PIM -- Don't send Passwords to a specific PMDB
search cancel

PIM -- Don't send Passwords to a specific PMDB

book

Article ID: 97225

calendar_today

Updated On:

Products

CA Virtual Privilege Manager CA Privileged Identity Management Endpoint (PIM) CA Privileged Access Manager (PAM)

Issue/Introduction



We are implementing SHA512 hashing / better password complexity policies on our Linux environment, with a longer character password support .

We want to block password propagations to a particular PMDB but still pass the rest of the user properties.


Environment

Release: 12.x and 14.x
Component: SEOSU

Resolution

Use the following format in the filter.flt file will block password updates from being propagated to this PMDB. 

#------------------------------------------------------------------------------ 
# access env class objects properties pass/nopass 
#------------------------------------------------------------------------------ 
* * USER * OLD_PASSWD NOPASS 
* * USER * CLR_PASSWD NOPASS 
* * * * * PASS 
#------------------------------------------------------------------------------