Privileged Account Manager Administration Guide
- Privileged Account Manager Administration Guide
- Overview
- How Privileged Account Manager Solves the Business Challenges
- Main Features of Privileged Account Manager
- Welcome to the Framework
- Introduction to the Framework
- Primary Components
- The Workspace Layout
- Viewing the Version and the License Details
- Getting Started
- Managing Privileges in Various Endpoints
- Managing Framework Hosts
- Managing Domains
- Managing and Monitoring Hosts
- Managing System Alerts
- Enabling Crash Dump Capture
- Managing Host Packages
- Managing Audit Zones
- Understanding Tunneling
- Securing Access to the Framework Manager Console
- SSL Renegotiation DOS Attack Protection
- Using Privileged Account Manager Service
- Integrating with NetIQ Access Manager
- Troubleshooting
- Policy Templates
- Understanding Sample Policy template
- Adding a Policy Template
- Managing Framework Users and Groups
- Managing Users
- Managing Groups
- Deploying the Access Control Module
- Changing a Framework User’s Password
- Assigning Framework Roles for LDAP Users
- Multi-Factor Authentication
- Managing Audit Reports
- Audit Settings
- Encryption Settings
- Syslog Settings
- Command Control Reports
- Video Capture
- Change Management
- Password Management
- Shared Key Management
- Command Control
- How Does Command Control Work?
- Installing and Deploying Command Control
- Command Control User Interface
- Configuring Command Control
- Command Control Options
- Disconnecting a Privileged Session
- Compliance Auditor
- Controlling Access to the Compliance Auditor
- Compliance Audit Rules
- Compliance Audit Reports
- Compliance Auditor Records
- Access Control Levels
- Deploying the Compliance Auditor
- High Availability
- Configuring High Availability
- Load Balancing
- Command Line Options
- The unifi Options
- Command Control Options
- Package Distribution Options
- Package Manager Options
- Registry Agent Options
- Registry Manager Options
- Compliance Auditor Options
- sreplay Command Line Options
- Managing Shared Keys
- Types of Shared Key
- Enabling the Key Checkout for Shared Key
- Managing Credentials for Shared Key
- Privileged Access to Windows
- Workflow to Configure Privileged Access for Windows
- Session Management
- Application Management
- LDAP Group Lookup
- Privileged Access to UNIX and Linux
- Workflow to Configure UNIX and Linux Privileged Sessions
- Session Management
- Command Management
- Enhanced Access Control
- Privileged Access to Databases
- Database Access Through Credential Checkout
- Database Access Through PAM Proxy
- Viewing Database Activity
- Privileged Access to Applications and Cloud Services
- Credential Checkout
- Privileged Single Sign-On
- Application SSO
- Application to Application Password Management
- Configuring AAPM
- Viewing Activities Performed Using API Tokens
- Password Management
- Understanding Password Management
- Password Management for Windows, Active Directory, Linux, and Network Devices
- Password Management for Database and Applications
- Integration with Ticketing Systems
- Configuration for Normal Access
- Configuration for Elevated Access
- Managing Emergency Access Requests
- Configuring Emergency Access Settings
- Deployment Dashboard
- Deployment View
- Live Risk View
- Customize Deployment Dashboard
- Integrating Privileged Account Manager with Advanced Authentication
- Benefits of Integration with Advanced Authentication
- Advanced Authentication Terminologies and Their Usage
- Checklist to Follow Before Enabling Secondary Authentication
- Configuring Advanced Authentication Server
- Supported Authentication Methods
- Configuring the Advanced Authentication Server Details in Privileged Account Manager
- Enabling Advanced Authentication for Privileged Access
- Troubleshooting
- Integrating Privileged Account Manager with Identity Manager
- Benefits of Integration with Identity Manager
- Virtualization Implementation
- Discovering Privileged Accounts
- Types of Accounts Discovered
- Launching Privileged Account Sniffer
- Configuring Privileged Account Sniffer
- Discovering Accounts
- Discovery Reports
- Importing and Exporting Configuration
- Upgrading Privileged Account Manager
- Privileged Account Manager Upgrade Checklist
- Configuring the Package Manager
- Publishing Packages on the Package Manager
- Upgrading Privileged Account Manager
- Troubleshooting
- Troubleshooting
- The Agent is in an Offline State
- The Audit Events are Not Displayed in the Reporting Console Even When the Events are Generated
- On an AIX Platform, When the Audit Data Gets Generated in Large Amount, The Privileged Account Manager Service Restarts and an Error is Displayed in the unifid.log file.
- The RDP Relay Session Does Not Start From the User Console
- The RDP Relay to a Windows Server 2012 Server Fails
- The Privileged Session is Not Established Through the Backup Manager
- The Changes to the Syslog Settings Do Not Get Applied
- The Manual Disconnect for a Windows session Does Not Work
- The Run as privileged user Option is not displayed on a Windows 2012 Server
- Agent Registration Fails on a Windows Platform
- Direct RDP Sessions are Enabled for all Users By Default
- Issues When Updating or Downloading the License Summary
- SSL Connection to Microsoft SQL Sever Fails with a Timeout Error
- RDP Relay to Windows 10 or Windows 2016 Fails with a Network Authentication Error
- SSO to Application Does Not Happen When There are Multiple Concurrent Sessions to the Application SSO Host
- Legal Notice