Symantec Privileged Access Management

Hi Team,
We have a requirement of onboarding accounts to CA PAM.But passwords will not be provided to manually add or CA PAM should not generate a random password based on password composition policy.Is there any way CA PAM can scan the server and just onboard the accounts without changing the existing passwords.

Hello, there are no calls to get current passwords of users from a remote system, that would be extremely disturbing. What you are asking for is not and should not be available.
Original Message:
Sent: 12-06-2019 03:12 AM
From: Inbaselvan R
Subject: Onboarding accounts

Hi Team,
We have a requirement of onboarding accounts to CA PAM.But passwords will not be provided to manually add or CA PAM should not generate a random password based on password composition policy.Is there any way CA PAM can scan the server and just onboard the accounts without changing the existing passwords.

I agree with Ralf.

In fact, with most systems it would be impossible anyway.  Secure systems (Windows, Linux, Unix, and virtually everything else) do not store the actual account password, they store an irreversible one-way hash of the password.  So even if we wanted to offer such a capability, it would be virtually impossible due to the way any reasonably secure authentication system works.
Original Message:
Sent: 12-06-2019 05:51 PM
From: Ralf Prigl
Subject: Onboarding accounts

Hello, there are no calls to get current passwords of users from a remote system, that would be extremely disturbing. What you are asking for is not and should not be available.
Original Message:
Sent: 12-06-2019 03:12 AM
From: Inbaselvan R
Subject: Onboarding accounts

Hi Team,
We have a requirement of onboarding accounts to CA PAM.But passwords will not be provided to manually add or CA PAM should not generate a random password based on password composition policy.Is there any way CA PAM can scan the server and just onboard the accounts without changing the existing passwords.