Displaying main data of PAM directories
You cannot edit properties of directories in One Identity Manager.
To display the properties of a directory
-
In the Manager, select the Privileged Account Management > Appliances > <appliance> > Directories category.
-
Select the directory in the result list.
-
Select the Change main data task.
PAM partitions
Partitions allow the responsibility for managing assets and directories to be distributed amongst different user accounts and user groups. Partitions are imported into the One Identity Manager database during synchronization. Partition properties cannot be edited. Changes to the object properties of individual partitions can be re-imported by single object synchronization.
To display the properties of a partition
-
In the Manager, select the Privileged Account Management > Appliances > <appliance> > Privileged Objects > Partitions category.
-
Select the partition in the result list.
-
Select the Change main data task.
This shows you an overview of the assets and directories that are connected with the partition as well as an overview of the partition owners.
To obtain an overview of a partition
-
In the Manager, select the Privileged Account Management > Appliances > <appliance> > Privileged Objects > Partitions category.
-
Select the partition in the result list.
-
Select the PAM partition overview task.
Related topics
Assigning owners to partitions
You can specify an owner for PAM partitions. In One Identity Safeguard, owners of a PAM partition can manage assets and directories for user accounts in the password policies or profiles, for example.
To assign owners to a partition
-
In the Manager, select the Privileged Account Management > Appliances > <appliance> > Privileged Objects > Partitions category.
-
Select the partition in the result list.
-
Select the Assign owner task.
-
Select the table containing the owner from the Table menu at the top of the form. You have the following option:
-
PAM user groups
-
PAM user accounts
-
In the Add assignments pane, assign owners.
TIP: In the Remove assignments pane, you can remove assigned owners.
To remove an assignment
- Save the changes.
PAM entitlements
An entitlement is a set of access request policies that ensures only authorized users can access the system. An entitlement usually groups together a set of permissions that are required to fulfill a specific task. An entitlement defines which users are authorized to request passwords for accounts or sessions for assets as part of the defined access request policies.
Entitlements are imported into the One Identity Manager database during synchronization. Changes to the object properties of individual entitlements can be re-imported by single object synchronization.
Related topics