Password Manager Pro Mobile Application - iOS
Password Manager Pro's mobile application for iOS brings the solution's comprehensive enterprise password management features to your fingertips, thereby making on-the-go management of your enterprise's privileged accounts and passwords more accessible through your mobile device. Since the iOS application uses advanced AES-256 encryption to encrypt all your data, accessing your enterprise accounts through your iOS device is just as secure as Password Manager Pro's desktop installation. The mobile application also secures all communication between your Password Manager Pro server and the iOS application using the HTTPS protocol over SSL.
Note: The Password Manager Pro iOS application requires a valid working instance of the ManageEngine Password Manager Pro web application.
At the end of this document, you will have learned the following:
- Features
- Authentication Mechanism
- Getting Started
3.1 Specifications
3.2 Installing Password Manager Pro in Mobile Device
3.3 Connecting to the Password Manager Pro Server
3.4 Authentication
- Navigation Menu
4.1 Choosing Client Organization as an MSP User
4.2 Enterprise
4.3 Requests
4.4 Advanced
4.5 Personal
4.6 Settings
- Uninstalling the Mobile Application
1. Features
Password Manager Pro's iOS application comes with a set of features which will allow users to take control of their privileged accounts without accessing the desktop application.
- View and manage all passwords that are owned or managed by you.
- Incorporate ticket ID validation through Password Manager Pro's ticketing system integration to secure your access approval workflow even further.
- Store and manage your critical personal information such as credit card numbers for on-the-go access. Password Manager Pro's iOS application encrypts your personal data using the advanced AES-256 encryption algorithm.
- View and manage your SSH keys and SSL certificate details at any time.
- Approve/reject password requests and monitor who checks out passwords directly from the Password Manager Pro iOS application. Also, send password requests, and perform password check in and check out through the mobile application.
- Save important passwords offline to access them even when you do not have access to the Internet.
2. Authentication Mechanism - Mobile Application
Password Manager Pro offers Two-Factor Authentication for better security. Here the users will have to successfully authenticate twice through the first level and the second level. The first level of authentication can be done in 5 different ways: Local authentication, Active Directory/LDAP/Azure AD credentials, or via SAML SSO. The second level of authentication can be done through any of the Two-Factor Authentication supported by Password Manager Pro. Now, after Two-Factor Authentication, the application prompts you to set a passphrase with a minimum of 8 characters used for mobile authentication. The application does not store the passphrase and it is mandatory to enter the passphrase during login. All your offline data is encrypted using the advanced AES-256 encryption algorithm.
Password Manager Pro allows administrators to allow or restrict certain users to access the mobile application. To do this, navigate to Admin >> Users >> More Actions and click Restrict Mobile Access. Administrators can also restrict users to cache passwords in mobile devices from General Settings using Allow password caching for offline access via mobile.
3. Getting Started with Password Manager Pro - iOS
3.1 Specifications
Supported Devices |
iPhone, iPad, iPod touch |
Compatibility |
Requires iOS 11.0 or later versions |
Size |
12.7 MB |
Languages Supported |
English, French, German, Japanese, Polish, Simplified Chinese, Spanish, Traditional Chinese, Turkish |
3.2 Installing Password Manager Pro in Mobile Device
- Open App Store and search ManageEngine Password Manager Pro or click here.
- On the app page, tap Get and after authentication, the application will get installed on your device.
3.3 Connecting to the Password Manager Pro Server
After successfully installing the mobile application, enter the following details to get started with Password Manager Pro.
- Enter the Server Name or IP address in which Password Manager Pro is running, along with the Port. Ensure that the Password Manager Pro server and the mobile application are connected to the same network. However, if your Password Manager Pro server is hosted in the cloud, your mobile application will work from a different network as well.
- In case of MSP users, please select your organization name in the drop down list, the mobile interface will display only the resources specific to that particular organization.
3.4 Authentication
- Open Password Manager Pro, enter the Username and Password of your Password Manager Pro account.
- The mobile application also supports AD, LDAP, Azure AD authentication, and via SAML SSO. To login using Active Directory/LDAP credentials, select your domain name from the drop-down list.
- If SAML Single Sign On is enabled in your Password Manager Pro server, a browser window opens within the application.
- Here, enter your SAML SSO credentials to login. To skip the SAML SSO login, close the browser window and you will be redirected to the application's login page.
- Now, set passphrase for secure offline access (mandatory).
