If we have already checked-out privileged account, we cannot remove the endpoint with the following error. == Fatal: Failed to execute DeleteEndpointEvent. ERROR MESSAGE: SmApiWrappedException:Cannot delete the selected endpoint. You must check-in all shared account passwords before you can delete the endpoint. == So we have to check-in against the privileged account. However, we cannot check-in against the privileged accounts because of errors like this. == Command result doesn't contain text. Command: 'passwd XXXXX'. Received: 'passwd XXXXX == Can we remove the endpoint without check-in?
Environment
WIndows CA PIM 12.9SP2 ENTM
Resolution
Yes, it is possible.
[STEPS] on SAM WebUI: 1: Please select the menu. "Privileged Accounts"->"Accounts"->"Modify Privileged Account" 2: Please check "Disconnected Account" against checked-out privileged Accounts. 3: Please check-in against checked-out privileged Accounts. (You should be able to check-in without error.) 4: Please remove the endpoint.