Self-Service Active Directory Group Management

Save this PDF as:
 WORD  PNG  TXT  JPG

Size: px
Start display at page:

Download "Self-Service Active Directory Group Management"

Transcription

1 Self-Service Active Directory Group Management 2015 Hitachi ID Systems, Inc. All rights reserved.

2 Hitachi ID Group Manager is a self-service group membership request portal. It allows users to request access to resources such as shares and folders, rather than initially specifying groups. Group Manager automatically maps requests to the appropriate security groups and invites group owners to approve or reject the proposed change. Group Manager is available both as a stand-alone solution and as a no-cost module included with Hitachi ID Identity Manager. Contents 1 Challenges in Large-Scale Active Directory Group Management 1 2 Addressing Complexity Using Self-Service 2 3 Introducing Hitachi ID Group Manager 3 4 Hitachi ID Group Manager Technology 4 5 User Interface Workflow 5 6 Windows Shell and SharePoint integrations 7 7 Robust approvals workflow 8 8 Installing, Configuring and Managing Hitachi ID Group Manager 9 9 Logging and Reporting 9 10 Network Architecture Platform Support 12 i

3 1 Challenges in Large-Scale Active Directory Group Management Many organizations have deployed Windows servers and Active Directory, and leveraged the powerful access control infrastructure in this platform to manage user access to data. This infrastructure uses security groups to control user access to resources: Groups are defined in Active Directory to reflect business functions or organizational structure. Groups are assigned rights to network resources, such as shares, folders and printers. Users are attached to groups based on their job requirements be it their permanent role or temporary requirements (e.g., project work). Groups may be nested, to simplify management. Over time, the number of groups grows and in some organizations may surpass the number of users. Moreover, in dynamic organizations users frequently change responsibilities and are assigned new projects. This churn creates complexity: User requirements must be reflected by changes to user membership in groups. A user support group must be created to respond to user access problems by attaching users to appropriate groups. Users are frequently unaware of the security infrastructure, so their calls to the help desk typically begin with: "I got an access denied error..." Problem resolution is time consuming: first map the user s problem description to a network UNC, then find the groups with rights to that resource, then find owners for the groups, then call them to get permission to attach the user and finally attach the user to the group. Complexity in managing large numbers of changes in security group membership leads to real business problems: Staffing cost in the user access management group, due to high call volumes. Long turnaround and lost productivity when users wait hours or days to get required access rights. Users with inappropriate access rights, as a result of failures in the change authorization process Hitachi ID Systems, Inc. All rights reserved. 1

4 2 Addressing Complexity Using Self-Service Group membership management can be complex and costly when performed manually: 1. Users don t know what to ask for they may not understand that there are groups or which one they require. 2. Manual service is expensive a security administration team spends its time receiving, clarifying, getting approvals for and completing trivial security requests. 3. Users may have to wait a long time for required access, both because the security administration team is busy and because finding the right approval and waiting for them to respond take time. 4. The approvals process may not be reliable. The security administration team may make changes with either the wrong approval or with none at all. 5. Change history may not be captured and may not be complete or reliable. This may lead to audit findings. The cost and complexity of group membership management is greatly reduced using self-service: 1. Users do not need to understand the linkage between resources and groups, or group structure. They simply ask for access to the object they require. 2. Approvals are routed to appropriate stake-holders automatically, without IT security team involvement. 3. Approved requests are automatically fulfilled, again requiring no manual intervention. 4. The security team can focus on policies and process rather than the execution of individual requests. 5. Users get faster service they don t have to wait for busy security administrators to disambiguate their requests, find appropriate authorizers, elicit approvals, etc. 6. All change requests are appropriately authorized approvals are automated and policy-driven, rather than manual and ad-hoc. 7. There is a clear audit trail - who requested what, when, why and who approved it Hitachi ID Systems, Inc. All rights reserved. 2

5 3 Introducing Group Manager Hitachi ID Group Manager is a self-service group membership request portal. It allows users to request access to resources such as shares and folders, rather than initially specifying groups. Group Manager automatically maps requests to the appropriate security groups and invites group owners to approve or reject the proposed change. Group Manager is available both as a stand-alone solution and as a no-cost module included with Hitachi ID Identity Manager. Group Manager is a component of the Hitachi ID Identity and Access Management Suite designed to streamline user requests to network resources. Using Group Manager, users sign into a secure web application and request new access to a network resource, such as a share, folder, printer or mail distribution list. From the Group Manager web form, users first select a resource container (examples: share; directory OU) and then use a tree view to browse for a specific resource (examples: folder, mail DL). Once they have selected a resource, users simply submit the request. Once the user has selected a resource, Group Manager: Dynamically maps the user resource selection to a specific managed target system and to a security group on that system. Determines whether the security group is already under Group Manager access control and if not automatically adds the group to its workflow system. Checks whether at least one authorizer is already available for the group and if not automatically extracts a new authorizer list from the target system itself (e.g., identifies the group s owners). Initiates a workflow request, asking the appropriate authorizer(s) whether the user should be allowed to join the group in question. The Group Manager workflow system automatically tracks change authorization and adds the user to the requested group if and when the proposed change is approved. Group Manager produces real, concrete business value: Group Manager improves security by ensuring that changes to membership in security groups are properly authorized before being implemented. Group Manager reduces the cost of IT support by moving requests and authorization for changes to group membership out of IT, to the community of business users. Group Manager streamlines service delivery regarding the management of membership in security groups by making it easier for users to submit clear and appropriate change requests and automatically routing those requests to the right authorizers. This makes the request process painless and the approvals process fast Hitachi ID Systems, Inc. All rights reserved. 3

