A Safeguard for Privileged Passwords account is a unique identifier that Safeguard for Privileged Passwords uses to control access to assets. Managed accounts (including directory accounts and service accounts) and groups of accounts can be associated with an asset. Each account has an associated asset; if you delete an asset, Safeguard for Privileged Passwords permanently deletes all the accounts associated with it.
The Auditor and the Asset Administrator have permission to access Accounts.
On Unix assets, the accounts are stored in etc/passwd; however, each platform implements this concept differently.
Service accounts are designated with a 
To access Accounts:
desktop client: Navigate to Administrative Tools | Accounts and select an account to display additional information and options.
web client: Navigate to Asset Management | Accounts. If needed, you can use the partition drop-down to select the parent partition of the account. Select an account, then click
to display additional information and options.
Selecting one of the accounts displays the following information:
- General tab/Properties (account): Displays general information about the selected account.
- Owners tab (account): Displays information about the owners of the account.
- (
- Account Groups tab (account): Displays the account groups that contain the selected account.
- Dependent Assets (account): (Directory assets) Displays the assets that have dependency on the selected directory account. This tab only displays for a directory asset and displays the assets that have dependency on the selected directory account.
- Check and Change Log tab (account): Displays the password and SSH key validation and reset history for the selected account.
- Discovered SSH Keys (account): Displays the SSH keys discovered on the account.
- History tab (account): Displays the details of each operation that has affected the selected account.
For information about configuring Account Discovery in Safeguard for Privileged Passwords, see Account Discovery job workflow.
Use these toolbar buttons to manage accounts.
Delete Selected: Remove the selected account. For more information, see Deleting an account.
Refresh: Update the list of accounts.
- (
Import Accounts: Add accounts to Safeguard for Privileged Passwords. For more information, see Importing objects.
Account Security: Menu options include:
- Check Password, Change Password, and Set Password. For more information, see Checking, changing, or setting an account password.
Password Archive: Display the password history for the selected account. For more information, see Viewing password archive.
Discover SSH Keys: Run the SSH Key Discovery job associated with the account. For more information, see SSH Key Discovery.
Access Request: Allows you to enable or disable access request services for the selected account. Menu options include:
- Enable Password Request
- Disable Password Request
- Enable Session Request
- Disable Session Request
- Enable SSH Key Request
- Disable SSH Key Request
Show Disabled: Display the accounts that are not managed and are disabled and have no associated assets. Account management can be controlled by right-clicking on an asset and selecting
- Click
Disable to prevent Safeguard for Privileged Passwords from managing the selected account.
- Click
Enable to manage the selected account and assign it to the scope of the default profile.
- Click
Hide Disabled: Hide the accounts that are not managed and are disabled and have no associated assets. Asset management can be controlled by right-clicking on an account and selecting
- Click
- Click
- Click
Search: You can search by a character string or by a selected attribute with conditions you enter. To search by a selected attribute click
