You must configure the Advanced Authentication server to make the secondary authentication features available for Privileged Account Manager.
To configure the Advanced Authentication server for Privileged Account Manager, perform the following:
Add required number of repositories in Advanced Authentication server.
You must create a repository for the Local Framework users and add the same usernames as it is specified in Framework User Manager.
The repository name must match the domain name that you specify in Credential Vault of Privileged Account Manager.
In Advanced Authentication server click Method and configure the required methods that are supported in Privileged Account Manager.
Only the supported methods in Privileged Account Manager must be configured and used.
In Advanced Authentication server, click Chains to create the chains that includes those methods that are supported in Privileged Account Manager. For the list of supported authentication methods, refer Supported Authentication Methods.
NOTE:Ensure that you do not delete the default chains from the list of chains.
In Advanced Authentication server, click Event to create a custom event for Privileged Account Manager.
Include the required chains from the Available to the Used list.
In the Privileged Account Manager server, create an endpoint through Privileged Account Manager.
The endpoint gets created from Privileged Account Manager server. For information about creating endpoint through Privileged Account Manager refer Configuring the Advanced Authentication Server Details in Privileged Account Manager
In Advanced Authentication server, edit the event for Privileged Account Manager and add the same endpoint in Endpoints whitelist.