One Identity Defender - Search Global

Refine Your Search
Advanced Queries | | Increase Your Search IQ
What type of RADIUS authentication protocol is used by Defender? (106872)

What type of RADIUS authentication protocol is used by Defender? Does Defender support CHAP, PAP or MS-CHAP/ MS-CHAP v2? Defender only provides full support for PAP. CHAP is not supported. Defender has limited ...

Do tokens with the status of "Not yet activated" need to be activated? (207425)

When looking at the property of software tokens through Active Directory Users & Computer, or through the Management Portal they have a status of "Not yet activated". Do they need to be activated on the Defender Security Server (DSS)? No manual intervention is required. ...

How do I configure my device to use Radius, two factor authentication? (85124)

How do I configure my device to use Radius, two factor authentication? Will my NAS / VPN network device work with Defender 2FA? Generally if a device supports full RADIUS and two factor authentication then it should work. To configure a new radius device: ...

SonicWALL SSLVPN, RADIUS and Defender (119881)

Can SonicWALL SSL VPN (eg, TZ Series Unified Threat Management Firewall) be configured for use with Defender? Yes, Defender can be used in this scenario: On the "Advanced VPN Settings" screen (VPN | Advanced) there ...

Defender 5.8..x EAP Agent installed on WIndows 10 and does not function. (198855)

The prior releases of the Defender EAP Agent was working successfully on other releases of Windows; when installing the Defender 5.8.x EAP Agent on Windows 10 it does not function correctly. Currently the Defender 5.8.x EAP Agent will not function correctly on Windows 10. ...

Can Defender Desktop Login be installed on non-AD joined machines? (206890)

Can Defender Desktop Login be installed on non-AD joined machines / workgroup machines? No. Desktop Login requires a machine that joined to AD.

Error: "License violation: The current number of assigned tokens is . The licensed number of tokens is . Although you can still use all features of the product, you are in violation of the software transaction agreement. (206723)

Error in management portal: "License violation: The current number of assigned tokens is <current> . The licensed number of tokens is 0. Although you can still use all features of the product, you are in violation of the software ...

DSS Log Error "LDAP failed (50) writing user data for [username]" (122966)

In the DSS logs the following errors are shown: LDAP failed (50) writing user data for [UserCN] LDAP failed (50) writing token data for CN=[TokenCN] Ldap failed (Insufficient Rights) writing DSS status. Users who are trying to ...

'Enable time limited token activation' setting and usage (183823)

How should the "Enable time limited token activation" / "Expire token activation code after" setting be utilized? This feature sets a time period in which a token must be activated and utilized. If the token is not utilized for authentication ...

How To Activate a Token on Android (139829)

What are the steps to activate a token on an Android Device? To activate the Quest Soft Token for Android you will need to import the activation code, provided to you by the administrator of your authentication server, onto your Android device. To do this: ...

Is there a logout button for the Defender Web Management Portal? (123970)

Defender Web Interface Error, "HTTP Error 500.19 - Internal Server Error" (81054)

"HTTP Error 500.19 - Internal Server Error The request page cannot be accessed because the related configuration data for the page is invalid." Detailed Error Information may include: "Config Error Cannot read configuration file due to insufficient permissions". Or. ...

Can you run 2 proxies on one DSS? (195826)

The environment consists of one main primary Domain-A and another acquired Domain-B (the domains are not in the same forest but do have a trust). The main Domain-A has user accounts for all the users in the acquisition Domain-B (Same samaccount name). ...

Defender component FAQ (186461)

Questions related to Defender components and installation. Q. Can a Production Defender License be used to set up a server in a development/lab environment? A. Licenses are domain specific. So only if the domain name is the same. ...

Error Request Failed when updating Defender ID (189980)

When attempting to create or edit the Defender ID field from within the Management portal, the following error is noticed: "Error - Request Failed message". Delegate permissions are missing for the account logged into the Management ...

Defender Access Node Configuration (45588)

What is a Defender Access Node and how is it defined? If the Access Node configuration is incorrect you may receive error messages when users attempt to connect using Defender authentication, eg: "Access Denied - No valid route found. ...

How to delegate Administrative rights in Defender (43578)

How are administrative rights delegated in Defender? Please note: this article, and its attached document, help explain Defender permissions at an attribute level, and require an in-depth knowledge of Active Directory permissions and security. ...

Is the Defender PAM module supported on AIX 7.2? (201595)

Has the Defender PAM module been tested on AIX 7.2 to validate if it is supported? According to IBM AIX 7.2 is supposed to be binary compatible with previous releases, so Defender PAM module should still work however it has not yet gone through our QA process. ...

Error with new GO-6 tokens "'Failed to verify response - Validation failed' (205823)

When verifying new GO-6 hardware tokens in Active Directory Users and Computers you receive the following error message: "Failed to verify response - Validation failed" This occurs on versions of Defender prior to 5.7.4330. ...

Defender Desktop Logon unable to click on the right arrow logon button (124594)

On the login screen for Defender Desktop Login the user is unable to click (or enter return) on the arrow next to the logon fields, preventing the user from logging on. When the button is clicked nothing happens, the user is not logged on and there is no error. ...

Information regarding using Defender with AWS Workspaces. (205646)

Is there any information regarding using Defender with Amazon AWS Workspaces? When logging into AWS Workspaces that has been configured for MFA, the AWS Workspace will ask for a Password and Token Response. ...

When using the Token Deployment System is it possible to restrict users to only be allowed one token in total? (148239)

When using the Token Deployment System, is it possible to restrict users to only be allowed one token in total? Is it possible to restrict a user to only have 1 (one) token assigned at any one time? WORKAROUND None STATUS ...

Is it possible to convert the 'defender lastlogon' attribute from Active Directory from the numeric string to date value? (205489)

When viewing the Defender token attributes via Properties (or query from Powershell); the time value is seen to be an 18 digit value similar to "131013544564114579". Is it possible to convert this to a human readable date? ...

How to enable diagnostics for the Defender Management Portal (117072)

How to enable debug diagnostics for the Defender Management Portal and enable additional diagnostics for Reports. Enable diagnostics for Reports and turn on debug for the Management Portal as follows: A. Enable debug ...

Understanding the licensing process for Defender (44179)

Understanding the licensing process for Defender: How is Defender licensed? What are the different license types? With Defender there are 3 license types: 1. The User license (appears as DEFLIC0000000000 in Active Directory ...