Configure the mobile console on the Thycotic Management Server
To configure the Mobile Console on the Thycotic Management Server, you must:
- Set the Client ID and Tenant ID
- Configure the notification settings
Set the Client ID and Tenant ID
After you have installed the Mobile Console Solution, set the Client ID and Tenant ID by doing the following steps:
- In the Security Manager Console, click the Configuration tab.
- In the file library in the left pane, navigate to Configuration > Infrastructure.
- Right-click Configuration Settings and click Mobile Console Solution.
Set the Client ID and Tenant ID.
Note
Use the Client ID generated when you configured the Microsoft Azure Active Directory.
The Tenant id is your company name (for example, “CompanyName.com”). Typically you can find it by looking at the URL of the Azure Management page.
- Save the configuration settings.
Configure the notification settings
- To configure the notifications for approval requests, click the Tasks tab.
- In the file library in the left pane, go to Workflow > Automation > Approvals > Approval Processes and select the Mobile Message Approval Process.
- Save the Approval Process if you made any changes.
Note
By default the alerts for new approval requests will only be sent to mobile users in the Administrators role. You can change this setting by allowing the approver role to a different role. You can also scope these messages to a subset of users in that role by specifying the “Scope to Collection (optional)” parameter. Messages can be localized and customized to meet your needs.
To start sending notifications to phones, select the Default Execute Application Request Type and change the Approval Process from the Default Manual Approval Process to the Mobile Message Approval Process and save the changes.
You can also send notifications based upon report data. These can be used to send alerts for suspicious activity, etc. An example of this can be found under Tasks > Server Tasks > Mobile Messaging > Mobile Message Alert for Password Disclosures on VIP Systems.
This message can be executed on a schedule to send alerts for any password disclosures on VIP Systems. VIP Systems are configured via the Monitored Computers parameter that allows you to choose a Collection of computers.