This workflow is used to apply a PAM managed account as a PAM provider identity. The objective is to have a password rotation applied to the PAM Provider credentials.
A PAM vault must be set up before following the steps below.
-
Open Devolutions Server.
-
Go to Administration - Privileged access - Providers to create a provider.
-
In the provider window, select Custom in the Credential type drop-down menu.
-
Open a PAM vault by going to Administration - Privileged access - PAM vaults.
-
Add an account by clicking + icon (Add).
-
Manually populate the fields and select the provider.
-
Enter the username and the current password.
-
Apply the password rotation schedule
-
Click OK.
-
The account is out of sync (not verified yet). Right-click the account.
-
Check Synchronization Status.
-
The synchronization status should turn green.
-
Go back to Administration - Privileged Access - Providers.
-
Select your provider and change the Custom credentials for linked credential.
-
The privileged account window opens.
-
Select the account added beforehand.
-
Click OK to save and close the window.