Why the TAP Administrators group is created in CA PAM and what does it mean

search cancel

Why the TAP Administrators group is created in CA PAM and what does it mean

book

Article ID: 376847

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM)

Issue/Introduction

Some PAM systems show as one of the user groups one called TAP Administrators

When viewing the contents of such a group, all users with Global Administrator role are assigned to that group

This article explains what that group is

Environment

CA PAM all supported versions

Resolution

The TAP Administrator group stands for Threat Analytics for PAM and it is created when a certain appliance is licensed for Threat Analytics.

It does not need to have a Threat Analytics server configured to be present in the system. It suffices to have the option licensed

This is an internal group. It cannot be recreated from the GUI and it should not be deleted. If it is not present and Threat Analytics is licensed, this may result in unexpected errors.

All Global Administrator role users are automatically added to this group.

This group cannot be updated from the GUI as it is a special group

Additional Information

Please see as well

SAML authentication PAM-CMN-0900: Bad User ID or Password error for Global Administrators

PAM-CMN-3619: Threat Analytics special user group cannot be updated

for similar content

Feedback

thumb_up Yes

thumb_down No