Symantec Privileged Access Management

Expand all | Collapse all

There are naming convention for CA PAM elements?

Jump to Best Answer
  • 1.  There are naming convention for CA PAM elements?

    Posted 06-12-2016 11:44 AM

    Hello Everyone!

     

    Does anyone has good examples for naming conventions for CA PAM elements, for example for:

    • Target Applications
    • Devices: Name (we already have hostname and IP address)
    • View Policies
    • Target Groups
    • etc

     

    I'm trying to improve this aspect in order to receive better e-mail notifications for dual authorization cases.

     

    Best,

    Ellery



  • 2.  Re: There are naming convention for CA PAM elements?

    Posted 06-13-2016 06:35 AM

    This question is more relevant to the specific environment,You can use something like this.

     

    Target Application

    Target Application : First three letter of host name ex 'ABC'

    First three letter of Application type : 'UNIX or WIN'

    Specify Local account or domain account : 'LA or DA'

    This is what you get at the end "ABC_UNI_LA" or ABC_WIN_DA, This will allow you to have very good search capability when you search Target Account based on Target Application.

     

    View Policy: You can have multiple Password View policy isolated by team/deparment/location

     

    For instance you can user UnixTeam_PVP or UK_Unix_PVP.

     

    Target Group : It can be based on Device type, You can have multiple target group for device type.

     

    For all Windows Domain server : Windows_Target_Group

    Unix Server : Unix_Target_Group

     

    Hope this helps you in some way, But as i mention it is all up to organization to organization.



  • 3.  Re: There are naming convention for CA PAM elements?
    Best Answer

    Posted 06-13-2016 10:39 AM

    There does not exist any hard and fast rule for this. As indicated above, each organization can come up with their own conventions.

    Regards,
    Reatesh.