Identity Manager PAM connector doesn't bring target accounts
search cancel

Identity Manager PAM connector doesn't bring target accounts

book

Article ID: 370614

calendar_today

Updated On:

Products

CA Identity Suite

Issue/Introduction

We have configured PAM in identity manager through OOTB connector. When we explore endpoint object it doesn't bring target accounts from the endpoint.

Although we are able to see devices, device groups, users, user groups, Roles.

We observed following error from JCS logs:
2024-05-22 16:12:51,095 86369211 [ApacheDS Worker-thread-53] CA_Privileged_Access_Manager_PAM3 (PAMDeviceHelper.java:247) ERROR  - No target accounts found for device apikey.xxx.com(42032). Application ID = 2114, Application Name = ApiKey

Environment

Release : 14.5
Component : CA Identity Suite Virtual Appliance

Resolution

We resolved the issue by giving to PAM user that connects to IM the following:


1. Role: Password Manager (Allows users to configure Password Manager)

2. Credential Manager Groups: "System Admin Group"

 

Powered by Wolken Software