Is there a manual client registration process available?
This would help mitigate any attempt to breach security (by attaching a rogue Unix machine to a network and gaining privileged access via Privilege Manager).
A manual registration of the clients can be achieved by using Certificates. Please use the Client Verification feature of Privilege Manager, which is fully documented in the Administration Manual. Your DNS should be configured correctly in order for Client Verification to work.
The Privilege Manager configuration files (pm.settings and policy files) should be secured, and readable/writeable by the root user only.
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center