Monitor the access to a network shared folder using PAM
Article ID: 186838
Updated On:
Products
CA Privileged Access Manager (PAM)
Issue/Introduction
Can I monitor the access to a network shared drive using PAM, recording the activity made on it?
Environment
Product: Layer 7 Privileged Access Manager
Version: 3.x
Version: 3.x
Resolution
PAM is designed to manage sessions to devices, not to manage accesses to resources, like a shared network folder.
So, this should have to be done through an RDP session from a jump server, as accessing a resource, cannot be monitored by PAM in any way.
The items PAM is working with are the sessions, which can be recorded as well, but the access to a resource is not a known task for PAM.
Therefore, in order to achieve it, an RDP session to an intermediate server has to be open to access the network resource having the session recording enabled.
Anyway, the users will have access to the intermediate server desktop, just to access a network drive.
So, this should have to be done through an RDP session from a jump server, as accessing a resource, cannot be monitored by PAM in any way.
The items PAM is working with are the sessions, which can be recorded as well, but the access to a resource is not a known task for PAM.
Therefore, in order to achieve it, an RDP session to an intermediate server has to be open to access the network resource having the session recording enabled.
Anyway, the users will have access to the intermediate server desktop, just to access a network drive.
Feedback
Yes
No
Powered by