Notes:
- The application does not store your passphrase, and it is mandatory to enter the passphrase each time you access the mobile application. You have a total of five attempts to enter the correct passphrase, after which you will be logged out of the application automatically. After being logged out automatically, you will be asked to enter the Password Manager Pro account credentials. Only after successful login, you will be allowed to use the Forgot Passphrase option in the enter passphrase page. The Forgot Passphrase link will be available only for the first time while logging into Password Manager Pro.
- If you are using the application in online mode and fail to provide the correct passphrase during the allowed attempts, the application will log you out and you have to log in again and set up a new passphrase to access the mobile application again.
- In case you fail to enter the correct passphrase while using offline mode, you cannot access the application until you log in through the online mode and change the passphrase again.
- Please note that every time you set up a new passphrase, all the offline password cache you have saved and settings you have customized will be deleted from your device.
4. Navigation Menu - iOS Application
Once you have signed into your Password Manager Pro account through the iOS application, you will see the Navigation Menu on the main screen with the following options that will help you navigate the iOS application efficiently:
4.1 Choosing Client Organization as an MSP User
4.2 Enterprise
4.3 Requests
4.4 Advanced
4.5 Personal
4.6 Settings
4.1 Choosing Client Organization as an MSP User
For MSP users, Password Manager Pro's iOS application allows you to manage the administrative passwords of all your clients separately from a single management console. The application neatly segregates client organizations into different sections, which you can tap to view all the passwords belonging to that particular organization. As MSP admin, even though you can view the names of the organizations you manage, you will be able to view the data on all your customers only if you add their resources or if they share their resources with you. Your clients will be able to view the data belonging to their organization only. As an MSP user, you can choose a client organization and view all the resources under it. To do so:
- Tap the hamburger icon to open the Navigation menu. Here, tap on the organization name to display all the available client organizations.
- Tap the client organization name to display all the resources specific to the selected organization. Please note that the mobile interface will display only the resources specific to the selected organization.
4.2 Enterprise
By default, the application displays a list of all the resources on the main screen. From here, tap on any resource to view the accounts associated with it. Tap the hamburger icon at the top left corner to open the Enterprise menu. This menu displays a list of resources owned or managed by you, categorized as below:
- All My Passwords
- Favorites
- Recents
- Windows RDP Passwords
- SSH Passwords
- SSH Keys
- SSL Certificates
- Resource Groups
Each menu has a dedicated Search icon that allows you to locate accounts within the menu. The application loads a list of accounts as and when you scroll. When you search for an account using a keyword, the application searches for the keyword only in the already loaded list; to search through all available accounts, scroll to the end of the list to load all the accounts.
i. All My Passwords
This category lists all resources and accounts that are owned and managed by you. Tap on any resource/account name to view the resource/account details such as resource owner, resource URL, DNS name, resource type, passwords, resource name, account notes, and last accessed time. To view the password of a particular account, tap on the eye icon beside the password. Tap the Search icon to search for any account within the selected resource, using a search keyword.
ii. Favorites
This option is to have quick access to the list of passwords that you marked as Favorites. To mark any password as your favorite, tap the star icon beside the required password in any category. Marking passwords as Favorites helps you locate a particular account and its password easily, without the need to scroll through the entire list every time. Tap the Search icon to search for any account within the selected resource, using a search keyword.
iii. Recents
This menu helps you view only the list of resources and passwords that you have recently viewed or used. From the list, you can tap on any resource to view its accounts and their corresponding details. Tap the Search icon to search for any account within the selected resource, using a search keyword.
iv. Windows RDP Passwords
If your network contains a list of resources of various OS types, the Windows RDP Passwords option will help you to view only the list of Windows resources and their corresponding accounts. Tap on any resource/account name to view the resource/account details such as resource owner, resource URL, DNS name, resource type, passwords, resource name, account notes, and last accessed time. To view the password of a particular account, tap on the eye icon beside the password.
v. SSH Passwords
This option gives you a consolidated view of all the resources that you can access through an SSH connection. Tap on any resource on this list to view its user accounts. Tap on any account to view the account details, such as the masked password, last modified time, last accessed time, and password expiry date. Tap the Search icon to search for any account within the selected resource, using a search keyword.
vi. SSH Keys
This allows you to view all the SSH keys that you are managing in the Password Manager Pro repository. Select an SSH key to view the key details such as Key Type, Key Length, the key's Fingerprint, Username of the user who created the key, and Age of the key.