6 4 Group Manager Technology Hitachi ID Group Manager is currently designed to target a single platform Active Directory. Its user interface exposes resources that are typically made accessible by user membership in AD groups: Shares on file servers. Folders on shares, including the full depth of folder hierarchy. Printers and print server queues published in AD. Mail distribution lists, for example as used by MS Exchange. Group Manager uses plugins to connect to target platforms. The Windows/AD resource discovery plugin is able to drill down into Windows-based network resources, find out which groups have rights to which resources, and lookup group owners on Active Directory. The Hitachi ID Identity and Access Management Suite Active Directory connector, included with Group Manager, can enumerate AD users and groups, authenticate AD passwords and update AD group memberships Hitachi ID Systems, Inc. All rights reserved. 4

7 5 User Interface Workflow Hitachi ID Group Manager can be used to manage many different types of resources. A plug-in program binds Group Manager to a specific type of resource, such as Windows shares, whose access is mediated by membership in an Active Directory group. Other resources include network printers and mail distribution lists. The description is best clarified with a concrete example: 2015 Hitachi ID Systems, Inc. All rights reserved. 5

8 User Group Manager Resource-Type Plug-in Target System 1 Sign in Validate credentials using a network login ID and password. 2 Initiate a new resourceaccess request. 3 Display a list of descriptive names for configured Windows file servers and shares. 4 Select a share. 5 Display a tree view of folders in the selected shares 6 Browse for and select a folder where access is desired. 7 Select a set of privileges and an authorizer to request. Interactive tree view display..display and user input.. 8 Workflow to track change authorization 9 (Change approved) Run agent to update the user s group membership. Send a confirmation to the user and to all owner/authorizers. Iteratively provide a list of sub-directories from the selected share. Provide a list of groups that have privileges on the share and the security privileges each one has been assigned. (read-only? read-write? etc.) One or more owners (authorizers) are provided for each group. Updated privileges. User can now access the folder Hitachi ID Systems, Inc. All rights reserved. 6

9 6 Windows Shell and SharePoint integrations A shell extension is included with Hitachi ID Group Manager which can be deployed on Windows XP, Windows Vista/7/8 PCs. If installed, this component can intercept Windows access denied error messages and present an expanded message which allows users to open a web browser to the Group Manager application, where they can request membership in the appropriate AD group. Figure 1: Windows Shell Extension: Replacing the Native Access Denied Dialog An analogous integration with SharePoint is provided, which works by extending the "access denied" error page on each SharePoint server Hitachi ID Systems, Inc. All rights reserved. 7

10 7 Robust approvals workflow The built-in workflow engine is designed to get quick and reliable feedback from groups of business users, who may be individually unreliable. It supports: Concurrent invitations to multiple users to review a request. Approval by N of M authorizers (N is fewer than M). Automatic reminders to non-responsive authorizers. Escalation from non-responsive authorizers to their alternates. Scheduled delegation of approval responsibility from unavailable to alternate approvers Hitachi ID Systems, Inc. All rights reserved. 8

11 8 Installing, Configuring and Managing Group Manager Hitachi ID Group Manager is very simple to configure and manage. For example, to configure it to manage group membership in Active Directory, to enable users to gain access to group-controlled file folders, one need only: Set up Active Directory as a Group Manager target system. Enter the base UNC for each share in which Group Manager will manage access. Ensure that the owner field is correctly populated on each AD user group. Group Manager deployment is typically very quick: Install the product. Configure the primary target system a Windows / Active Directory domain. Install the resource location plugin (currently a Windows resource plugin is available, supporting shares, folders, printers and Exchange mail distribution lists). Configure root nodes for resource browsing, such as share UNCs. Verify that group owners are correctly defined in AD, as these people will be used as authorizers. Test and debug the installation as appropriate. The entire process typically requires just 2-3 days of technical configuration work. 9 Logging and Reporting Hitachi ID Group Manager logs all attempted and completed requests for group membership. Manager workflow-related reports include: Group Report Authorizer activity Request status by authorizer Request status by implementer Pre-defined requests Request event log Description Approvals, rejections and failure to respond by authorizers Lists request-status information for each authorizer to whom a request is assigned. It also includes the actions taken by each authorizer for each request item Lists request-status information for each implementer to whom a request is assigned. Shows the configuration of pre-defined requests Details and change history of matching requests 2015 Hitachi ID Systems, Inc. All rights reserved. 9

12 Report Search requests Request volume trend Participant response time Inactive requests Stuck requests Escalated / delegated requests Request popularity Description Advanced search of and statistics about current and archived requests. Trend analysis of request volume per time interval. Analysis of the responsiveness of participants in workflow processes. Analysis of requests which have had no activity in N days. Analysis of requests which cannot be completed. Analysis of escalation and delegation of requests. Analysis of the popularity of pre-defined request types, managed resources, operations and workflow participants. All workflow requests are retained in the Group Manager database indefinitely, for reporting at any future date Hitachi ID Systems, Inc. All rights reserved. 10

13 10 Network Architecture The Hitachi ID Group Manager network architecture is illustrated in Figure 2. Requester Hitachi ID Authorizer User Workstation Group Manager Review request: User Workstation Web browser Browse resources; approve or request access Web server deny Web browser 1 6 Discover resources and ACLs Windows filesystem client Any Client OS Access resource Discover users, groups, group owners 7 Update group memberships ID-Access application Windows Invite authorization 5 Mail client Any Client OS File Server Domain Controller System Share or folder AD: Users, Groups Mailboxes Windows Server OS Windows Server OS Typically Exchange Figure 2: Group Manager Network Architecture Diagram In the diagram: 1. A requester signs into Group Manager and locates a network resource of interest, using some combination of searching and browsing. 2. The requester asks for access to the resource. 3. Group Manager looks up the ACLs on the resource, and determines which group membership would be appropriate. 4. Group Manager looks up the group s owners, and sends them an on behalf of the requester, asking that the requester be attached to their group, in order to enable the requester to access the resource of interest. 5. At some later time, the group owners receive the , sign into Group Manager, and either approve or deny the request. 6. If the request is received, Group Manager updates the user and group objects in AD, to create a new group membership. Access by the requester and authorizer to Group Manager is typically HTML over HTTPS. Access by both the requester and Group Manager to the network resources in question may be SMB, DFS or LDAP Hitachi ID Systems, Inc. All rights reserved. 11

