PAM : Transparent login example : Automate password inject to "su" prompt
book
Article ID: 191109
calendar_today
Updated On:
Products
CA Privileged Access Manager (PAM)
Issue/Introduction
This article describes an example of Transparent login. Automate password inject to "su" prompt.
Environment
PAM any version. Target device is Linux.
Resolution
1. [Configuration] - [Security] - [Access] and enable [Command String]. (This is disabled by default)
2. Edit target device - [Transparent Login] and select [Command String] 3. Input Authentication prompt and command. In this example, "Password:" is actual prompt when you execute "su" on the target device.
4. Edit policy - [Transparent Login] and assign root account.
5. In the PAM access, "su" does not ask root password.