Edit Client

To edit a Client from within the Client view:

  1. Click the 3 dots menu to the top right of the screen when viewing the Client (available on all views where the Client drop-down menu is available).
  2. Select Edit Client.
  3. The Edit Client dialog opens. Make the required edits.
  4. Setting Description
    Name Clients name - required.
    Phone Client phone number.
    Custom Rotation Policy Enable or disable Credential Rotation.
    Rotation Policy Duration (in Days) How often credentials are rotated.
    Enable Site Login Provides Passportal Site login functionality for Site users at the Client.
    Auto-provisioning Enable/disable Auto Provisioning Users. When enabled allows creation of Pro-Users and Site-Users in bulk using Active Directory or Azure.
    Forced Credential Types This forces client credentials to use the credential types list from the organization.
    Agent Key View and copy the Agent Key string, required for Passportal Agent install and other actions.
    Microsoft Sync Enable/disable the Active Directory/Azure Integration Sync.
  5. Where Active Directory settings need to be configured, click the Active Directory Settings button (either Connect to Active Directory or Active Directory + Azure must be selected from the Microsoft Sync drop-down menu for the button to display) and configure as required. These settings are detailed in the below table.
  6. Where Connect to Azure or Active Directory + Azure is set, and authentication with Azure is still to be completed, click Authenticate then follow the directions contained in Azure Synchronization.
  7. Click Save to save and close the editor, or Cancel to close without saving any changes.

To edit a Client from the Client List view:

  1. Navigate to the clients list by selecting Clients from the main menu.
  2. Click on Edit Client in the 3 dots menu of the Actions column of the required client.
  3. The Edit Client dialog opens. Make the required edits.
  4. Where Active Directory settings need to be configured, click the Active Directory Settings button (either Connect to Active Directory or Active Directory + Azure must be selected from the Microsoft Sync drop-down menu for the button to display) and configure as required. These settings are detailed in the below table.
  5. Where Connect to Azure or Active Directory + Azure is set, and authentication with Azure is still to be completed, click Authenticate then follow the directions contained in Azure Synchronization.
  6. Click Save to save and close the editor, or Cancel to close without saving any changes.

Active Directory Settings

Setting Description
Sync behavior
Mute Agent Turns off all password processing for the agent.
One-way sync Password changes are sent one-way only and any changes at the destination will be overwritten.
AD to Passportal Changes from AD are sent to Passportal on sync. Changes in Passportal will get overwritten by Windows agent.
Passportal to AD Changes from Passportal are sent to AD on sync. Changes in AD will get overwritten by Windows agent.
Two-way sync Password changes are sent both ways on sync. Password must be changed first in Passportal for this to work.
Services
Update Service Credentials on Network Update all network services with password changes.
Auto Restart Updated Services When service account logins are updated, restart the service.
User Settings
Unlock Windows Accounts on resets When resetting an account via Blink also unlock the account.
Auto Create Users as Passwords When a password change is detected, create the user as a password in Passportal
Force Username to UPN

When passwords are autoimatically created, e,ploy User Principle Name (UPN).

When Active Directory + Azure sync is enabled, forcing the username to UPN may disrupt Azure syncing if the agent domain name is different than the Azure domain name.

Auto Create Missing Windows Users Create the user in Windows if present in Passportal and set to update password.
Blink app
Agent Settings Override Blink Options When this setting is off, the options in the blink app will be used for password resets
Require password change on Blink resets When Blink users request password resets, true means they will be forced to change their password at next login.
Agent folder settings
Folder Path - Sync Agent 4.1.0 or higher to use these settings

Folder where synced passwords will be created. Available after an Agent 4.1.0 and above has synced.

Configure to automatically store any new synchronized passwords in the selected folder rather than in the root of the client. This ensures that any sensitive passwords appear in this folder first before moving them elsewhere. For additional security and restrict access, apply multiple security groups to the selected folder. Use in conjunction with the Org Unit Filter to select which Organization Units synchronize to the folder.

Org Units Filter - Sync Agent 4.1.0 or higher to use these settings

Select the Organization Units you want to sync with ". Available after an Agent 4.1.0 and above has synced.

Choose the Active Directory Organization Units to synchronize with Passportal. After selection, Passportal only synchronizes with those units included in the filter.

Org Units Filtering does not apply to default Organizational Unit structures which always synchronize.