vii. SSL Certificates
Select Certificates from the navigation menu to view all the SSL certificates that you are managing in the Password Manager Pro repository. Select SSL certificate from the list to view the following certificate details: Common Name, Port, Validity period, SAN, Issuer, Signature Algorithm, Finger Print, Serial Number, Key Algorithm, Key Size, Issuer.
viii. Resource Groups
Administrators can create resource groups to combine similar resources for easier management. The grouping can be done either by specifying individual resources (Static group) or by specifying a set of criteria (Dynamic group). In the case of a dynamic or a criteria-based group, whenever a newly added resource matches the criteria of an existing group, Password Manager Pro automatically adds the resource to this group. You can share the resource groups with other users or user groups. Users to whom the groups are shared can see the passwords of only the resources that are part of the shared group at that time. Tap the Resource Groups option from the navigation menu to view all the resource groups that are owned or managed by you. If a resource group has a subgroup, it will be indicated by a right arrow icon; to view the subgroups, simply tap the arrow icon. If you wish to view the resources within a resource group, tap the name of the required resource group. Similarly, tap a resource name within the resource group to view the accounts that belong to the selected resource, and the account name to view the account details.
4.3 Requests
Password Manager Pro provides an access control mechanism that allows administrators to grant password access to users for a specific period. Admins can start granting exclusive privileges once a password is ready to share, and only one user is allowed to use a particular password at a single point in time. Through Password Manager Pro's iOS application, administrators can view the list of pending password access requests from other users and act upon them. As an administrator, the Password Access Requests tab offers two sections:
- Pending - to view the list of password access requests.
- Check-In - to view the passwords that are currently in use and yet to be checked in.
- Approved - to view the password requests that are approved by the administrators. This option includes details about the resource such as the resource name, account name, and date & time.
- Rejected - to view the password requests that are rejected by the administrators. This option includes details about the resource such as the resource name, account name, and date & time.
To send a password access request, tap an account, and tap the Request option in the account details section. Once your request has gone through, the status will change to Waiting for Approval.
Once an admin has approved your password request, you will be notified of the same, and the password will be available for Check Out. Once you check out the password for use, the status changes to In Use. Other users can see this status change in both the Check-In tab and the Account Details section of the particular account. To give up access to the password, tap the Check-In option. Now, the password is checked back into the Password Manager Pro vault.
Once you check in the password and give up your access, you must go through the request-release workflow once again, if you should need access to it again. Password Manager Pro's iOS application also supports ticketing desk integration. Through the integration, Password Manager Pro will prompt users to provide a Ticket ID along with their Reason. Then, Password Manager Pro will validate whether the ticket ID entered by the user exists in the ticketing system or not and only then grant access to the user to view the password.
4.4 Advanced Search
Password Manager Pro allows you to find any particular user or resource instantly using Advanced Search. Select Advanced Search from the navigation menu and select between Enterprise and Personal. Enter a keyword like Name, Department, Location, or use one of the many search filters available to customise your search better. If you choose Personal, you will be allowed to search between different categories. Select the preferred category and enter a keyword in the search column. The custom column names created in additional fields in Password Manager Pro's desktop installation will also appear as filters in Advanced Search.
4.5 Personal
Password Manager Pro's iOS application allows you to store personal passwords in the Password Manager Pro repository. The application provides four default categories: Web Accounts, Banking, Credit Cards, and Contacts. Here in these categories, you can save your important personal data such as your personal email account information, credit card numbers, and other banking data, contact addresses, and phone numbers. Password Manager Pro also allows you to add additional custom fields to your Personal tab from the desktop application to store other information. The application stores your personal data in a private repository that only you can access through the Personal tab. All information stored here is encrypted independently and hidden from all other users, including the administrator. While adding account details to the Personal tab, there is an option to add Tags. Under this attribute, add keywords that can be used to search for the account under a particular category. Tap the Search icon and enter a keyword that was previously added as a tag to locate the account you are looking for.
4.5.i Setting up a Personal Passphrase
First, set up a valid passphrase in Password Manager Pro's desktop installation and activate your Personal repository. Ensure the passphrase you provide matches the complexity rules enforced by your organization. After setting up the passphrase, you must enter it every time you need access to your personal passwords. Password Manager Pro will not allow you to login to your personal repository before setting up a passphrase. Once you create a passphrase in the desktop application, tap the refresh icon and login with the newly created passphrase without having to move out of the Personal tab.
Note: Please note that if you forget or misplace the passphrase used for your Personal repository, you cannot reset the passphrase or retrieve your personal data without it.
