Symantec Privileged Access Management

Hello Everyone!

Does anyone has good examples for naming conventions for CA PAM elements, for example for:

• Target Applications
• Devices: Name (we already have hostname and IP address)
• View Policies
• Target Groups
• etc

I'm trying to improve this aspect in order to receive better e-mail notifications for dual authorization cases.

Best,

Ellery

This question is more relevant to the specific environment,You can use something like this.

Target Application

Target Application : First three letter of host name ex 'ABC'

First three letter of Application type : 'UNIX or WIN'

Specify Local account or domain account : 'LA or DA'

This is what you get at the end "ABC_UNI_LA" or ABC_WIN_DA, This will allow you to have very good search capability when you search Target Account based on Target Application.

View Policy: You can have multiple Password View policy isolated by team/deparment/location

For instance you can user UnixTeam_PVP or UK_Unix_PVP.

Target Group : It can be based on Device type, You can have multiple target group for device type.

For all Windows Domain server : Windows_Target_Group

Unix Server : Unix_Target_Group

Hope this helps you in some way, But as i mention it is all up to organization to organization.

There does not exist any hard and fast rule for this. As indicated above, each organization can come up with their own conventions.

Regards,
Reatesh.