Kategorie
Topic
Subtopic
Book
Feature Request - Implementing user specific server access restriction in SRA initiated workflow (4378675)
At the moment, there is no way to set user-specific server access restrictions in SRA initiated workflow. ... Enhancement Request # 433357 was created for consideration to add this feature in a future release of SRA, subject to product management approval.
SRA connection policy with Inband destination selection does not work with an asterisk as a targets value (4378674)
When creating an SPS connection policy that is configured with Inband Destination Selection and adding an asterisk "*" character as a value for targets, this does not allow the SRA Administrator to create SRA connections or tiles in the SRA Web UI and having this limitation, prevents the ability to configure SRA initiated workflow with (User-specific server access restrictions) use-case.
DNS connectivity requirements for Starling products (4368584)
This article outlines the DNS connectivity requirements for Starling products. ... all below endpoints are https, port 443.<br>Recommendation for customer is to whitelist *.cloud.oneidentity.com and *.cloud.oneidentity.eu when required as hostnames can change in Starling.<b> </b></span></i></span></span><br> </td></tr><tr><td colspan="1" rowspan="1" valign="top" style="border-bottom: 1px solid #c1c7d0;padding: 7px 10px 7px 10px;background-color: #f4f5f7;border-top: none;border-right: 1px solid #c1c7d0;border-left: 1px solid #c1c7d0;"><span style="font-size: 11pt;"><span style="font-family:
Safeguard on Demand Starling Edition - Secure Gateway Release Notes (4376447)
Secure Gateway is a client that can be used to connect your network to the Safeguard On Demand (Starling Edition) Cloud environment appliances Safeguard for Privileged Passwords and Safeguard for Privileged Sessions to assets located within your company's private network.
Delete Account (4374046)
Needing to remove/delete an account in Starling Account no longer used or removal needed. ... <p>To delete the organization, (the admin of the organization)
SRA seems to blacklist former deleted FQDNs (4373606)
After deleting assets in SRA-GUI it seems like it cannot enter them again, even though, if adding the asset in the RDP-Connection Policy in SPS. Policy issue from the RDP. ... <div style="margin-left: 40px;">1)
Groups for visibility of servers in SRA (4373382)
Implement SRA and the users should not see all servers avail in SRA but only the ones allowed to.<br><br>Is therefore Cloud Only group from Azure AD needed.<br><br>Can this also be a group, which is synced from the on-Prem AD to Azure AD? AD groups synced aren't supported under SRA Only AAD Only groups are supported, AD groups synced to Azure AD aren't supported under SRA
SPP does not display launch remote web session button (4373371)
In this KB article we will mainly cover configuration issues. ... Solution 1:<br>There is a "Show Session Launch Button" option available to users under "My Request Options" in the web client.
How to configure SRA to work with SPS (4315397)
How to configure Safeguard Remote Access to work with Safeguard for Privileged Sessions <div>To use SRA with SPS, you will need to be registered with Starling, and will need to ensure that your SPS appliance is joined to Starling.
FAQ - One Identity Starling Organization Trouble Joining Information (4273425)
For more details regarding Microsoft Azure Authentication please see this article. ... If you have a Starling Organization you can join your Starling Capable product to this Organization. ... Ensure you are an Organization Admin of the Starling Organization to which you would like to join your Starling Capable product.
RDP connection freezes soon after the initial connection through SRA (4316738)
<p>When establishing an RDP connection through Safeguard Remote Access joined to SPS, the session will connect successfully, but the screen will freeze after 2 minutes. ... This is reproducible and happens every time.</p> During an SRA session, SPS uses a control channel connected to our Azure based service (sra-ygg-prd-usw.servicebus.windows.net = 138.91.242.98) via tcp/443.
