9.1 Configuring an Endpoint

  1. In the Endpoints section of the Helpdesk administration portal, click Edit against the endpoint you want to edit.

    You can rename the endpoint, change its description, or endpoint type.

  2. Set Is enabled to ON to enable the endpoint.

  3. Set Is trusted to ON if the endpoint is trusted.

    In some integrations such as Migration Tool, Password Filter, NAM, and NCA, you must enable the Is trusted option for their endpoints.

  4. Specify an Endpoint Owner if you have configured a specific chain to be used by the Endpoint owner only.

    This is a user account that must be able to use a different chain than the other users for authentication. For more information about Chains, see Creating a Chain in the Advanced Authentication - Administration guide.

    The Endpoint Owner feature is supported for Windows Client, Mac OS Client, and Linux PAM Client only.

    NOTE:

    • Additional information such as Operating System, Software version, Last session time, and Device information is displayed in the Endpoints page. Also in Advanced properties, RAM information is displayed.

    • Advanced Authentication Windows Client 5.6 or later versions, Advanced Authentication Linux PAM Client 6.0 or later versions, Advanced Authentication Mac OS X Client 6.0 or later versions must be installed on the endpoint.

  5. Click Save.

9.1.1 Creating an Endpoint Manually

You can create an endpoint manually. This endpoint can be used for the third-party applications that do not create endpoints.

To create an endpoint manually, perform the following steps:

  1. In the Endpoints section, click Add.

  2. On the Add endpoint page, specify Name of the endpoint and its Description.

  3. Set Type to Other.

  4. Set Is enabled to ON.

  5. Set Is trusted to ON if the endpoint is trusted.

  6. Leave Endpoint Owner blank.

  7. Click Save.

    The New Endpoint secret window is displayed.

  8. Note down the values specified in Endpoint ID and Endpoint Secret and place them in a secure place in your application.

    NOTE:You will not be able to get the Endpoint ID and Endpoint Secret later on in the appliance.

  9. Click OK.

NOTE:Tenancy settings are not supported for endpoints.

IMPORTANT:You must ensure not to remove an endpoint that has at least one component running on it, such as Windows Client, Logon Filter, RD Gateway plug-in, or ADFS plug-in. Endpoint is removed automatically when you uninstall the Windows Client. However, you must remove the endpoint manually when you uninstall Logon Filter, RD Gateway plug-in, or ADFS plug-in.

If you remove an endpoint accidentally, ensure to remove the records with prefix endpoint* in the %ProgramData%\NetIQ\Windows Client\config.properties file, and then re-start the machine. This recreates the endpoint.