14 11 Platform Support Hitachi ID Group Manager currently supports Active Directory group membership management, where AD runs on Windows 2000, 2003, 2008 or 2012 servers. It also supports management of: 1. SMB and DFS based filesystems. 2. Nested groups. Users and/or policy plugins choose the group for which membership will be requested. 3. Access to shares (i.e., share-level ACLs). 4. Access to folders (i.e., NTFS folder-level ACLs). 5. Access to printers (i.e., ACLs on AD-published print queues). 6. Access to mail distribution lists (i.e., membership in AD mail DLs). 500, Street SE, Calgary AB Canada T2G 2J3 Tel: Fax: Date: File: /pub/wp/documents/id-access/id-access-white-paper-1.tex

Integrating Hitachi ID Suite with WebSSO Systems

Integrating Hitachi ID Suite with WebSSO Systems Integrating Hitachi ID Suite with WebSSO Systems 2015 Hitachi ID Systems, Inc. All rights reserved. Web single sign-on (WebSSO) systems are a widely deployed technology for managing user authentication

More information

Service Offering: Outsourced IdM Administrator Service

Service Offering: Outsourced IdM Administrator Service Service Offering: Outsourced IdM Administrator Service 2014 Hitachi ID Systems, Inc. All rights reserved. Contents 1 Introduction 1 2 The Outsourced IdM Administrator Service 2 2.1 Hitachi ID Systems and

More information

Password Management Before User Provisioning

Password Management Before User Provisioning Password Management Before User Provisioning 2015 Hitachi ID Systems, Inc. All rights reserved. Identity management spans technologies including password management, user profile management, user provisioning

More information

1 Building an Identity Management Business Case. 2 Agenda. 3 Business Challenges

1 Building an Identity Management Business Case. 2 Agenda. 3 Business Challenges 1 Building an Identity Management Business Case Managing the User Lifecycle Across On-Premises and Cloud-Hosted Applications Justifying investment in identity management automation. 2 Agenda Business challenges

More information

ADSelfService Plus Client Software Installation Guide

ADSelfService Plus Client Software Installation Guide ADSelfService Plus Client Software Installation Guide ( I n s t a l l a t io n t h r o u g h A DS e l f S e r v ic e P l u s w e b p o r t a l a n d M a n u a l I n s t a l l a t io n ) 1 Table of Contents

More information

Windows Services. Support Windows and mixed-platform workgroups with high-performance, affordable network services. Features

Windows Services. Support Windows and mixed-platform workgroups with high-performance, affordable network services. Features Windows Services Support Windows and mixed-platform workgroups with high-performance, affordable network services. Features File and print services Integrated Samba 3 for native SMB/CIFS protocol support

More information

1 Hitachi ID Password Manager

1 Hitachi ID Password Manager 1 Hitachi ID Password Manager Managing the User Lifecycle Across On-Premises and Cloud-Hosted Applications Integrated Credential Management for Users: Passwords, encryption keys, tokens, smart cards and

More information

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users SyAM Management Utilities and Non-Admin Domain Users Some features of SyAM Management Utilities, including Client Deployment and Third Party Software Deployment, require authentication credentials with

More information

Stellar Active Directory Manager

Stellar Active Directory Manager Stellar Active Directory Manager What is the need of Active Directory Manager? Every organization uses Active Directory Services (ADMS) to manage the users working in the organization. This task is mostly

More information

P-Synch by M-Tech Information Technology, Inc. ID-Synch by M-Tech Information Technology, Inc.

P-Synch by M-Tech Information Technology, Inc. ID-Synch by M-Tech Information Technology, Inc. P-Synch by M-Tech Information Technology, Inc. ID-Synch by M-Tech Information Technology, Inc. Product Category: Password Management/Provisioning Validation Date: TBD Product Abstract M-Tech software streamlines

More information

Integrating LANGuardian with Active Directory

Integrating LANGuardian with Active Directory Integrating LANGuardian with Active Directory 01 February 2012 This document describes how to integrate LANGuardian with Microsoft Windows Server and Active Directory. Overview With the optional Identity

More information

NetWrix SQL Server Change Reporter

NetWrix SQL Server Change Reporter NetWrix SQL Server Change Reporter Version 2.2 Administrator Guide Contents NetWrix SQL Server Change Reporter Administrator Guide 1. INTRODUCTION... 3 1.1 KEY FEATURES... 3 1.2 LICENSING... 4 1.3 HOW

More information

JIJI AUDIT REPORTER FEATURES

JIJI AUDIT REPORTER FEATURES JIJI AUDIT REPORTER FEATURES JiJi AuditReporter is a web based auditing solution for live monitoring of the enterprise changes and for generating audit reports on each and every event occurring in the

More information

Active Directory Comapatibility with ExtremeZ-IP A Technical Best Practices Whitepaper

Active Directory Comapatibility with ExtremeZ-IP A Technical Best Practices Whitepaper Active Directory Comapatibility with ExtremeZ-IP A Technical Best Practices Whitepaper About this Document The purpose of this technical paper is to discuss how ExtremeZ-IP supports Microsoft Active Directory.

More information

Enterprise Solution for Remote Desktop Services... 2. System Administration... 3. Server Management... 4. Server Management (Continued)...

Enterprise Solution for Remote Desktop Services... 2. System Administration... 3. Server Management... 4. Server Management (Continued)... CONTENTS Enterprise Solution for Remote Desktop Services... 2 System Administration... 3 Server Management... 4 Server Management (Continued)... 5 Application Management... 6 Application Management (Continued)...

More information

Perceptive Content Security

Perceptive Content Security Perceptive Content Security Best Practices Perceptive Content, Version: 7.1.x Written by: Product Knowledge, R&D Date: June 2015 2015 Perceptive Software. All rights reserved. Perceptive Software is a

More information

E-Notebook SQL 12.0 Desktop Database Installation Guide. E-Notebook SQL 12.0 Desktop Database Installation Guide

E-Notebook SQL 12.0 Desktop Database Installation Guide. E-Notebook SQL 12.0 Desktop Database Installation Guide E-Notebook SQL 12.0 Desktop Database Installation Guide 1. Introduction... 3 2. Database System... 3 2.1. Software requirements... 3 2.2. Database Creation and Configuration... 4 2.2.1. Create and share

More information

Oracle Identity Manager, Oracle Internet Directory

Oracle Identity Manager, Oracle Internet Directory Oracle Identity Manager (OIM) is a user provisioning system. It defines properties for how users and groups get authorized to access compute and content resources across the enterprise. Identity Management

More information

Windows Services. Support Windows and mixed-platform workgroups with high-performance, affordable network services. Features

Windows Services. Support Windows and mixed-platform workgroups with high-performance, affordable network services. Features Windows Services Support Windows and mixed-platform workgroups with high-performance, affordable network services. Features File and print services Integrated Samba 3 for native SMB/CIFS protocol support

More information

Active Directory Compatibility with ExtremeZ-IP

Active Directory Compatibility with ExtremeZ-IP Active Directory Compatibility with ExtremeZ-IP A Technical Best Practices White Paper Group Logic White Paper October 2010 About This Document The purpose of this technical paper is to discuss how ExtremeZ-IP

More information

efficient workflow security capability streamlined productivity SOFTWARE SOLUTIONS

efficient workflow security capability streamlined productivity SOFTWARE SOLUTIONS efficient workflow security capability streamlined productivity SOFTWARE SOLUTIONS Authorized Send v5.0 A powerful, integrated, serverless document distribution application with the ability to safeguard

More information

Netwrix Auditor. Administrator's Guide. Version: 7.1 10/30/2015

Netwrix Auditor. Administrator's Guide. Version: 7.1 10/30/2015 Netwrix Auditor Administrator's Guide Version: 7.1 10/30/2015 Legal Notice The information in this publication is furnished for information use only, and does not constitute a commitment from Netwrix Corporation

More information

BlackBerry Enterprise Server for Microsoft Exchange Version: 5.0 Service Pack: 2. Feature and Technical Overview

BlackBerry Enterprise Server for Microsoft Exchange Version: 5.0 Service Pack: 2. Feature and Technical Overview BlackBerry Enterprise Server for Microsoft Exchange Version: 5.0 Service Pack: 2 Feature and Technical Overview Published: 2010-06-16 SWDT305802-1108946-0615123042-001 Contents 1 Overview: BlackBerry Enterprise

More information

10 Things IT Should be Doing (But Isn t)

10 Things IT Should be Doing (But Isn t) Contents Overview...1 Top Ten Things IT Should be Doing...2 Audit Data Access... 2 Inventory Permissions and Directory Services Group Objects... 2 Prioritize Which Data Should Be Addressed... 2 Remove

More information

WebSpy Vantage Ultimate 2.2 Web Module Administrators Guide

WebSpy Vantage Ultimate 2.2 Web Module Administrators Guide WebSpy Vantage Ultimate 2.2 Web Module Administrators Guide This document is intended to help you get started using WebSpy Vantage Ultimate and the Web Module. For more detailed information, please see

More information

NetWrix Server Configuration Monitor

NetWrix Server Configuration Monitor NetWrix Server Configuration Monitor Version 2.2 Quick Start Guide Contents NetWrix Server Configuration Monitor Quick Start Guide 1. INTRODUCTION... 3 1.1 KEY FEATURES... 3 1.2 LICENSING... 4 1.3 HOW

More information

NetWrix File Server Change Reporter. Quick Start Guide

NetWrix File Server Change Reporter. Quick Start Guide NetWrix File Server Change Reporter Quick Start Guide Introduction... 3 Product Features... 3 Licensing... 3 How It Works... 4 Getting Started... 5 System Requirements... 5 Setup... 5 Additional Considerations...

More information

Dell Enterprise Reporter 2.5. Configuration Manager User Guide

Dell Enterprise Reporter 2.5. Configuration Manager User Guide Dell Enterprise Reporter 2.5 2014 Dell Inc. ALL RIGHTS RESERVED. This guide contains proprietary information protected by copyright. The software described in this guide is furnished under a software license

More information

SPECOPS SELF SERVICE PORTAL 2.2 INSTALLATION AND CONFIGURATION GUIDE

SPECOPS SELF SERVICE PORTAL 2.2 INSTALLATION AND CONFIGURATION GUIDE Technical documentation: SPECOPS SELF SERVICE PORTAL 2.2 INSTALLATION AND CONFIGURATION GUIDE By Markus Lassfolk, Product Specialist, SPECOPS SELF SERVICE PORTAL 2.2 INSTALLATION AND CONFIGURATION GUIDE...

More information

Configuration Guide. BES12 Cloud

Configuration Guide. BES12 Cloud Configuration Guide BES12 Cloud Published: 2016-04-08 SWD-20160408113328879 Contents About this guide... 6 Getting started... 7 Configuring BES12 for the first time...7 Administrator permissions you need

More information

What s New Guide. Security Explorer 8.0

What s New Guide. Security Explorer 8.0 What s New Guide Security Explorer 8.0 2011 ScriptLogic Corporation ALL RIGHTS RESERVED. ScriptLogic, the ScriptLogic logo and Point,Click,Done! are trademarks and registered trademarks of ScriptLogic

More information

Workflow Templates Library

Workflow Templates Library Workflow s Library Table of Contents Intro... 2 Active Directory... 3 Application... 5 Cisco... 7 Database... 8 Excel Automation... 9 Files and Folders... 10 FTP Tasks... 13 Incident Management... 14 Security

More information

GP REPORTS VIEWER USER GUIDE

GP REPORTS VIEWER USER GUIDE GP Reports Viewer Dynamics GP Reporting Made Easy GP REPORTS VIEWER USER GUIDE For Dynamics GP Version 2015 (Build 5) Dynamics GP Version 2013 (Build 14) Dynamics GP Version 2010 (Build 65) Last updated

More information

Admin Report Kit for Active Directory

Admin Report Kit for Active Directory Admin Report Kit for Active Directory Reporting tool for Microsoft Active Directory Enterprise Product Overview Admin Report Kit for Active Directory (ARKAD) is a powerful reporting solution for the Microsoft

More information

Security Explorer 9.5. User Guide

Security Explorer 9.5. User Guide 2014 Dell Inc. ALL RIGHTS RESERVED. This guide contains proprietary information protected by copyright. The software described in this guide is furnished under a software license or nondisclosure agreement.

More information

Active Directory Compatibility with ExtremeZ-IP. A Technical Best Practices Whitepaper

Active Directory Compatibility with ExtremeZ-IP. A Technical Best Practices Whitepaper Active Directory Compatibility with ExtremeZ-IP A Technical Best Practices Whitepaper About this Document The purpose of this technical paper is to discuss how ExtremeZ-IP supports Microsoft Active Directory.

More information

SECURE YOUR DATA EXCHANGE WITH SAFE-T BOX

SECURE YOUR DATA EXCHANGE WITH SAFE-T BOX SECURE YOUR DATA EXCHANGE SAFE-T BOX WHITE PAPER Safe-T. Smart Security Made Simple. 1 The Costs of Uncontrolled Data Exchange 2 Safe-T Box Secure Data Exchange Platform 2.1 Business Applications and Data

More information

Owner of the content within this article is www.msexchange.org Written by Marc Grote www.it-training-grote.de

Owner of the content within this article is www.msexchange.org Written by Marc Grote www.it-training-grote.de Owner of the content within this article is www.msexchange.org Written by Marc Grote www.it-training-grote.de Exchange 2003 - User, groups, distribution list and contact management with Windows 2003 Active

More information

Department of Information Technology Active Directory Audit Final Report. August 2008. promoting efficient & effective local government

Department of Information Technology Active Directory Audit Final Report. August 2008. promoting efficient & effective local government Department of Information Technology Active Directory Audit Final Report August 2008 promoting efficient & effective local government Executive Summary Active Directory (AD) is a directory service by Microsoft

More information

Locking down a Hitachi ID Suite server

Locking down a Hitachi ID Suite server Locking down a Hitachi ID Suite server 2016 Hitachi ID Systems, Inc. All rights reserved. Organizations deploying Hitachi ID Identity and Access Management Suite need to understand how to secure its runtime

More information

NetWrix Account Lockout Examiner Version 4.0 Administrator Guide

NetWrix Account Lockout Examiner Version 4.0 Administrator Guide NetWrix Account Lockout Examiner Version 4.0 Administrator Guide Table of Contents Concepts... 1 Product Architecture... 1 Product Settings... 2 List of Managed Domains and Domain Controllers... 2 Email

More information

Vector Asset Management User Manual

Vector Asset Management User Manual Vector Asset Management User Manual This manual describes how to set up Vector Asset Management 6.0. It describes how to use the: Vector AM Console Vector AM Client Hardware Inventory Software Inventory

More information

Self-Service, Anywhere

Self-Service, Anywhere 2015 Hitachi ID Systems, Inc. All rights reserved. Contents 1 Introduction 1 2 Mobile users warned of password expiry 2 3 Reset forgotten, cached password while away from the office 2 4 Unlock encrypted

More information

HP Service Manager. Service Request Catalog (SRC) Tips & Tricks Document

HP Service Manager. Service Request Catalog (SRC) Tips & Tricks Document HP Service Manager Service Request Catalog (SRC) Tips & Tricks Document (note: in process of updating to support v 9.32) 1 The HP Service Request Catalog (SRC) is a more robust and user- friendly version

More information

Microsoft Project Server 2010 Administrator's Guide

Microsoft Project Server 2010 Administrator's Guide Microsoft Project Server 2010 Administrator's Guide 1 Copyright This document is provided as-is. Information and views expressed in this document, including URL and other Internet Web site references,

More information

Regulatory Compliance Using Identity Management

Regulatory Compliance Using Identity Management Regulatory Compliance Using Identity Management 2015 Hitachi ID Systems, Inc. All rights reserved. Regulations such as Sarbanes-Oxley, FDA 21-CFR-11 and HSPD-12 require stronger security, to protect sensitive

More information

Authentication Integration

Authentication Integration Authentication Integration VoiceThread provides multiple authentication frameworks allowing your organization to choose the optimal method to implement. This document details the various available authentication

More information

Course 6425C: Configuring and Troubleshooting Windows Server 2008 Active Directory Domain Services

Course 6425C: Configuring and Troubleshooting Windows Server 2008 Active Directory Domain Services Course 6425C: Configuring and Troubleshooting Windows Server 2008 Active Directory Domain Services Length: 5 Days Published: June 02, 2011 Language(s): English Audience(s): IT Professionals Level: 200

More information

efficient workflow security features streamlined productivity SOFTWARE SOLUTIONS

efficient workflow security features streamlined productivity SOFTWARE SOLUTIONS efficient workflow security features streamlined productivity SOFTWARE SOLUTIONS Authorized Send V5.4 A powerful, integrated, serverless document distribution application with the ability to help users

More information

1) Go to the following URL: https://myitservices.nus.edu.sg/arsys/ 2) Login with your NUS account and password.

1) Go to the following URL: https://myitservices.nus.edu.sg/arsys/ 2) Login with your NUS account and password. Introduction: Computer Centre has a wide range of service offering to all NUS users. Through an easy-to-use selfservice IT Service Request Portal, selected services are exposed to NUS Community to facilitate

More information

efficient workflow security capability streamlined productivity SOFTWARE SOLUTIONS

efficient workflow security capability streamlined productivity SOFTWARE SOLUTIONS efficient workflow security capability streamlined productivity SOFTWARE SOLUTIONS Authorized Send v5.0 A powerful, integrated, serverless document distribution application with the ability to safeguard

More information

econtrol 3.5 for Active Directory & Exchange Administrator Guide

econtrol 3.5 for Active Directory & Exchange Administrator Guide econtrol 3.5 for Active Directory & Exchange Administrator Guide This Guide Welcome to the econtrol 3.5 for Active Directory and Exchange Administrator Guide. This guide is for system administrators and

More information

How to Setup Scan to SMB to a Microsoft Vista Workstation Using a bizhub C451/ C550

How to Setup Scan to SMB to a Microsoft Vista Workstation Using a bizhub C451/ C550 How to Setup Scan to SMB to a Microsoft Vista Workstation Using a bizhub C451/ C550 Send to the SMB server You can send the data read in from the copier's ADF or the original scanning glass (scanned data)

More information

Feature and Technical

Feature and Technical BlackBerry Enterprise Server for Microsoft Exchange Version: 5.0 Service Pack: 4 Feature and Technical Overview Published: 2013-11-07 SWD-20131107160132924 Contents 1 Document revision history...6 2 What's

More information

NetWrix SQL Server Change Reporter

NetWrix SQL Server Change Reporter NetWrix SQL Server Change Reporter Version 2.2 Enterprise Edition Quick Start Guide Contents NetWrix SQL Server Change Reporter Enterprise Edition Quick Start Guide 1. INTRODUCTION... 3 1.1 KEY FEATURES...

More information

Softerra Adaxes Enterprise Directory Solution

Softerra Adaxes Enterprise Directory Solution Identity and Active Directory Management Softerra Adaxes Enterprise Directory Solution Product Profile make the complex simple Copyright Copyright Softerra, Ltd. Softerra, All rights Ltd. reserved. All

More information

Deploying System Center 2012 R2 Configuration Manager

Deploying System Center 2012 R2 Configuration Manager Deploying System Center 2012 R2 Configuration Manager This document is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED, OR STATUTORY, AS TO THE INFORMATION IN THIS DOCUMENT.

More information

An Analysis of Propalms TSE and Microsoft Remote Desktop Services

An Analysis of Propalms TSE and Microsoft Remote Desktop Services An Analysis of TSE and Remote Desktop Services JULY 2010 This document illustrates how TSE can extend your Remote Desktop Services environment providing you with the simplified and consolidated management

More information

Simplify essential workflows with dynamic scanning capabilities. GlobalScan NX Server 32/Server 750 Capture & Distribution Solution

Simplify essential workflows with dynamic scanning capabilities. GlobalScan NX Server 32/Server 750 Capture & Distribution Solution GlobalScan NX Server 32/Server 750 Capture & Distribution Solution SCAN > SHARE > MANAGE > DELIVER > ACCELERATE > Simplify essential workflows with dynamic scanning capabilities. > Manage scanned documents

More information

Advanced Configuration Steps

Advanced Configuration Steps Advanced Configuration Steps After you have downloaded a trial, you can perform the following from the Setup menu in the MaaS360 portal: Configure additional services Configure device enrollment settings

More information

Active Directory Self-Service Bundle

Active Directory Self-Service Bundle Active Directory Self-Service Bundle Makes life easier for the IT department ZervicePoint Active Directory Self-Service Bundle include a set of services that makes life easier for the IT department that

More information

Metalogix SharePoint Backup. Advanced Installation Guide. Publication Date: August 24, 2015

Metalogix SharePoint Backup. Advanced Installation Guide. Publication Date: August 24, 2015 Metalogix SharePoint Backup Publication Date: August 24, 2015 All Rights Reserved. This software is protected by copyright law and international treaties. Unauthorized reproduction or distribution of this

More information

Configuring and Using the TMM with LDAP / Active Directory

Configuring and Using the TMM with LDAP / Active Directory Configuring and Using the TMM with LDAP / Active Lenovo ThinkServer April 27, 2012 Version 1.0 Contents Configuring and using the TMM with LDAP / Active... 3 Configuring the TMM to use LDAP... 3 Configuring

More information

MassTransit Leveraging MassTransit and Active Directory for Easier Account Provisioning and Management

MassTransit Leveraging MassTransit and Active Directory for Easier Account Provisioning and Management MassTransit Leveraging MassTransit and Active Directory for Easier Account Provisioning and Management A Technical Best Practices White Paper About This Document This whitepaper explores the challenges

More information

HP Records Manager. Release Notes. Software Version: 8.1. Document Release Date: June 2014

HP Records Manager. Release Notes. Software Version: 8.1. Document Release Date: June 2014 HP Records Manager Software Version: 8.1 Release Notes Document Release Date: June 2014 Software Release Date: June 2014 Legal Notices Warranty The only warranties for HP products and services are set

More information

1 Maximizing Value. 2 Economics of self-service. Managing the User Lifecycle Across On-Premises and Cloud-Hosted Applications

1 Maximizing Value. 2 Economics of self-service. Managing the User Lifecycle Across On-Premises and Cloud-Hosted Applications 1 Maximizing Value Managing the User Lifecycle Across On-Premises and Cloud-Hosted Applications Getting value from Hitachi ID Password Manager by improving user adoption. 2 Economics of self-service 2015

More information

IIS, FTP Server and Windows

IIS, FTP Server and Windows IIS, FTP Server and Windows The Objective: To setup, configure and test FTP server. Requirement: Any version of the Windows 2000 Server. FTP Windows s component. Internet Information Services, IIS. Steps:

More information

efficient workflow security capability streamlined productivity SOFTWARE SOLUTIONS

efficient workflow security capability streamlined productivity SOFTWARE SOLUTIONS efficient workflow security capability streamlined productivity SOFTWARE SOLUTIONS Authorized Send v5.3 A powerful, integrated, serverless document distribution application with the ability to safeguard

More information

Fixes for CrossTec ResQDesk

Fixes for CrossTec ResQDesk Fixes for CrossTec ResQDesk Fixes in CrossTec ResQDesk 5.00.0006 December 2, 2014 Resolved issue where the list of Operators on Category was not saving correctly when adding multiple Operators. Fixed issue

More information

Contents 1. Introduction 2. Security Considerations 3. Installation 4. Configuration 5. Uninstallation 6. Automated Bulk Enrollment 7.

