Symantec Privileged Access Management

  • Private Community
 View Only

  • 1.  Send alert when a new device is provisioned in Active Directory COmputer Group

    Posted Mar 12, 2019 11:12 AM

    When CA PAM is integrated with LDAP like Active Directory, is possible send alert when a new device is provisioned in a Active Directory Group and CA PAM refresh it?



  • 2.  Re: Send alert when a new device is provisioned in Active Directory COmputer Group

    Broadcom Employee
    Posted Mar 13, 2019 05:33 AM

    As I understand it there is no way to do this within the present PAM functionality. It is I think a good idea, so I would submit it as such



  • 3.  Re: Send alert when a new device is provisioned in Active Directory COmputer Group
    Best Answer

    Broadcom Employee
    Posted Mar 13, 2019 12:45 PM

    Hello, PAM logs PAM-CMN-2434 messages in the session log for devices that are removed from a device group during refresh, and PAM-CMN-2437 messages for devices that are added. If you have syslog (or Splunk) integration, these messages will be sent to the syslog server, and you can configure alerts there.



  • 4.  Re: Send alert when a new device is provisioned in Active Directory COmputer Group

    Posted Mar 13, 2019 06:48 PM

    Thank You Ralf!!!!!

     

    Regards!

     

    Adolfo.