Symantec Privileged Access Management

  • Private Community
 View Only

  • 1.  Active Directory Connector

    Posted Nov 15, 2019 12:09 AM
    Hi,

    We would like to manage windows Domain accounts, so i have configured Active Directory connector and target application/account in CA PAM to AD servers and I can synchronize the username/password without any issues. I would like to configure target account (Windows Domain account) to be used to login other Windows servers using same username which i have used to configured AD connector. Please let me know how to configure it.

    Thanks,


  • 2.  RE: Active Directory Connector
    Best Answer

    Broadcom Employee
    Posted Nov 15, 2019 02:37 AM

    Hello Vijay

     

    For this you create a Device Group consisting of all your Devices in PAM of this Windows Domain.

    Here, one Device you can define as Credential Source for the whole group - typically the Domain Controller (for which you have defined the domain application using the AD Connector and the synched Target Account you mentioned)

    Note, unlike the device representing the Credential source, the other devices of this group do not need to be of type Password Management, but basically need to have the relevant access method enabled.

    You can then define a Policy for this Device Group accordingly.

     

    Best Regards,

    Andreas

     




    Original Message


  • 3.  RE: Active Directory Connector

    Posted Nov 15, 2019 03:37 AM
    Hello Andreas,

    Thanks for your help. It is working now.

    Thanks, 
    Original Message