Symantec Privileged Access Management

Expand all | Collapse all

CA PIM and SAM passwords

Jump to Best Answer
  • 1.  CA PIM and SAM passwords

    Posted 11-09-2015 04:43 AM

    Hi

    I have question ,,

    we have implemented CA PIM 12.9 , and we assign privileged account to be used by users to access via RDP and SSH

    but for some privileged account, we don't want the user to know the password of those account , what is the policy needed to be modified so that those regular users cannot show th password of the account ..

    in another word : We want to remove the "show password" from the Account action part of the dropdown menu in he Action column

    thanks for you help in advance

     

    wael



  • 2.  Re: CA PIM and SAM passwords
    Best Answer

    Posted 11-10-2015 07:10 AM

    You need to check 'Login application check out only' under the privileged account , where you want to restrict showing clear text password to end user. See the below wiki link for more details:

     

    https://wiki.ca.com/display/CMINDER12901/How+to+Set+Up+Shared+Accounts

     

     

    Regards,

    Leela



  • 3.  Re: CA PIM and SAM passwords

    Posted 11-11-2015 04:48 AM

    Thanks lagle01



  • 4.  Re: CA PIM and SAM passwords

    Posted 11-11-2015 06:17 AM

    one more question plz

    this solution on the shared account itself ,,, but can I remove this feature from the user himself , I mean the privileged access role of the Domain user , so if certain users login into the CA PIM console could show the Shared account passwords , but other users can't ?

     

    thanks



  • 5.  Re: CA PIM and SAM passwords

    Posted 11-11-2015 07:19 AM

    This feature is available at a per account level and is applied on the account irrespective of the user trying to log in. It would be nice to have some flexibility while applying this feature depending on the user logged in/any other dynamic characteristic(worth creating an enhancement request)



  • 6.  Re: CA PIM and SAM passwords

    Posted 11-12-2015 04:25 AM

    ok , or should i wait until more details about the moving to Xceeduim (or CA PAM now)  which will replace the SAM part,, until now i don't know the details of that Xsuite.

     

    thanks for your help anyway



  • 7.  Re: CA PIM and SAM passwords

    Posted 01-24-2016 03:03 PM

    Hello,

       you can try and customize the my_account.jsp page, so the ShowPassword menu is only displayed to the users that you need.