Hello,
could you help me understand how an active directory integrates with PAM? So that I can login to the PAM through a user of that AD?
The admin guide is not very explanatory for me
Thanks
Cybersecurity
DevOps Cloud (ADM)
IT Operations Cloud
Active Directory can be used with PAM in a multiple ways. The important thing is that you can use PAM to access Windows Servers that are running AD. PAM can be set up to allow specific users access to servers in a way that allows specific access and only allows specific tasks to take place. You could use an AD user to login to PAM or you could use PAM users to login to other servers/applications.
If you are looking to use the user domain within AD instead of a local PAM user there are a few things that will need to be done:
First you will add the LDAP server to PAM.
Then you will configure PAM to use the added LDAP Resource/Server to authenticate users.
You'll want to first create the LDAP Account for AD in the Enterprise Credential Vault:
https://www.netiq.com/documentation/privileged-account-manager-3/npam_admin/data/brxvkf6.html#brxaxxa
Then to configure this Account Domain to be used as the default Authentication Domain within PAM, see Configuring Account Settings > Authentication Domain within the Framework User Manager Console:
https://www.netiq.com/documentation/privileged-account-manager-3/npam_admin/data/user_account_settings.html#bjflv4n
Is there a specific integration you are trying to accomplish like LDAP etc…?