This is the generic workflow that must be followed to configure privileged access for Windows:
Register the agent
For steps to register the agent, refer Installing and Registering a Framework Agent
Add a Windows resource and its credentials
For information about adding a Windows resource, see the Contextual Help of Credential Vault.
Add a User Group (Optional)
Add a user group with a list of Windows system users, who must get privileged access.
For steps to add a user group, refer Adding a User Group
Add a Command
You can use the commands that are preloaded by Privileged Account Manager thats has default configurations, such as Windows Credential Provider Session, Windows Direct Session and RDP Session.
(or)
Add and Modify a Command
For detailed information on adding a command, refer Adding a Command
For detailed information on modifying a command, refer Modifying a Command
Add and Modify a Rule
For steps to add a rule, refer Adding a Rule
NOTE:When adding a rule, ensure that you choose the correct value for the Run User. Based on the value of the Run User, the user gets appropriated privileged access.
For steps to modify a rule, see Modifying a Rule
NOTE:When modifying a rule for Run as privileged user, ensure to modify the Run Host as Submit Host
Add Command and User Groups to the Rule
After creating the rule, drag and drop the appropriate command and user group to the rule.
After making appropriate configurations in the Privileged Account Manager, you can access the target host using any RDP client or user console as appropriate.