You must specify the details of the Advanced Authentication server in Privileged Account Manager to use the supported advanced authentication methods.
To configure the Advanced Authentication server details, perform the following:
On the Home page of the Administration Console, click Framework User Manager.
Select Options, and then click Advanced Authentication Configuration.
In the right pane, specify the Advanced Authentication configuration details:
Advanced Authentication Host: Specify the IP address or the DNS name of the Advanced Authentication Server.
Name: Specify a unique endpoint name.
This endpoint gets created in Advanced Authentication server with the same name that is specified in this field.
If you require to delete the endpoint, you must delete it from the Advanced Authentication server.
Description: Specify the description for the endpoint.
Default Domain: Specify any one of the Advanced Authentication repository names that must be used as the default domain to authenticate the user in that domain.
When a user does not provide the domain name during login and if that user is not a local user in Privileged Account Manager, then this default domain is used for authenticating the user in Advanced Authentication server.
NOTE:You must specify only the name that is existing as repository on the Advanced Authentication server.
Event: Specify the same event name that is mentioned in the Advanced Authentication server for Privileged Account Manager.
Primary Login Method: Specify one of the following primary login methods:
RADIUS: Use RADIUS option only if Advanced Authentication server forwards the authentication request to a third-party RADIUS server.
NOTE:If you select RADIUS, do not enable the Secondary Authentication Required option under Account Settings.
LDAP Password: This is the default option selected. Use this option for all other certified Advanced Authentication methods.