立即与支持人员聊天
与支持团队交流

Identity Manager 9.2.1 - Administration Guide for Privileged Account Governance

About this guide Managing a Privileged Account Management system in One Identity Manager Synchronizing a Privileged Account Management system
Setting up the initial synchronization of a One Identity Safeguard Customizing the synchronization configuration for One Identity Safeguard Running synchronization Tasks following synchronization Troubleshooting Ignoring data error in synchronization Pausing handling of target system specific processes (Offline mode)
Managing PAM user accounts and identities Managing assignments of PAM user groups Login credentials for PAM user accounts Mapping PAM objects in One Identity Manager
PAM appliances PAM user accounts PAM user groups PAM assets PAM asset groups PAM asset accounts PAM directory accounts PAM account groups PAM directories PAM partitions PAM entitlements PAM access request policies Reports about PAM objects
PAM access requests Handling of PAM objects in the Web Portal Basic data for managing a Privileged Account Management system Configuration parameters for managing a Privileged Account Management system Default project template for One Identity Safeguard Editing One Identity Safeguard system objects One Identity Safeguard connector settings Known issues about connecting One Identity Safeguard appliances

Displaying the PAM entitlements overview

For an entitlement, you see an overview of the user accounts, user groups, and the access request policies associated with the entitlement.

To view an overview of an entitlement

  1. In the Manager, select the Privileged Account Management > Appliances > <appliance> > Entitlements category.

  2. Select the entitlement in the result list.

  3. Select the PAM entitlement overview task.

Displaying the main data of PAM entitlements

You cannot edit the properties of entitlements in One Identity Manager.

To display the properties of an entitlement

  1. In the Manager, select the Privileged Account Management > Appliances > <appliance> > Entitlements category.

  2. Select the entitlement in the result list.

  3. Select the Change main data task.

PAM access request policies

An access request policy defines:

  • The scope (meaning, which assets, asset groups, asset accounts, directory accounts, or account groups).

  • The access type (password, SSH, SSH key, remote desktop, remote desktop application, Telnet)

  • The rules for requesting passwords, for example, the duration or how many approvals are required.

Access request policies are imported into the One Identity Manager database during synchronization. Changes to the object properties of individual access request policies can be re-imported by single object synchronization.

Related topics

Displaying the PAM access request policies overview

For an access request policy, will see an overview of the scope of the access request policy and the entitlements associated with the access request policy.

To obtain an overview of an access request policy

  1. In the Manager, select the Privileged Account Management > Appliances > <Appliance> > Entitlements > <Entitlement> category.

  2. Select the access request policy in the result list.

  3. Select the PAM access request policy overview task.

相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级