Symantec Privileged Access Management

Expand all | Collapse all

Onboarding accounts

Jump to Best Answer
  • 1.  Onboarding accounts

    Posted 12-06-2019 03:13 AM
    Hi Team,
    We have a requirement of onboarding accounts to CA PAM.But passwords will not be provided to manually add or CA PAM should not generate a random password based on password composition policy.Is there any way CA PAM can scan the server and just onboard the accounts without changing the existing passwords.

  • 2.  RE: Onboarding accounts
    Best Answer

    Posted 12-06-2019 05:51 PM
    Hello, there are no calls to get current passwords of users from a remote system, that would be extremely disturbing. What you are asking for is not and should not be available.

  • 3.  RE: Onboarding accounts

    Posted 12-07-2019 01:40 AM
    I agree with Ralf.

    In fact, with most systems it would be impossible anyway.  Secure systems (Windows, Linux, Unix, and virtually everything else) do not store the actual account password, they store an irreversible one-way hash of the password.  So even if we wanted to offer such a capability, it would be virtually impossible due to the way any reasonably secure authentication system works.