Novell SecureLogin Administration Guide

  Novell SecureLogin Administration Guide

    Getting Started

      Recommendations

      The Administrative Management Utilities

      Known Issues

      Enhancements

    Configuring

      Setting User Preferences

      Disabling User Access

      Updating the Datastore Objects

      Changing the Organizational Unit Level Datastore

      Changing the Directory Datastore

      Deleting or Re-setting User Data

    Managing Preferences

      Changes to Preferences

      Preferences Categories

      The Default Preference Values

      Setting User Preferences

      Changing Preference Value

      Setting the Preferences

    Managing Passphrases

      About Passphrases

      Creating a Passphrase Question

      Editing a Passphrase Question

      Deleting a Passphrase Question

      Re-setting a Passphrase Answer

      Changing the Passphrase Prompt

      Changing a Passphrase

    Managing Passphrase Policies

      About Passphrase Policies

      Changing a Passphrase Policy

      Enabling the Passphrase Security System

      Checking the Passphrase Security System Status

      Passphrase Security System Scenarios

    Managing Credentials

      About Credentials

      Creating a User Login and Credentials

      Linking a Login to an Application

      Deleting Login Credentials

      Recovering a Forgotten Password

    Managing Password Policies

      About Password Policies

      Password Policy Properties

      Creating a New Password Policy

      Editing a Password Policy

      Deleting a Password Policy

      Linking a Policy to an Application

    Managing Smart Card Integration

      How Novell SecureLogin Uses Smart Cards

      Installing Novell SecureLogin for Smart Cards

      Configuring SecureLogin for Smart Cards

      Using PKI Encryption for the Datastore and Cache

      Lost Card Scenarios

      Smart Card with DAS Integration

      Disconnected Login using NESCM

      SecureLogin in Kiosk Mode

      Enable Pin Caching for Smart Card

      Changing Smart Card Login Password on Expiry

    Enabling Terminal Emulator Applications

      Enabling Applications for Single Sign-On

      Enabling Terminal Emulator Applications

      Support for the MEDITECH Predefined Application

      Applications Excluded for Single Sign-On

    Reauthenticating Applications

      Using the Administrative Management Utility to Reauthenticate Applications

      Using the Application Definition Wizard to Reauthenticate Applications

      Using the AAVerify Command to Reauthenticate Applications

    Managing Application Definitions

      Responding to Application Messages

      Responding to Login Notifications

      Adding Support for Password Changes

      Responding to Change Password Notification

    Adding Multiple Logins

    Distributing Configurations

      About Distributing Configurations

      Distributing Configurations Within Directory Domains

      Setting Corporate Redirection

      Setting Corporate Redirection with eDirectory

      Configuring Groups Within eDirectory

      Copying a Configuration Across Organizational Units

      Creating an Active Directory Group Policy

    Exporting and Importing Configurations

      Exporting XML Settings

      Importing XML Settings

      Copying Settings to the Directory

      Exporting Single Sign-On Data in Encrypted XML Files

      Importing Single Sign-On Data in Encrypted XML Files

      Creating a Signing Key for Secure Distribution

      Locally Installing a Digital Signing Key

    Using The SLAP Tool

      About The SLAP Tool

      The SLAP Syntax

    Managing the Workstation Cache

      About the Workstation Cache

      Creating a Backup File

      Deleting the Workstation Cache

      Restoring the Local Cache Backup File

    Auditing

      About Auditing Tools

      Sending SNMP Alerts

      Scripting for SNMP Auditing

      About Windows Event Log Alerts

      Creating a Windows Event Log Alert

    Audit Configuration for Sentinel

      Windows Event Log: An Overview

      WMS Connector

      Configuring Auditing

      Logging Events from LDAP and Secure Workstation

      Using the Novell SecureLogin Event Service

    Configuring Secure Workstation Events

      Introduction

      Understanding Secure Workstation Policies

      Configuring the Local Policy

      Configuring the Network Policy

      The Quick Login and Logout Interface

    Administering Desktop Automation Services

      Actions and Descriptions

      Using the Wizards to Configure Actions

      Example of an Action File

    LDAP SSL Server Certificate Verification

      About LDAP SSL Server Certificate Verification

      Validating an LDAP SSL Server Certificate

      Enabling LDAP SSL Certificate Verification

    Security Considerations

    Novell SecureLogin Security Role Configuration for Active Directory

      Directory Attributes

      Directory Permissions Assignment

      Assigning Permissions for SecureLogin Administrators

      Assigning Permissions for SecureLogin Help Desk

      Assigning SecureLogin Client Settings for Administrators and Help Desk Groups

    Limiting Concurrent Connections

      Setting Up the Environment for Limiting Concurrent Connections

    Authasas Support

      Integrating SecureLogin with Authasas

    Troubleshooting

      Unable to See Password Using ?syspassword If the User is Authenticated Using Smart Card PIN

    Error Messages

    Schema Updates

      Schema Attributes

      Active Directory Environments

      LDAP Environments

      Security Rights Assignments

    Legal Notices