An account is not showing as available to request, even though it appears that all the permissions are set correctly for this account.
If an account is not showing as available to be requested in TPAM, the first thing to check is the 'Status' page for that account:
- On the /tpam (2.5) or /par (2.4) interface, navigate to "Systems, Account, & Collections | Accounts | Manage Accounts".
- Locate the account (either via a filter or listing tab).
- Select (highlight) the account.
- Click "Current Status".
This may assist in troubleshooting why the account is not available for password request.
One example could return "This account is the functional account for the managed system:test-system, The password is NOT available for request".
If an account is configured a functional account, the default configuration is to not be available for password request.
If the desired outcome is to be able to request this password even though it is a functional account, this may be enabled. Note the name of the system from the Status page above. Then:
This functional account should now be visible when an appropriately permissioned user searches for accounts to request.
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center