Contents 1. Introduction 2. Security Considerations 3. Installation 4. Configuration 5. Uninstallation 6. Automated Bulk Enrollment 7. Contents 1. Introduction 2. Security Considerations 3. Installation 4. Configuration 5. Uninstallation 6. Automated Bulk Enrollment 7. Troubleshooting Introduction Adaxes Self-Service Client provides secure

More information

SAP Crystal Reports & SAP HANA: Integration & Roadmap Kenneth Li SAP SESSION CODE: 0401

SAP Crystal Reports & SAP HANA: Integration & Roadmap Kenneth Li SAP SESSION CODE: 0401 SAP Crystal Reports & SAP HANA: Integration & Roadmap Kenneth Li SAP SESSION CODE: 0401 LEARNING POINTS Learn about Crystal Reports for HANA Glance at the road map for the product Overview of deploying

More information

Pcounter Web Report 3.x Installation Guide - v2014-11-30. Pcounter Web Report Installation Guide Version 3.4

Pcounter Web Report 3.x Installation Guide - v2014-11-30. Pcounter Web Report Installation Guide Version 3.4 Pcounter Web Report 3.x Installation Guide - v2014-11-30 Pcounter Web Report Installation Guide Version 3.4 Table of Contents Table of Contents... 2 Installation Overview... 3 Installation Prerequisites

More information

Netwrix Auditor for Windows Server

Netwrix Auditor for Windows Server Netwrix Auditor for Windows Server Quick-Start Guide Version: 7.0 7/7/2015 Legal Notice The information in this publication is furnished for information use only, and does not constitute a commitment from

More information

WHITE PAPER NEXSAN TRANSPORTER PRODUCT SECURITY AN IN-DEPTH REVIEW

WHITE PAPER NEXSAN TRANSPORTER PRODUCT SECURITY AN IN-DEPTH REVIEW NEXSAN TRANSPORTER PRODUCT SECURITY AN IN-DEPTH REVIEW INTRODUCTION As businesses adopt new technologies that touch or leverage critical company data, maintaining the highest level of security is their

More information

Richmond SupportDesk Web Reports Module For Richmond SupportDesk v6.72. User Guide

Richmond SupportDesk Web Reports Module For Richmond SupportDesk v6.72. User Guide Richmond SupportDesk Web Reports Module For Richmond SupportDesk v6.72 User Guide Contents 1 Introduction... 4 2 Requirements... 5 3 Important Note for Customers Upgrading... 5 4 Installing the Web Reports

More information

Remote Application Server Version 14. Last updated: 06-02-15

Remote Application Server Version 14. Last updated: 06-02-15 Remote Application Server Version 14 Last updated: 06-02-15 Information in this document is subject to change without notice. Companies, names, and data used in examples herein are fictitious unless otherwise

More information

Data Replication in Privileged Credential Vaults

Data Replication in Privileged Credential Vaults Data Replication in Privileged Credential Vaults 2015 Hitachi ID Systems, Inc. All rights reserved. Contents 1 Background: Securing Privileged Accounts 2 2 The Business Challenge 3 3 Solution Approaches

More information

Foundation ACTIVE DIRECTORY AND MICROSOFT EXCHANGE PROVISIONING FOR HEALTHCARE PROVIDERS HEALTHCARE: A UNIQUELY COMPLEX ENVIRONMENT

Foundation ACTIVE DIRECTORY AND MICROSOFT EXCHANGE PROVISIONING FOR HEALTHCARE PROVIDERS HEALTHCARE: A UNIQUELY COMPLEX ENVIRONMENT Foundation ACTIVE DIRECTORY AND MICROSOFT EXCHANGE PROVISIONING FOR HEALTHCARE PROVIDERS The promise of reduced administrative costs and improved caregiver satisfaction associated with user provisioning

More information

StruxureWare Power Monitoring 7.0.1. In-Place Upgrade Guide SQL Server Standard Edition Only

StruxureWare Power Monitoring 7.0.1. In-Place Upgrade Guide SQL Server Standard Edition Only StruxureWare Power Monitoring 7.0.1 In-Place Upgrade Guide SQL Server Standard Edition Only Document Overview Author Power Software, Schneider Electric Last Revised 10 th July 2012 Document Purpose Note(s)

More information

Apache Server Implementation Guide

Apache Server Implementation Guide Apache Server Implementation Guide 340 March Road Suite 600 Kanata, Ontario, Canada K2K 2E4 Tel: +1-613-599-2441 Fax: +1-613-599-2442 International Voice: +1-613-599-2441 North America Toll Free: 1-800-307-7042

More information

Configuration Task 3: (Optional) As part of configuration, you can deploy rules. For more information, see "Deploy Inbox Rules" below.

