Anonymous_User Absent Member.
Absent Member.
642 views

API for prvcrdvlt?


Hello again.

I've been going through the JSON API, but could not find a way to
manipulate the Privileged Accounts. How can I do that?
What I want to achieve:
- Users log in to the RDP Relay
- Users get a list of Hosts they can log in to, for example:
user001@pum-clnt-windows
- User selects the host and is automatically logged in as user001 on
host pum-clnt-windows
- Once the user is logged in to the pum-clnt-windows he/she can use PUM
Run to run commands as super-user.

That's fairly straightforward, but password policy kicks in and has the
password changed. How do I get the new password into the Privileged
Accounts?
There's already a functioning mechanism to update the password of
framework users, but those are independent of Privileged Accounts,
right?


Kind regards,
blindcoder


--
blindcoder
------------------------------------------------------------------------
blindcoder's Profile: https://forums.netiq.com/member.php?userid=5313
View this thread: https://forums.netiq.com/showthread.php?t=49530

0 Likes
1 Reply
Anonymous_User Absent Member.
Absent Member.

Re: API for prvcrdvlt?


I have now managed to do a MITM attack on the Flash interface and by
analyzing what that does I figured out how to access the privileged
credential vault.
It would be very nice if this could be documented in the official docs,
though...


--
blindcoder
------------------------------------------------------------------------
blindcoder's Profile: https://forums.netiq.com/member.php?userid=5313
View this thread: https://forums.netiq.com/showthread.php?t=49530

0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.