Impact of CVE-2021-44228 Apache Log4j Vulnerability (4256277)
A critical vulnerability was recently discovered related to systems/software that run Apache Log4j ... This is an industry-wide vulnerability affecting the Apache Log4j itself and is not specific to Safeguard Remote Access
Does Safeguard Remote Access sessions support file transfers? (4379086)
When connected to sessions via Safeguard Remote Access (SRA) , which session protocols support file transfers? ... SRA SSH sessions supports file transfers with the following limitations: ... SSH file transfer in active remote sessions is not supported on touch devices.
Changes to Web Application Firewall for Starling (4378893)
When using a web application or a specific API call, the following error is displayed: ... 404 Forbidden ... Microsoft-Azure-Application-Gateway/v2 ... None ... STATUS: ... Please create a Level 1 case with Support.
Safeguard Remote Access - Administration Guide > Starling integration
One Identity Starling helps to combine products from the One Identity line to create a secure and customizable cloud service. ... For more information, see the Starling technical documentation. ... If you are using a Starling 2FA plugin, (that is, you have uploaded it to Basic Settings > Plugins and then configured it at Policies > AA Plugin Configurations) and the SPS node is joined to One Identity Starling, you do not have to specify api_key and api_url in the Starling 2FA plugin configuration.
Safeguard Remote Access - Administration Guide > Joining SPS to One Identity Starling
This section describes how to use SPS with One Identity Starling and how to take advantage of companion features from Starling products, such as Two-Factor Authentication (2FA) and Identity Analytics.
Safeguard Remote Access - Administration Guide > User-side use cases
User-side use cases ... This section covers the user-side use cases for One Identity Safeguard Remote Access (SRA).
Safeguard Remote Access - Administration Guide > Configuring local Credential Stores
The following describes how to configure a local Credential Store that stores the credentials used to login to the target host. ... Prerequisites ... NOTE: Users accessing connections that use Credential Stores to authenticate on the target server must authenticate on SPS using gateway authentication or an AA plugin.
Safeguard Remote Access - Administration Guide > User Settings side sheet
You can use the User Settings side sheet to set the theme and default image resolution of One Identity Safeguard Remote Access. ... Setting the theme ... Setting the theme might result in a more comfortable user experience.
Safeguard Remote Access - Administration Guide > Configuring connections
This section describes how to configure connections. ... NOTE: ... When configuring HTTP or SSH connections, avoid using the IP address configured for administrator or user login on SPS. ... To configure connections
Safeguard Remote Access - Administration Guide > Configuring usermapping policies
A usermapping policy describes who can use a specific username to access the remote server: only members of the specified local or LDAP usergroups (for example, administrators) can use the specified username (for example, root) on the server.
Safeguard Remote Access - Administration Guide > Using plugins
To download the official plugins for your product version, navigate to the product page on the Support Portal. ... The not officially supported plugins are also available on GitHub . ... To write your own custom plugin, feel free to use our Plugin SDK.
Safeguard Remote Access - Administration Guide > HTTPS proxy
The HTTPS proxy settings must be configured if your company policies do not allow devices to connect directly to the web. ... Once configured, SPS uses the configured proxy server for outbound web requests to external integrated services, such as Join to Starling or SPS plugins.
Safeguard Remote Access - Administration Guide > Using credential stores for server-side authentication
Using credential stores for server-side authentication ... Credential Stores offer a way to store user credentials (for example, passwords, private keys, certificates) and use them to log in to the target server, without the user having access to the credentials.
Safeguard Remote Access - Administration Guide > Configuring a Credential store
Configuring a credential store is an optional step for both RDP and SSH connection policies. ... To enable password-less login to target servers ... Create a local credential store. ... Setup login credentials to the target server.
Neue Produktverknüpfung
- Self-Service-Tools
- Knowledge Base
- Benachrichtigungen und Warnmeldungen
- Produkt-Support
- Software-Downloads
- Technische Dokumentationen
- Benutzerforen
- Videoanleitungen
- RSS Feed
- Ausgewählte Inhalte
- Impact of CVE-2021-44228 Apache Log4j Vulnerability
- Kontakt
- Technische Support
- Alle anzeigen