An enterprise can have a system infrastructure with wide range operating systems such as UNIX, Linux or Windows. There can be several privileged accounts in these systems that would have been created and left unattended for a long time. These privileged accounts which are not tracked are a risk to the enterprise. It is necessary to discover these privileged accounts and put it to best use or minimize them. PAM Sniffer enables you to identify and analyze the privileged accounts in an enterprise.
PAM Sniffer is an independent tool that can be run on any machine to discover the privileged accounts in the configured target systems and generates an easy-to-read excel report with the privileged account and system details. These reports can be further filtered using the options available in the tool.
The reports generated by PAM Sniffer contains the system details and credentials in clear text. Hence, it is recommended to store these files securely.
Using PAM Sniffer, you can discover privileged accounts from the following:
Windows: Discover accounts in a standalone Windows machine or in the Windows machine that is attached to a domain.
NOTE:To discover privileged accounts in a Windows system, ensure that the WTS communication is open and firewalls are not blocking the remote discovery.
Domain: Discover accounts in all the machines that are part of the Domain.
NOTE:To discover accounts in a domain, run the tool in the machine that is part of the domain.
Directory: Discover all the Privileged accounts recursively within the directory group. It can also discover all privileged accounts in the applications which are configured in the directory group.
Linux/UNIX: Discover all the privileged accounts in the LINUX or UNIX machine.
IP Range: Discover all the privileged accounts in the machines that fall in the IP range. The IP range can also contain a heterogeneous mixture of Windows and LINUX/UNIX machines.
This following section provides details about the tasks that can be performed in PAM Sniffer.