Versions Compared

Old Version 5

changes.mady.by.user Maksim Kuzmov

Saved on

compared with

New Version Current

changes.mady.by.user Pavel Golubnichiy

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

The section is intended to work with user directory of Active Directory.

User profile


Image Added

The profile displays the data of an Active Directory user:

  • Username - the name used to login to the system.

  • Path - LDAP.

  • Email - email address.

  • Phone - user phone number.

  • Photo - user photo from Active Directory (thumbnailPhoto attribute).

Permissions

The user permissions are displayed in the Permissions tab.

Image Added

The following data is displayed for every permission:

  •  - permission number.
  • User - the Active Directory user, the permission is given to.
  • Accountthe account used to start RDP, SSH or web session at the resources specified in the permission.
  • Resources the resources that RDP, SSH or web session can be started at under the account specified in the permission.
  • Description - this can be an arbitrary text.
  • View account credentialsa permission to view the password or SSH key of the account.

Sessions

All active and finished sessions of the user are available in the Sessions tab.

Image Added

The following data is displayed for every session:

  • User - the Active Directory user who initiated the session.

  • Account - the account used to start RDP, SSH or web session.

  • Resource - the resource that RDP, SSH or web session is started at under the account.

  • Duration - is the session duration.

  • Started at  - date and time when the session was started.

  • Finished at - date and time when the session was finished.

  • State - this displays the current status of the session (active or finished).

Authenticators

The user authenticators are displayed in the Authenticators tab.


Image Added

To reset an authenticator, click Image Added

Events

The user events are displayed in the Events tab.


Image Added

The following data is displayed for every event:

  • Creation time - date and time when the event was created.

  • Code - is the event code.

  • Event - is the event description.

  • Component - is the Indeed PAM component that generated the event.

  • Initiator - is the account that initiated the event generation.

For more details on the event simply open it.

Backtotop
Delay0
Distance250


Divbox
classrightFloat

Table of Contents
printablefalse

Раздел предназначен для работы с каталогом пользователей Active Direcrectory, в нём содержатся все пользователи контейнера, организационного подразделения или домена целиком в зависимости от настроек каталога. Пользователи входящие в каталог доступны для управления через консоль администратора Indeed PAM.

Для начала работы потребуется выполнить поиск нужного пользователя, поиск производится при полном или частичном совпадении имени, фамилии или email.

Поддерживаются шаблоны поиска:

  • Имя, фамилия или email полностью.
  • Часть имени фамилии или email, вхождение символов учитываются в любой части строки.
    • "*" - вывод всех результатов.