Automatic Account Management

You can configure accounts for automatic management by specifying parameters either in the platform or as an account property. These parameters can be specified by authorized users in the ADMINISTRATION page of the PVWA. For more information about configuring platforms, see Manage platforms v10 interface.

Change passwords

The password change processes determine how frequently passwords are changed and how the changes are initiated. These processes are configured in the Password Change parameters..

Verify passwords

The password verification processes determine how frequently passwords are verified and how the verification is initiated. These processes are configured in the Password Verification parameters..

Reconcile passwords

The CPM reconciles passwords according to the following Password Reconciliation parameters:

The password reconciliation processes determine how frequently passwords are reconciled and how the reconciliation is initiated. These processes are configured in the Password Reconciliation parameters..

Limit Platforms to Specific Safes

Platforms can be restricted to specific Safes, according to the AllowedSafes parameter in the General section of the platform.

This feature is especially relevant if you implement the new reconciliation functionality to prevent automatic reconciliation being performed on every Safe and giving unauthorized users access to passwords.

In large-scale environments, it is very important to enable the CPM to focus its search operations on specific Safes, instead of scanning all Safes it is allowed to see in the Vault.

Associate logon accounts

The CPM associates logon accounts to enable users to log onto remote machines where they can perform identity management tasks. Logon accounts can be configured in either of the following ways:

Level

Description

Platform

All accounts attached to a specific platform will use the logon account specified in the platform.

Account

A logon account can be initiated manually in the Account Details page. For more information, refer to Create linked accounts.

 
TruePrivileged Access Security11.5