Edit Client
To edit a Client from within the Client view:
- Click the 3 dots menu to the top right of the screen when viewing the Client (available on all views where the Client drop-down menu is available).
- Select Edit Client.
- The Edit Client dialog opens. Make the required edits.
- Where Active Directory settings need to be configured, click the Active Directory Settings button (either Connect to Active Directory or Active Directory + Entra ID must be selected from the Microsoft Sync drop-down menu for the button to display) and configure as required. These settings are detailed in the below table.
- Where Connect to Entra ID or Active Directory + Entra ID is set, and authentication with Entra ID is still to be completed, click Authenticate then follow the directions contained in Entra ID Synchronization
- Click Save to save and close the editor, or Cancel to close without saving any changes.
| Setting | Description |
|---|---|
| Name | Clients name - required. |
| Phone | Client phone number. |
| Custom Rotation Policy | Enable or disable Credential Rotation. |
| Rotation Policy Duration (in Days) | How often credentials are rotated. |
| Enable Site Login | Provides Passportal Site login functionality for Site users at the Client. |
| Auto-provisioning | Enable/disable Auto Provisioning Users. When enabled allows creation of Pro-Users and Site-Users in bulk using Active Directory or Entra ID Synchronization. |
| Forced Credential Types | This forces client credentials to use the credential types list from the organization. |
| Agent Key | View and copy the Agent Key string, required for Passportal Agent install and other actions. |
| Microsoft Sync | Enable/disable the Sync Active Directory and Entra ID Integration. |
To edit a Client from the Client List view:
- Navigate to the clients list by selecting Clients from the main menu.
- Click on Edit Client in the 3 dots menu of the Actions column of the required client.
- The Edit Client dialog opens. Make the required edits.
- Where Active Directory settings need to be configured, click the Active Directory Settings button (either Connect to Active Directory or Active Directory + Entra ID must be selected from the Microsoft Sync drop-down menu for the button to display) and configure as required. These settings are detailed in the below table.
- Where Connect to Entra ID or Active Directory + Entra ID is set, and authentication with Entra ID is still to be completed, click Authenticate then follow the directions contained in Entra ID Synchronization.
- Click Save to save and close the editor, or Cancel to close without saving any changes.
Active Directory Settings
| Setting | Description |
|---|---|
| Sync behavior | |
| Mute Agent | Turns off all password processing for the agent. |
| One-way sync | Password changes are sent one-way only and any changes at the destination will be overwritten. |
| AD to Passportal | Changes from AD are sent to Passportal on sync. Changes in Passportal will get overwritten by Windows agent. |
| Passportal to AD | Changes from Passportal are sent to AD on sync. Changes in AD will get overwritten by Windows agent. |
| Two-way sync | Password changes are sent both ways on sync. Password must be changed first in Passportal for this to work. |
| Services | |
| Update Service Credentials on Network | Update all network services with password changes. |
| Auto Restart Updated Services | When service account logins are updated, restart the service. |
| User Settings | |
| Unlock Windows Accounts on resets | When resetting an account via Blink also unlock the account. |
| Auto Create Users as Passwords | When a password change is detected, create the user as a password in Passportal |
| Force Username to UPN |
When passwords are automatically created, employ User Principle Name (UPN). When Active Directory + Entra ID sync is enabled, forcing the username to UPN may disrupt Entra ID syncing if the agent domain name is different than the Entra ID domain name. |
| Auto Create Missing Windows Users | Create the user in Windows if present in Passportal and set to update password. |
| Blink app | |
| Agent Settings Override Blink Options | When this setting is off, the options in the Blink app will be used for password resets |
| Require password change on Blink resets | When Blink users request password resets, true means they will be forced to change their password at next login. |
| Agent folder settings | |
| Folder Path - Sync Agent 4.1.0 or higher to use these settings |
Folder where synced passwords will be created. Available after an Agent 4.1.0 and above has synced. Configure to automatically store any new synchronized passwords in the selected folder rather than in the root of the client. This ensures that any sensitive passwords appear in this folder first before moving them elsewhere. For additional security and restrict access, apply multiple security groups to the selected folder. Use in conjunction with the Org Unit Filter to select which Organization Units synchronize to the folder. |
| Org Units Filter - Sync Agent 4.1.0 or higher to use these settings |
Select the Organization Units you want to sync with ". Available after an Agent 4.1.0 and above has synced. Choose the Active Directory Organization Units to synchronize with Passportal. After selection, Passportal only synchronizes with those units included in the filter. Org Units Filtering does not apply to default Organizational Unit structures which always synchronize. |