Unable to create Privileged Access Management Account in Identity Manager
search cancel

Unable to create Privileged Access Management Account in Identity Manager

book

Article ID: 235420

calendar_today

Updated On:

Products

CA Identity Suite CA Identity Manager

Issue/Introduction

Is it possible to create Privileged Access Management (PAM) Target accounts of a user via Identity Manager (IM)?

Environment

Release : 14.x

Component : Component : Identity Suite Virtual Appliance

Cause

Working as designed.

Resolution

A PAM target account is the account that is actually on the device, in PAM device=endpoint.
PAM cannot create target accounts, it can only make logic maps to Target accounts, hence why there is no create API

IM can assign and revoke PAM Target accounts, but it cannot create them:

CA PAM Tasks

Powered by Wolken Software