Get Just in Time access

This method requests and receives access to a target Windows machine with administrative rights. The domain user who runs this web service will be added to the local Administrators group of the target machine.

Just in Time access (JIT) is supported on the following end user machine environments:

  • Windows Server 2012, 2012 R2, 2016, 2019, 2022

  • Windows 8, Windows 10

Configure Just in Time access as described in Configure Just in Time access to Windows machines.

Uers who want to request access to the target Windows machine must have the following permissions in the Safe:

  • List

  • Use Password

URL

 

 
https://<IIS_Server_Ip>/PasswordVault/api/Accounts/{accountId}/grantAdministrativeAccess/

  • Make sure there are no spaces in the URL.

  • The following characters are not supported in URL values: + & %

  • If the URL includes a dot (.), add a forward slash (/) at the end of the URL. For example: api/Safes/MySafe/Members/user@cyber.com/

Resource information

HTTP method

 Content type

POST

application/json

Header parameter

Parameter

Description
Authorization

The token that identifies the session, encoded in BASE 64.

Type: string

Mandatory: yes

Default value: none

URL parameter

Parameter

Description

AccountId

The local account that will be used to add the logged on user to the Administrators group on the target machine.

Type: string

Mandatory: yes

Default value: none

Body parameters

None.

Result

The domain user is added to the target Windows machine with administrative rights.

Return Codes

For a complete list of return codes, see Return Codes.