Set up SCT automatic remediation

This topic describes how to set up automatic remediation (automatic password rotation) for SCT detections.

To use SCT automatic password rotation for privileged accounts, you must add the ISI Credentials Rotation Service User role as a member to each Safe that contains the relevant accounts.

For more information about SCT detection, see Suspected Credential Theft (SCT) detection.

Add the ISI Credentials Rotation Service User role to a Safe

  1. In Privilege Cloud Portal, go to Policies > Safes.

  2. On the Safes page, select that Safe that you want to add the ISI Credentials Rotation Service User role to, click the Members tab, and then click Add members.

  3. In the Search field, start typing the name of the role, ISI Credentials Rotation Service User. When this role appears in the Results area, select the role and click Next.

  4. In Set Safe permissions locate the Account management group of permissions, and select the Initiate CPM account management operations permission.

  5. Click Add.

  6. Repeat steps 2-5 for each Safe that contains the relevant accounts.