Symantec Privileged Access Management

  • Private Community
 View Only

  • 1.  the order of query AD domain control

    Posted Sep 18, 2019 01:18 AM
    Hi All,

    Could you plese give me some advice.

    My customer want to control the order of quiry the AD domain controller when accessing a menber server using an AD account via PAM.
    A setting is below.
    the credential source of device group

    I think that PAM does not query the AD domain controler,so the order of this setting does not impact to the order of query.
     * A menber server queries the AD domain controler set in the AD Domain.
       For example, if 192.168.32.82 is in a same site with a menber server, the menber server query 192.168.32.82 first according to the setting of AD Domain.

    Is my guess correct?
    If wrong and we can control the order of query using PAM, please let me know how to configure it.

    Thank you in advance,

    Fumiko Nishimura


  • 2.  RE: the order of query AD domain control
    Best Answer

    Broadcom Employee
    Posted Sep 18, 2019 02:26 AM

    Hello Fumiko,

     

    Your assessment is right.

    To authenticate an Access session to a target device PAM is using the stored credentials from the Credential Management database.

     

    Best Regards,

    Andreas

     




    Original Message


  • 3.  RE: the order of query AD domain control

    Posted Sep 18, 2019 02:50 AM
    Hello Andreas,

    Thank you for your prompt response.
    I am glad to hear that. I explain it to my customer.

    Thank you so much.

    Best Regards,
    Fumiko
    Original Message