Impact by removing the existed values as a default of the alias, target application, and device.
Article ID: 96885
Updated On:
Products
CA Privileged Access Manager - Cloakware Password Authority (PA)
CA Privileged Access Manager (PAM)
Issue/Introduction
There are the pre-set value of the "Alias", "Target Applications", "Target Account", and "Devices" as follows. Is there any impact when they are removed?
--- Target Application ---
ApiKey
CA Normalized Integration Management for Service Management
CA Normalized Integration Management for User Management
AWS API Proxy Access Credential Accounts
AWS Access Credential Accounts
VMware NSX Proxy Target Application
--- Target Account ---
CATapApiUser-3
nimadmin
MCApiKey-2
--- Device ---
apikey.xceedium.com
nim.pam.ca.com
xceedium.aws.amazon.com
xceedium.nsx.vmware.com
tap.ca.com
--- Alias ---
MCApiKey-2
CATapApiUser-3
ApiKey
CA Normalized Integration Management for Service Management
CA Normalized Integration Management for User Management
AWS API Proxy Access Credential Accounts
AWS Access Credential Accounts
VMware NSX Proxy Target Application
--- Target Account ---
CATapApiUser-3
nimadmin
MCApiKey-2
--- Device ---
apikey.xceedium.com
nim.pam.ca.com
xceedium.aws.amazon.com
xceedium.nsx.vmware.com
tap.ca.com
--- Alias ---
MCApiKey-2
CATapApiUser-3
Environment
CA Privileged Access Manager r3.x
Resolution
Regarding the below values of the alias and the target application:
The MCApiKey-2 of the alias and the target account will be used by the integration with the PAM console. If the environment does NOT integrate with the PAM console at will, no impact affects to the PAM server even if it is deleted.
The CATapApiUser-3 of the alias and the target account will be used by the integration with the CA Threat Analytics for PAM(TAP). If the environment does NOT integrate with the TAP, no impact affects to the PAM server even if it is deleted.
The "VMware NSX Proxy Target Application" is used for the integration with the VMware NSX. If the environment does NOT integrate with it at will, no impact affects to the PAM server even if it is deleted.
The below target applications are not allowed to delete by design. So, the error will show up and reject to delete them.
The following devices are not allowed to delete. When you try to delete it, the error will occur that the deletion is not allowed about them.
--- Alias ---
MCApiKey-2
CATapApiUser-3
--- Target Account ---
MCApiKey-2
CATapApiUser-3
--- Target Application ---
VMware NSX Proxy Target Application
MCApiKey-2
CATapApiUser-3
--- Target Account ---
MCApiKey-2
CATapApiUser-3
--- Target Application ---
VMware NSX Proxy Target Application
The MCApiKey-2 of the alias and the target account will be used by the integration with the PAM console. If the environment does NOT integrate with the PAM console at will, no impact affects to the PAM server even if it is deleted.
The CATapApiUser-3 of the alias and the target account will be used by the integration with the CA Threat Analytics for PAM(TAP). If the environment does NOT integrate with the TAP, no impact affects to the PAM server even if it is deleted.
The "VMware NSX Proxy Target Application" is used for the integration with the VMware NSX. If the environment does NOT integrate with it at will, no impact affects to the PAM server even if it is deleted.
The below target applications are not allowed to delete by design. So, the error will show up and reject to delete them.
--- Target Application ---
CA Normalized Integration Management for Service Management
CA Normalized Integration Management for User Management
AWS API Proxy Access Credential Accounts
AWS Access Credential Accounts
ApiKey(The error occurs when you tries to delete because there are some accounts who use this application. So, it cannot be deleted.)
CA Normalized Integration Management for Service Management
CA Normalized Integration Management for User Management
AWS API Proxy Access Credential Accounts
AWS Access Credential Accounts
ApiKey(The error occurs when you tries to delete because there are some accounts who use this application. So, it cannot be deleted.)
The following devices are not allowed to delete. When you try to delete it, the error will occur that the deletion is not allowed about them.
--- Device ---
nim.pam.ca.com
tap.ca.com
xceedium.aws.amazon.com
xceedium.nsx.vmware.com
apikey.xceedium.com
nimadmin
nim.pam.ca.com
tap.ca.com
xceedium.aws.amazon.com
xceedium.nsx.vmware.com
apikey.xceedium.com
nimadmin
Additional Information
The CATapApiUser-X is explained in the Deploy CA Threat Analytics Server.
The MCApiKey is explained in the Integrate with the Management Console
The MCApiKey is explained in the Integrate with the Management Console
Feedback
Yes
No
Powered by
