Chuong93 Absent Member.
Absent Member.
676 views

Integrate AD Domain to PAM

Hi all

Please help to integrate AD Domain to PAM , i mean use user domain instead user local PAM to login admin console and myaccess console , i haved researched for myself but find nothing . Please intruct .

Thanks
0 Likes
1 Reply
Micro Focus Expert
Micro Focus Expert

Re: Integrate AD Domain to PAM

A helpful resource is the Administration Guide of PAM:
https://www.netiq.com/documentation/privileged-account-manager-3/npam_admin/data/bookinfo.html

You'll want to first create the LDAP Account for AD in the Enterprise Credential Vault:
https://www.netiq.com/documentation/privileged-account-manager-3/npam_admin/data/brxvkf6.html#brxaxxa

Then to configure this Account Domain to be used as the default Authentication Domain within PAM, see Configuring Account Settings > Authentication Domain within the Framework User Manager Console:
https://www.netiq.com/documentation/privileged-account-manager-3/npam_admin/data/user_account_settings.html#bjflv4n

This should permit login as you have described.

--

After adding AD LDAP as an Account Domain and set it as the default Authentication Domain, then you'll be considering Privileged Account Management for Windows:
https://www.netiq.com/documentation/privileged-account-manager-3/npam_admin/data/pam_windows.html

During the "Workflow to Configure Privileged Session for Windows" steps, when creating the User Group, it's also possible to configure an LDAP Group Lookup to reference an external LDAP Group located in AD:
https://www.netiq.com/documentation/privileged-account-manager-3/npam_admin/data/brxvkf6.html
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.