Symantec Privileged Access Management

Hi Community,

Please suggest the way we can change the passwords of local ids stored in PAM.
PAM version - 3.2.3.8
Regards,
Ashish Khar

Ashish

You could set the Change Interval (days) setting under Global settings>Passwords to force users to update their passwords and/or I believe you can use an API to change a passwd or set a "reset flag"for a user but rotating a user password to the local system would be a bit strange…. How would they log into CA PAM to see their new password?

Joe
Original Message:
Sent: 03-27-2020 08:49 AM
From: Ashish khar
Subject: Password rotation for local ids

Hi Community,

Please suggest the way we can change the passwords of local ids stored in PAM.
PAM version - 3.2.3.8
Regards,
Ashish Khar

Hi Joe,

I believe these settings will effect the other passwords also. Also if these local ids are generic or root then do you suggest the same method?

Regards,
Ashish Khar
Original Message:
Sent: 03-27-2020 05:09 PM
From: joseph lutz
Subject: Password rotation for local ids

Ashish

You could set the Change Interval (days) setting under Global settings>Passwords to force users to update their passwords and/or I believe you can use an API to change a passwd or set a "reset flag"for a user but rotating a user password to the local system would be a bit strange…. How would they log into CA PAM to see their new password?

Joe
Original Message:
Sent: 03-27-2020 08:49 AM
From: Ashish khar
Subject: Password rotation for local ids

Hi Community,

Please suggest the way we can change the passwords of local ids stored in PAM.
PAM version - 3.2.3.8
Regards,
Ashish Khar

Ashish

I would guess if you only need this for certain local accounts it may be better to use the API to modify. The setting would apply to all local users but would not affect "target accounts". 

Joe
Original Message:
Sent: 03-30-2020 01:08 AM
From: Ashish khar
Subject: Password rotation for local ids

Hi Joe,

I believe these settings will effect the other passwords also. Also if these local ids are generic or root then do you suggest the same method?

Regards,
Ashish Khar
Original Message:
Sent: 03-27-2020 05:09 PM
From: joseph lutz
Subject: Password rotation for local ids

Ashish

You could set the Change Interval (days) setting under Global settings>Passwords to force users to update their passwords and/or I believe you can use an API to change a passwd or set a "reset flag"for a user but rotating a user password to the local system would be a bit strange…. How would they log into CA PAM to see their new password?

Joe
Original Message:
Sent: 03-27-2020 08:49 AM
From: Ashish khar
Subject: Password rotation for local ids

Hi Community,

Please suggest the way we can change the passwords of local ids stored in PAM.
PAM version - 3.2.3.8
Regards,
Ashish Khar