We are now Quest and SonicWall Visit our new Support Portal at Quest and SonicWall.

One Identity Defender - Search Global

Refine Your Search
Advanced Queries | | Increase Your Search IQ
How To: Use the RADIUS Test Tool to troubleshoot Defender authentication (119235)

The Radius Test Tool is a simple method to test Defender token authentication to confirm that the DSS is accepting and processing requests successfully. All authentication attempts using the tool are recorded in the DSS audit log. ...

How to enable diagnostic logging for Defender 5.8.x (180712)

What are the steps to enable diagnostic logging for each Defender component? Diagnostic logging must be enabled locally on the system where Defender is installed. If multiple systems are affected, it must be enabled on each system. ...

How to enable diagnostic logging for Defender 5.7 (67717)

What are the steps to enable diagnostic logging for version 5.7 of Defender? Diagnostic logging must be enabled locally on the system where Defender is installed. If multiple systems are affected, it must be enabled on each system. ...

One Identity Support Critical Product Notification - One Identity Defender All Versions (214146)

One Identity Defender All Versions - Critical Product Notification. One Identity Defender leverages an underlying service provided by Telesign for SMS and phone call based authentication to the Self-Service Portal. Telesign ...

One Identity Defender 5.8.2 Management Portal Hotfix for Solution 211829 (211829)

On the Defender Self-Service Portal, the method for verifying the identity of users who request software tokens can be configured. If Automated phone call or SMS (TeleSign) for verification has been selected, Defender uses TeleSign service and verifies the users. ...

Unable to logon to the Defender Management Portal (205573)

When attempting to logon onto the Defender Management Portal, the user is sent back to the login page. There is no error shown on screen. The logs show the below error: "ERROR YYYY-MM- DD HH:MM:SS,MS [9] HomeController ...

Error: "Failed to authenticate to directory @ HOST.YOURDOMAIN.COM:389 (49, Invalid Credentials)" (45199)

If a username that is greater than 20 characters in length is used as the Admin User in the Defender Security Server Configuration the following error may be seen in the 'Test Connection' tab of the Defender Security Server Configuration tool. ...

How to unassign Defender Soft Tokens (89898)

How to remove and delete a Defender Soft Token from an Active Directory user. This applies to the following token types: • Soft Token for Android™. • Soft Token for BlackBerry®. • Soft Token for iOS. • Soft Token for Java. • Soft Token for Windows. • Soft Token for Windows Phone ...

License violation message appearing in the Defender Management Portal and ADUC (205238)

License violation: The current number of assigned GrIDsure tokens is X. The licensed number of of GrIDsure tokens is 0. Although you can still use all features of the product, you are in violation of the software transaction agreement. ...

Logging in with Defender Desktop Login, sometimes a user is able to login successfully and other times the same user fails. The failed attempts show "Authentication Rejected (No matching user found)" in the DSS Audit Log. (215390)

A Defender Desktop Login user is able to login successfully at some times, however at other times it is found that the login fails. The user may see "Access Denied - no valid route found.". Examples from the Defender Security ...

Desktop Defender Offline Token Sync (91927)

When a system is locked, then user logs back in using AD credentials and token response, this is recorded in the DSS log. However, the offline token cache is not being updated...on Windows 7. On Windows XP it does update. Even with the latest desktop login hotfix I see this. ...

Defender Desktop Logon unable to click on the right arrow logon button (124594)

On the login screen for Defender Desktop Login the user is unable to click (or enter return) on the arrow next to the logon fields, preventing the user from logging on. When the button is clicked nothing happens, the user is not logged on and there is no error. ...

Defender Desktop Login user has lost token and cannot login to laptop when offline (127524)

When generating a temporary response for a user that has lost their token, the user receives the error, “Invalid Synchronous Response. Enter Synchronous Response" when attempting to login to their laptop, when the laptop is offline. ...

How To Assign a Temporary Response to a user (87231)

How to assign a temporary response to a user. A temporary response can be used when the Active Directory (AD) user has misplaced or lost their token and needs to log in. To assign a temporary response to a user, please perform the following steps: ...

The "Assigned To" column is not present in the "Tokens" OU in Active Directory Users and Computer (63670)

The "Assigned To" column is not present in the "Tokens" OU in Active Directory Users and Computers (ADUC). If you create the Defender OU and associated sub OUs using the standard "New | Organization Unit" option the "Assigned To" column will not be available. ...

One Identity Defender On-site Health Check

This services offering consists of two (2) eight-hour days during which One Identity will assist the Customer with analyzing and documenting the performance of the Defender software in their environment. Recommendations ...

Request More Information

Can Defender Desktop Login be installed on non-AD joined machines? (206890)

Can Defender Desktop Login be installed on non-AD joined machines / workgroup machines? No. Desktop Login requires a machine that joined to Active Directory. Only AD users can use Defender authentication.

Defender 5.8.x EAP Agent installed on Windows 10 and does not function (198855)

The prior release(s) of the Defender EAP Agent worked successfully on other releases of Windows (prior to version 10); when installing the Defender 5.8.x EAP Agent on Windows 10 it does not function correctly. Currently the ...

Installing Defender - will it install on parent or child domain, or both? (73714)

Question 1. As Defender Management Console installation causes Defender OU creation & Schema Extensions on the Domain of the logged in system, suppose Defender Management Console is installed on a system which is a computer in child domain; while installing ...

One Identity Remote Partner Expert Oversight

The One Identity Remote Partner Expert Oversight services offering consists of five eight-hour days to support and assist the customer with the strategic implementation and/or consulting services efforts related to One Identity solutions. ...

Request More Information

One Identity Defender Customized Services Engagement

One Identity offers a range of on-site and remote implementation, configuration, and end-user training services to help you extract the most value from your One Identity solution. You can rely on our Professional Services team to: ...

Request More Information

Does Defender support MS-CHAP v2? (71689)

Does Defender support RADIUS protocol MS-CHAP v2 / MSCHAPv2 ? Can a VPN device be configured to work with Defender using MS-CHAP v2? 5.7 and below MS-CHAPv2 support in Defender 5.7 is limited to "Token" only ...

Desktop Login with GrIDsure expected workflow (129920)

After configuring the Desktop Login with GrIDsure, the Defender policy has been modified to allow domain username/password and passcode. However, the GrIDsure display does not come up on the screen until one hits Enter ...

Defender 5.8.2 Hotfix for Solution 211829

This hotfix addresses issues in Defender Please refer to the Support Portal knowledgebase article 211829 for additional information and instructions on implementing the patch. null

Non-Defender users cannot login offline (107822)

AD Users who are logging in without a Defender token cannot be authenticated when the computer is offline. In offline mode (ie AD is unavailable) Defender Desktop Login is unable to check group membership to determine ...