Application roles are created when owner are determined automatically. You can specify further application roles manually.
To specify an application role for a PAM object owner
-
In the Manager, select one of the following filters in the Privileged Account Management > Appliances > <appliance> > Privileged objects category.
-
To specify an application role for an asset, select Assets.
-
To specify an application role for an asset group. select Asset group.
-
To specify an application role for an asset account, select Asset account.
-
To specify an application role for a directory account, select Directory account.
-
To specify an application role for an account group, select Account group.
-
-
In the result list, select the PAM object.
-
Select the Change main data task.
-
On the General tab, select the application role in the Owner (Application Role) selection list.
- OR -
Next to the Owner (Application Role) list, click on to create a new application role.
-
Enter the application role name and assign the parent application role Privileged Account Governance | Asset and account owners.
-
Click OK to add the new application role.
-
-
Assign identities, who are owners, to the application role.