Chat now with support
Chat with Support

On Demand Global Settings Current - User Guide

Working with On Demand Overview of On Demand Signing up for On Demand Managing organizations and regions Adding users to an organization Managing your Azure tenants and on-premises domains On Demand Home page Configuring settings Documentation roadmap Technical Support

About revoking admin consent

Completely revoking admin consent removes all permissions granted for the On Demand application. Revoking admin consent is a manual process that must be performed in the Microsoft Azure portal.

NOTE: You can revoke or disable consent in the Microsoft Azure Portal.

Revoking admin consent removes all permissions granted for the On Demand application.

Click on the Azure Active Directory icon in the left menu.
At the top of the Properties pane, select Delete, and then select Yes to confirm you want to delete the application from your Azure AD tenant.

Alternately, to disable consent, you can disable a user from signing in.

Search for and select Azure Active Directory.
Select Enterprise applications.
Select Properties.
Select No for Enabled for users to sign-in?.
Select Save.

Removing a tenant

By removing a tenant, you are beginning the process of disabling all module functions related to the tenant. When you remove a tenant, you are removing the tenant from the On Demand organization for all users and this action cannot be undone.

All module operations will stop after 30 days. At that point, the following operations are halted:

You must provide the tenant name, your organization ID, and the tenant region.

Click Tenants in the navigation panel on the left.
Click Remove Tenant.

When you previously added the tenant, a Service Principal was created in your tenant, under Enterprise applications, for each consent that you granted for this tenant. To remove the consents, log in to the Microsoft Azure portal and go to the Azure Active Directory Admin Center. Browse to Enterprise Applications, search for Quest on Demand -, and delete all the application records that you do not need.

Managing your on-premises domains

In addition to managing your Azure tenants, On Demand provides support for connecting to on-premises domains in hybrid environments to perform data collection and management activities.

By installing an agent with a unique key and specifying domains to which the agent is connected, you can review information and perform actions in your hybrid environment. You start the process to install and configure an agent by selecting Tenants in the left navigation bar and selecting Hybrid Agents.

You can add on-premises domains to On Demand selecting Tenants in the left navigation bar and selecting Active Directory Domains. You can also add domains as part of the agent configuration process.

You must meet the following prerequisites to download and install an agent for on-premises data collection from specified domains:

The agent setup program will prompt you for service account credentials (username and password) that are used to run the agent service. The agent service account must be a domain account and must have local administrator rights on the computer on which the agent is being installed. Also, for License Management, the service account must have Write Members permissions on the directory group objects.

Adding an on-premises agent

The following steps describe the general process for installing and configuring the On Demand on-premises agent. For the detailed procedures, see To add an agent and To configure an agent .

For information about the permissions required to install an agent and the permissions needed by the agent service account, see Agent prerequisites .

Click Hybrid Agents.
Click Add Agent,
Click Generate New to get a new passphrase.
Enter a passphrase word count (from 4 to 100 words) and click Generate New to get a passphrase of the specified word count. NOTE: The passphrase must be from 32 to 1024 characters long.

Depending on your browser and the download options that you configured, when you click Download, the AgentSetup.exe file is downloaded to the location you specify. In most cases the AgentSetup.exe file is downloaded to your Downloads folder.

The setup program is a console application. If you double-click the AgentSetup.exe file, a console window is opened and you are prompted for information such as installation folder and service user name and password. Optionally, you can open a command shell and manually execute the installer from the command line which allows you to specify arguments

The file name of the downloaded file is AgentSetup.exe. The installer is packaged as a self-extracting executable. If you run the installer without arguments, it prompts you for all required installation parameters, including the folder where the agent should be installed.

You can run the AgentSetup.exe from any directory (as long as you run the program on the computer on which it is to be installed). The self-extracting executable prompts you for the folder to which the agent files will be extracted. The self-extracting installation package extracts the files to the specified target folder and runs the setup program (Setup.exe) from the target folder.

Once an agent installation package is used to install the agent on a computer, you cannot use the same package to install the agent on another computer.

After you have installed the agent, it is recommended that you delete the file containing the passphrase (if you saved it to a file) and the downloaded agent installation package. However, do not delete the AgentSetup.exe file that was extracted.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating