Digipass Plug-In for SBR Administrator Reference - Vasco

More documents

Recommendations

Info

Digipass Plug-In for SBR Administrator Reference Set Up Active Directory Permissions Digipass User Account Link – the link attribute used to share a Digipass between two user accounts Digipass User Account Stored Password – the Stored Password attribute Write permission for any individual properties on Digipass objects, except for one Property Set that is defined to control the Digipass assignment link Write permission for any individual properties on Digipass Application objects, except for one Property Set that is defined to include the Digipass 'blob' that is required for any administrative operation such as Reset PIN, Test, Set Event Counter, etc. Create and delete permission on Digipass and Digipass Application objects (note that this can be necessary for assigning Digipass to users, because a move from one location to another is controlled by permissions to delete from the source and create in the destination) 5.2.4 System Administrators The term 'System Administrator' is used here to refer to an administrator who will be responsible for management of the Component and Policy records, rather than Digipass User Accounts and Digipass. They need permissions within the Digipass Configuration Container to create, modify and delete Component (vasco-Component) and Policy (vasco-Policy) objects. In practice, System Administrators can typically be given full control over the Digipass- Configuration container. If you wish to grant more limited permissions, this can be handled with the standard Active Directory permissions on these objects within the scope of the container. 5.3 Assign Administration Permissions to a User Note This example assumes that the administrator's User account has read permissions for all User records already. To grant permissions to manage Digipass records, you will need to follow these steps: 1. Right-click on the Organizational Unit in which to assign permissions. 2. Select Delegate Control... from the right-click menu. 3. The Delegate Control Wizard will be displayed. 4. Select the User or Windows Group to assign permissions. 5. Click on OK. 6. Select the Delegate Common Tasks option button. 7. Select Create, Delete and Manage Digipass from the list. 8. Click on Next. 9. Click on Finish. If you wish to grant permissions to modify Digipass User Account properties, you will need to follow these steps: © 2006 VASCO Data Security Inc. 64
Digipass Plug-In for SBR Administrator Reference Set Up Active Directory Permissions 10. Select View -> Advanced Features from the main menu. 11. Right-click on the Organizational Unit in which to assign permissions. 12. Select Properties from the right-click menu. 13. Click on the Security tab. 14. Click on the Advanced... button. 15. The Advanced Settings window will be displayed. 16. Click on Add... 17. Type the username of the User to assign the permissions to and click OK. 18. Click on the Properties tab. 19. Select User Objects from the drop down list. 20. Select the required permissions from: Write Digipass User Account Information Write Digipass User Account Link Write Digipass User Account Stored Password Write vasco-LockCount Write vasco-CreateTime Write vasco-ModifyTime 21. Click on OK. If the administrator requires permissions to take Digipass out of the Digipass-Pool for assignment, you will need to follow these steps: 22. Right-click on the Digipass Pool. 23. Select Properties from the right-click menu. 24. Click on the Security tab. 25. Click on Advanced... 26. Click on the Object tab. 27. Select Child objects only from the drop down list. 28. Click on Add... 29. Select these permissions: Delete Digipass Objects 30. Click on OK. © 2006 VASCO Data Security Inc. 65
Page 1 and 2:
Modify these field values (right-cl
Page 3 and 4:
Digipass Plug-In for SBR Administra
Page 5 and 6:
Page 7 and 8:
Page 9 and 10:
Page 11 and 12:
Page 13 and 14: Digipass Plug-In for SBR Administra
Page 63: Digipass Plug-In for SBR Administra
Page 115 and 116:
Page 117 and 118:
Page 119 and 120:
Page 121 and 122:
Page 123 and 124:
Page 125 and 126:
Page 127 and 128:
Page 129 and 130:
Page 131 and 132:
Page 133 and 134:
Page 135 and 136:
Page 137 and 138:
Page 139 and 140:
Page 141 and 142:
Page 143 and 144:
Page 145 and 146:
Page 147 and 148:
Page 149 and 150:
Page 151 and 152:
Page 153 and 154:
Page 155 and 156:
Page 157 and 158:
Page 159 and 160:
Page 161 and 162:
Page 163 and 164:
Page 165 and 166:
Page 167 and 168:
Page 169 and 170:
Page 171 and 172:
Page 173 and 174:
Page 175 and 176:
Page 177 and 178:
Page 179 and 180:
Page 181 and 182:
Page 183 and 184:
Page 185:
show all

Digipass Plug-In for SBR Administrator Reference - Vasco

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?