21.0 Application to Application Password Management

Organizations depend on a large number of business applications, web services, and custom software to fulfill business communications and other transactions. These applications require access to other applications and database servers to get business-related information. This communication process is usually automated by including the application credentials in clear text in configuration files and scripts. It is difficult for the administrators to identify, change, and manage these credentials. As a result, the credentials are left unchanged, which might lead to unauthorized access to sensitive systems.

The Application to Application Password Management (AAPM) feature eliminates the need to store credentials in clear text in the application. Instead the application can query Privileged Account Manager for the credentials using REST API. In this way, the application credentials are secured, and you can achieve password rotation automatically by assigning strong and unique password without any manual intervention.

The following illustration explains the working of AAPM feature: