PAM Configuration

Details regarding the PAM Configuration record

PAM Configuration Fields

When creating a PAM Configuration record, you have the option of choosing one of the following environments:

  • Local Network

  • AWS

  • Azure

The following tables provides more details on each configurable fields in the PAM Configuration record regardless of the environment you choose:

FieldDescriptionNotes

Title

Name of PAM configuration record

Ex: My Configuration

Gateway

The configured gateway

See docs for more info

Application Folder

The shared folder that contains the PAM records

Administrative Credential Record

The administrative credential record with sufficient permissions to rotate credentials

This is your PAM Machine, PAM Database or PAM Directory record

Default Rotation Schedule

Specify frequency of Rotation

Ex: Daily

Port Mapping

Type of Connection method

Ex: 3307=mysql See docs for more info

The following tables provides more details on each configurable fields in the PAM Network Configuration record based on the environment you chose:

Local Network Environment

FieldDescriptionNotes

Network ID

Unique ID for the network

This is for the user's reference

Ex: My Network

Network CIDR

Subnet of the IP address

Ex: 192.168.0.15/24 Refer to this for more info

AWS Environment

FieldDescriptionNotes

AWS ID

A unique id for the instance of AWS

Required, This is for the user's reference Ex: AWS-1

Access Key ID

From an IAM user account, the Access key ID from the desired Access key.

Optional

Secret Access Key

The secret key for the access key.

Optional, Masked

Region Names

AWS region names

Ex: us-east-2

Azure Environment

FieldDescriptionNotes

Azure ID

A unique id for your instance of Azure

Required, This is for the user's reference Ex: Azure-1

Client ID

The application/client id (UUID) of the Azure application

Required

Client Secret

The client credentials secret for the Azure application

Required

Subscription ID

The UUID of the subscription (i.e. Pay-As-You-GO).

Required

Tenant ID

The UUID of the Azure Active Directory

Required

Resource Groups

A list of resource groups to be checked. If left blank, all resource groups will be checked

Last updated