Alternatively, Password Manager Pro's iOS application provides the option to login to the Personal tab using your mobile device's Touch ID. Click here to learn how to enable Touch ID for the Personal tab.
4.6 Settings
The Settings menu offers a comprehensive collection of options that are split categorically for ease of use. Use this menu to customize various security options, view login details, privacy policy of the iOS application, and more.
4.6.i Login
The Login section displays the Username and Server address to which Password Manager Pro is currently connected. If the High Availability feature is turned on in your environment, then the iOS application will also display the secondary server details on the Settings page. If the primary server is down, you can connect it to the secondary server for uninterrupted service.
4.6.ii Security
The Security section has the following options:
a. Stay active in the background for Set the duration for how long the application should remain logged in to your account when the application goes into the background. You can choose any one duration ranging from 1 to 8 hours. This option will allow you to stay logged into Password Manager Pro when you need to switch between Password Manager Pro and other applications multiple times. Alternatively, tap Never to log out as soon as the application goes into the background.
b. Skip passphrase for
When you leave the application without logging out, Password Manager Pro's mobile application will prompt you to enter your passphrase to log in to the application. Skip passphrase for allows you to set a duration for the application to not prompt for the passphrase while running in the background. You can choose any one duration ranging from 30 to 120 seconds. Select Never to always prompt for a passphrase during login.
c. Clear Clipboard
Password Manager Pro's iOS application can preserve any data you copy from within the application for a specified duration. To copy any password, tap the copy icon that is present beside the password. Tap the Clear Clipboard option to set a duration to preserve content you have copied to the clipboard. You can choose any one duration ranging from 30 to 120 seconds. Alternatively, tap Never to never save any copied content in the clipboard.
d. Reset Passphrase
Tap this option to reset your passphrase for mobile authentication. Please note that resetting the passphrase will erase all the cached data from this device. This includes both enterprise and personal offline data unless you have set a different passphrase for your personal data. In that case, only the enterprise offline data will be erased.
4.6.iii Touch ID
Use the toggle buttons to enable Touch ID support to access your Enterprise and Personal passwords. Enabling Touch ID will allow you to access your passwords without having to enter your passphrase every time. However, please note that, if you enable this option, your login credentials will be stored in your device's keychain.
4.6.iv Offline Access
The toggle buttons beside Enterprise and Personal indicate whether the Password Manager Pro application is currently in online or offline mode. Password Manager Pro's iOS application offers a secure offline mode that allows you to access passwords even when you do not have access to the internet. To access passwords in the offline mode, download the required passwords first; only the passwords which are downloaded before going offline would be available for access in the offline mode. Apart from downloading individual passwords, the application allows you to download a group of passwords from the Enterprise menu, such as the Favorites, Recents, Windows RDP Passwords, and SSH Passwords. Additionally, you can download resource groups and personal passwords. To download passwords for offline access, go to the Enterprise menu, and click the downward arrow beside the required list of passwords.
Note: Offline mode will work only if the Allow password caching for offline access via mobile option is enabled in General Settings.
4.6.v Themes
Using this option to change the background color of your application. As of now, there are four colors to choose from: Blue, Green, Red, and Dark Blue.
4.6.vi Analytics
Choose to share Usage Statistics and/or Send Crash Reports to ManageEngine by using toggle buttons under Analytics. Usage statistics data gives an insight into usability data such as what features of the application you use more, how frequently, etc. This type of data is used as research to learn user behavior, gather pain points, if any, and enhance the application's performance and user experience based on the data. Crash reports are detailed system logs that capture the state of the application when the crash happens. Collecting and analyzing this data will help us learn what caused the application to crash and rectify it in the next version.
4.6.vii Clear Offline Data
Under this, you will find two options:
- Clear Enterprise Offline Data - Tap this option to clear all offline cache. This action will delete all your enterprise passwords that are saved offline.
- Clear Personal Offline Data - Tap this option to clear all personal offline cache. This action will delete all your personal passwords that are saved offline.
5. Uninstalling the Mobile Application
To uninstall the mobile application, follow the below steps:
- Locate the ManageEngine Password Manager Pro application on your device, long press the icon, and click Remove App.
- Tap Delete App in the confirmation pop-up.
Now, the Password Manager Pro mobile application is successfully uninstalled. Once you uninstall the application, all Password Manager Pro-related data is removed from the device.
Technical Support | |
---|---|
If you face any issue with the mobile app, get in touch with our technical support team. |
|