Symantec Privileged Access Management

  • Private Community
 View Only

  • 1.  PIM Role Management without CA Management Console?

    Posted Apr 08, 2016 01:25 PM

    Is there a way to manage PIM roles without manaully editing in ENTM or via the CA Management Console?

    Right now it looks like we have to go to the ENTM and edit each role and member policy individually manually,

    OR

    http://<host>:18080/idmmanage

    Home › Environments › ac-env › Roles

    Click on Export...

    Modify exported XML

    Click on Import...

    and import update XML.

     

    This seems very cumbersome. The XML would be faster except we have to enable (and disable) each time we want an update.

    And the import of a full overwrite (not incremental ) seems like a shot gun approach to when we really need a surgical approach.

     

    We will be on-boarding hundreds of applications over the next couple of years and we are needing a way to more easily add a single member rule into a role. Even if it is via a REST API or some other method? And if we can incorporate it into some form of automation it would simplify our onboarding process as well.



  • 2.  Re: PIM Role Management without CA Management Console?

    Broadcom Employee
    Posted Apr 20, 2016 12:10 PM

    Hello QuiteMan,

    The description you have provided looks more like a product enhancement.

    I would check with the moderator if this can be moved as an idea so that this gets the proper attention.

     

    Thanks,

    Reatesh.



  • 3.  Re: PIM Role Management without CA Management Console?
    Best Answer

    Posted Apr 21, 2016 04:36 PM

    We can't move discussions to ideas. Please post this as an idea to the CA Security Community under the CA Privileged Access Management category.

     

    How to post an idea: Create and Submit an Idea within CA Communities