Registrations | Click on your App under Display name (Example: ActiveRoles_AutocreatedAzureBackSyncApp_V2) | Certificates & secrets.
New Product Association
- Self Service Tools
- Knowledge Base
- Notifications & Alerts
- Product Support
- Software Downloads
- Technical Documentation
- User Forums
- Video Tutorials
- RSS Feed
- Featured Content
- Communication Ports for ARS
- How to utilize real time RSS feeds to stay updated on One Identity products
- Contact Us
- Technical Support
- View All