Configuration Task 3: (Optional) As part of configuration, you can deploy rules. For more information, see Deploy Inbox Rules below. Configure the E-mail Router After the E-mail Router has been installed, you can configure several aspects of it. Some of these configuration tasks are mandatory. Others are optional in that you use them

More information

Configuring and Troubleshooting Windows Server 2008 Active Directory Domain Services

Configuring and Troubleshooting Windows Server 2008 Active Directory Domain Services Course 6425C: Configuring and Troubleshooting Windows Server 2008 Active Directory Domain Services Course Details Course Outline Module 1: Introducing Active Directory Domain Services This module provides

More information

Configuring Security Features of Session Recording

Configuring Security Features of Session Recording Configuring Security Features of Session Recording Summary This article provides information about the security features of Citrix Session Recording and outlines the process of configuring Session Recording

More information

User Manual for Delivery

User Manual for Delivery User Manual for Delivery Published By Imanami Corporation 2301 Armstrong St. Suite 211 Livermore, CA 94551, United States Copyright 2011 by Imanami Corporation. All rights reserved. No part of this document

More information

Leveraging MassTransit and Active Directory for Easier Account Provisioning and Management

Leveraging MassTransit and Active Directory for Easier Account Provisioning and Management Leveraging MassTransit and Active Directory for Easier Account Provisioning and Management A Technical Best Practices White Paper Group Logic White Paper November 2008 About This Document This whitepaper

More information

HP Service Manager. Software Version: 9.34 For the supported Windows and UNIX operating systems. Service Desk help topics for printing

HP Service Manager. Software Version: 9.34 For the supported Windows and UNIX operating systems. Service Desk help topics for printing HP Service Manager Software Version: 9.34 For the supported Windows and UNIX operating systems Service Desk help topics for printing Document Release Date: July 2014 Software Release Date: July 2014 Legal

More information

Dell InTrust 11.0. Auditing and Monitoring Microsoft Windows

Dell InTrust 11.0. Auditing and Monitoring Microsoft Windows 2014 Dell Inc. ALL RIGHTS RESERVED. This guide contains proprietary information protected by copyright. The software described in this guide is furnished under a software license or nondisclosure agreement.

More information

Creating Home Directories for Windows and Macintosh Computers

Creating Home Directories for Windows and Macintosh Computers ExtremeZ-IP Active Directory Integrated Home Directories Configuration! 1 Active Directory Integrated Home Directories Overview This document explains how to configure home directories in Active Directory

More information

Introduction to Endpoint Security

Introduction to Endpoint Security Chapter Introduction to Endpoint Security 1 This chapter provides an overview of Endpoint Security features and concepts. Planning security policies is covered based on enterprise requirements and user

More information

Analyst 1.6 Software. Laboratory Director s Guide

Analyst 1.6 Software. Laboratory Director s Guide Analyst 1.6 Software Laboratory Director s Guide Release Date: August 2011 This document is provided to customers who have purchased AB SCIEX equipment to use in the operation of such AB SCIEX equipment.

More information

WirelessOffice Administrator LDAP/Active Directory Support

WirelessOffice Administrator LDAP/Active Directory Support Emergin, Inc. WirelessOffice Administrator LDAP/Active Directory Support Document Version 6.0R02 Product Version 6.0 DATE: 08-09-2004 Table of Contents Objective:... 3 Overview:... 4 User Interface Changes...

More information

Implementing, Managing, and Maintaining a Microsoft Windows Server 2003 Network Infrastructure

Implementing, Managing, and Maintaining a Microsoft Windows Server 2003 Network Infrastructure Question Number (ID) : 1 (jaamsp_mngnwi-025) Lisa would like to configure five of her 15 Web servers, which are running Microsoft Windows Server 2003, Web Edition, to always receive specific IP addresses

More information

SchoolBooking SSO Integration Guide

SchoolBooking SSO Integration Guide SchoolBooking SSO Integration Guide Before you start This guide has been written to help you configure SchoolBooking to operate with SSO (Single Sign on) Please treat this document as a reference guide,

More information

NetWrix USB Blocker. Version 3.6 Administrator Guide

NetWrix USB Blocker. Version 3.6 Administrator Guide NetWrix USB Blocker Version 3.6 Administrator Guide Table of Contents 1. Introduction...3 1.1. What is NetWrix USB Blocker?...3 1.2. Product Architecture...3 2. Licensing...4 3. Operation Guide...5 3.1.

More information

GlobalScan NX. Server 32/Server 750. Intelligent scanning for smarter workflow

GlobalScan NX. Server 32/Server 750. Intelligent scanning for smarter workflow SOLUTION Intelligent scanning for smarter workflow GlobalScan NX Server 32/Server 750 Designed to simplify daily document tasks, these easy-to-use software solutions provide a fast, streamlined approach

More information

User-ID Best Practices

User-ID Best Practices User-ID Best Practices PAN-OS 5.0, 5.1, 6.0 Revision A 2011, Palo Alto Networks, Inc. www.paloaltonetworks.com Table of Contents PAN-OS User-ID Functions... 3 User / Group Enumeration... 3 Using LDAP Servers

More information

Last Updated: July 2011. STATISTICA Enterprise Server Security

Last Updated: July 2011. STATISTICA Enterprise Server Security Last Updated: July 2011 STATISTICA Enterprise Server Security STATISTICA Enterprise Server Security Page 2 of 10 Table of Contents Executive Summary... 3 Introduction to STATISTICA Enterprise Server...

More information

PROPALMS TSE 6.0 March 2008

PROPALMS TSE 6.0 March 2008 PROPALMS March 2008 An Analysis of and Terminal Services: Contents System Administration... 2 Server Management... 3 Application Management... 5 Security... 7 End User Experience... 8 Monitoring and Reporting...

More information

Achieving PCI COMPLIANCE with the 2020 Audit & Control Suite. www.lepide.com/2020-suite/

Achieving PCI COMPLIANCE with the 2020 Audit & Control Suite. www.lepide.com/2020-suite/ Achieving PCI COMPLIANCE with the 2020 Audit & Control Suite 7. Restrict access to cardholder data by business need to know PCI Article (PCI DSS 3) Report Mapping How we help 7.1 Limit access to system

More information

NETWRIX FILE SERVER CHANGE REPORTER

NETWRIX FILE SERVER CHANGE REPORTER NETWRIX FILE SERVER CHANGE REPORTER ADMINISTRATOR S GUIDE Product Version: 3.3 April/2012. Legal Notice The information in this publication is furnished for information use only, and does not constitute

More information