Chat now with support
Chat mit Support

Safeguard for Privileged Passwords On Demand Hosted - Administration Guide

Introduction System requirements and versions Using API and PowerShell tools Using the virtual appliance and web management console Cloud deployment considerations Setting up Safeguard for Privileged Passwords for the first time Using the web client Getting started with the desktop client Using the desktop client Activity Center Search box Privileged access requests Toolbox Accounts Account Groups Assets
General/Properties tab (asset) Accounts tab (asset) Account Dependencies tab (asset) Owners tab (asset) Access Request Policies tab (asset) Asset Groups tab (asset) Discovered SSH Keys (asset) Discovered Services tab (asset) History tab (asset) Managing assets
Asset Groups Discovery Entitlements Linked Accounts Partitions Profiles Settings
Access Request settings Appliance settings Asset Management settings Tags Backup and Retention settings Certificates settings Cluster settings Enable or Disable Services settings External Integration settings Password Management settings Real-Time Reports Safeguard Access settings SSH Key Management settings Security Policy Settings
Users User Groups Disaster recovery and clusters Administrator permissions Preparing systems for management Troubleshooting Frequently asked questions Appendix A: Safeguard ports Appendix B: SPP 2.7 or later migration guidance Appendix C: SPP and SPS join guidance Appendix D: Regular Expressions About us

Replaying a session

You can play back a recorded session from the Request Workflow dialog, which can be accessed by clicking the Workflow button that appears to reviewers for completed session requests and in the Activity Center view when an access request event is selected in an activity audit log report. In addition, you can play back a recorded session by clicking the icon displayed to the left of an access request session event on the activity audit log report in the Activity Center view.

(desktop client only) To play back a session (Request Workflow dialog)

  1. Open the Request Workflow dialog using the Workflow button.

    NOTE: If accessing the Request Workflow dialog from the Activity Center, select an Access Request Session event from the activity audit log report.

  2. Locate an Initialize Session event.
  3. Depending on the source of the session, you will see one of the following buttons:
    • Link: For sessions recorded on the earlier embedded SPP sessions module. Click Link. You can play the session if it is archived. If the session has not been archived, you will see a message like: The session recording is unavailable until it is archived, please refer to the documentation. For more information, see SPP and SPS sessions appliance link guidance.
    • Play: for sessions recorded from and stored on SPS. Continue to the next step.
  4. Click Play to launch the Desktop Player to play a session recorded from SPS.

    A (green dot) indicates the session is live. A user with Security Policy Administrator permissions can click this icon to follow an active session.

    If the session recording has been archived from the local Safeguard file system, you will see a Download button instead of a Play button. Click Download to download the recording and then click Play.

    CAUTION: If you receive a message like: No Desktop Player. The Safeguard Desktop Player is not installed. would you like to install it now?, click Yes. See Installing the desktop client, Installing the Desktop Player, step 2.

  5. Accept the certificate to continue.

    In the Certificate error message, click Continue to use the default Session Recording Signing certificate shipped with Safeguard for Privileged Passwords. To use a different SSL certificate, click Abort and then import the appropriate certificates including the root CA.

  6. Use one of the following methods to play back the session recording:

    • Click Play Channel from the toolbar at the top of the player.
    • Click in the thumbnail in the upper right corner of the Information page.
    • Click Play Channel next to a channel in the Channels pane.

Desktop Player User Guide

To download the player user guide, go to One Identity Safeguard for Privileged Sessions - Technical Documentation. Scroll to User Guide and click One Identity Safeguard for Privileged Sessions [version] Safeguard Desktop Player User Guide.

Following and terminating a "live" session

An access request session event with a (green dot) in the left-most column of the activity audit log report or Request Workflow dialog indicates that the session is "live". Clicking this button launches the Desktop Player allowing you to follow what is happening in the active session. Safeguard for Privileged Passwords also allows you to end an active session directly from the desktop player.

NOTE: You must have Security Policy Administrator or Auditor permissions to follow an active session.

(desktop client only) To watch or end a "live" session

  1. From the Request Workflow dialog or Activity Center activity audit log report click the (green dot) next to an access request session event.

    NOTE: Security Policy Administrators can also launch the Safeguard Desktop Player from the Access Requests view. Select an access request session in the request grid and click the View Live Session toolbar button.

    The Safeguard Desktop Player launches allowing you to watch the active session. On the Information page, the thumbnail (upper right) displays a blinking red recording button when a session is "live".

  2. Use one of the following methods to follow the session:

    • Click Play Channel from the toolbar at the top of the player.
    • Click in the thumbnail in the upper right corner of the Information page.
    • Click Play Channel next to a channel in the Channels pane.
  3. In the play back window, you will see a Terminate button and a Live indicator in the lower right corner.
  4. Click Terminate to stop the active session.

NOTE: You can also end an active session by revoking the session through the Windows desktop client.

Toolbox

When you select the  Administrative Tools link from the Home page navigation pane, the Toolbox view appears. This view gives you quick-start links to the tasks you can perform. The display is tailored to your Administrator permissions.

Perform the following.

  • Click a tile for quick access to an Administrative Tool.
  • Click to display the dialog to add an object.

In addition, the Toolbox allows you to view the status of running Tasks.

Viewing task status

Safeguard for Privileged Passwords displays a number on your Toolbox navigation link to notify you when you have any tasks running.

To view task status

  1. Navigate to  Administrative Tools l Toolbox.
  2. Click  Popout in the upper right corner to float the Tasks pane.

    You can then select and drag the pane to any location on the console and resize the window.

  3. Depending on what tasks are being performed, you can view progress in tabs like the Task Output tab, Operations tab, or SshCommunication tab.
  4. Click  Remove to delete a task from the pane.
  5. Click  Cancel next to a running task to stop a task.
  6. Click Clear to remove all items from the Tasks pane.
Verwandte Dokumente

The document was helpful.

Bewertung auswählen

I easily found the information I needed.

Bewertung auswählen