List of Telnet pattern sets that help to extract the username from Telnet connections. ... The following command lists the available Telnet pattern sets. ... The following is a sample response rece...
Credential Stores offer a way to store user credentials (for example, passwords, private keys, certificates) and use them to login to the target server, without the user having access to the creden...
This document describes the ways multiple appliances in the Safeguard product line can be deployed together.
Make sure that you have all the required components listed in Technical requirements. ... SPS customers can download the official plugin from GitHub. ... For details, see "Using a custom Authentica...
Perform multi-factor authentication with the SPS plugin in terminal connections ... The following describes how to establish a terminal connection (SSH, TELNET, or TN3270) to a server. ... To estab...
In this case, the plugin must be Python 3.6.7 compatible. ... The plugin has access to these Python 3 modules: ... oneidentity_safeguard_sessions_plugin_sdk (version == 1.6.0, https://oneidentity.g...
As a general rule, One Identity supports the listed client and server applications until their manufacturer provides mainstream support for them. ... After the end date of the mainstream support, O...
This section describes how to upgrade the indexer application on your external indexer hosts. ... NOTE: The version of the external indexer must be equal to or greater than the version of One Ident...
The following describes how to configure CloudHSM. ... NOTE: The following steps assume that: ... You have set up your AWS CloudHSM, that is, you have created a user for the indexer, imported/gener...
The following describes how to configure monitoring. ... To configure monitoring ... Navigate to Basic Settings > Alerting & Monitoring. ... The default threshold values of the parameters are suita...
In order to successfully connect SPS with RADIUS server, you need the following components. ... In YubiKey: ... The users must have a YubiKey device and a means to map usernames to YubiKey Public IDs.
The SNMP server set on the Management tab can query status information from SPS. ... NOTE: In order to have your central monitoring system to recognize the SNMP alerts sent by SPS, import the SPS-s...
After finishing the initial configuration of One Identity Safeguard for Privileged Sessions (SPS) using the Welcome Wizard, connections must be configured between the clients and the servers. ... S...
The table below lists the definitions of event types for your sessions originating from SPS and the definitions' descriptions. ... Event type name ... Description
The About page on the SPS web interface and the /api/info endpoint contains various contact information. ... You can change this to a custom email address or URL. ... The following command lists th...
reconnect_attempts ... int ... The number of times SPS attempts to connect to the target server. ... reconnect_sleep ... int ... The number of seconds SPS waits between connection attempts. ... rec...
The following describes how to store the public keys of the users and the private-public keypair used in the server-side connection locally on One Identity Safeguard for Privileged Sessions (SPS).
In addition to the common parameters, the Active Directory (AD) backend has the following additional configurable parameters: ... The AD user’s primary group is always checked regardless of this se...
To request additional information from the user (for example, ticket number), define one or more [question_] section (for example, [question_1], [question_2]). ... The user input will be stored und...
Specifies the verbosity level of sessions handled by this connection policy. ... The log level of other connection policies is not affected. ... If disabled, the log level set at the /api/configura...
One Identity Safeguard for Privileged Sessions (SPS) can index the contents of audit trails, making the records of privileged users' activities easily searchable. ... Audit trails contain user acti...
By default, the configuration of the plugin is stored on SPS in the configuration of SPS. ... Make sure that you store the sensitive parameters (for example, api_key) of the plugin in an encrypted ...
The available SSH channel types and their functionalities are described below. ... For details on configuring channel policies, see Channel policy. ... Agent: Forwards the SSH authentication agent ...
A valid configuration file for OpenSSL with the following extensions: ... TIP: You can copy /etc/xcb/openssl-ca.cnf from SPS to the computer that will be used for signing. ... Rename the file to op...
The following command lists the configured reports. ... curl --cookie cookies https://<IP-address-of-SPS>/api/configuration/reporting/reports ... The following command retrieves the properties of a...
© ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center