View Password for all Target accounts

search cancel

View Password for all Target accounts

book

Article ID: 189573

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM) CA Privileged Access Manager - Cloakware Password Authority (PA) CA Privileged Access Manager - Server Control (PAMSC)

Issue/Introduction

You are planning to upgrade a PAM cluster to the latest version. This environment contains around 1800 password as of now. Is it possible to extract all passwords before the upgrade, in case any one needs to login to their servers while PAM is unavailable?

Resolution

If you have the remote CLI ( PAM Command Line Interface ) enabled, then you can use the command as such

capam_command capam=capamServer adminUserID=admin cmdName=listTargetAccounts TargetAccount.userName=root

This will list all the Target accounts which has a username as root. If you want the output irrespective of the username name specified then use the command as below -

capam_command capam=capamServer adminUserID=admin cmdName=listTargetAccounts

This will list all the accounts for you. The output will include the account IDs for each account. Once you have the account IDs, you can use the viewAccountPassword command as below:

capam_command apam=capamServer adminUserID=admin cmdName=viewAccountPassword TargetAccount.ID=5 reason="Power outage reason" reasonDetails="Recover Tuesday am"

Additional Information

Install and Set Up the Remote CLI and Java API

Credential Manager CLI Commands

Feedback

thumb_up Yes

thumb_down No