PAM Policies
Definition
Soffid allows you to define policies, those policies can be made up of several rules. For each rule you could select the action to perform when Soffid detects that rule is accomplished.
To use that policies you need to define how policies will be used by each folder in password vault. For more information, you can visit the Password vault page.
Screen overview
Standard attributes
- Name: name to identify the the policy.
- Description: brief description of the policy.
- Modified by: user who modified that rule.
- Modified on: date and time of the update.
When you save the standar attributes of a PAM policy, and edit the policy again, the rule list will be shown. Here you can custom the policy depending on the existing rules.
- Rule list: show a list of the PAM rules defined. You can check/uncheck the available options. You can choose zero, one or serveral:
- Close
session.session: when the rule is met, Soffid will close the session opened. - Lock account: when the rule is met, Soffid will lock the account.
- Open
issue:issue:openeswhenathe rule is met, Soffid will open an issue in the ticketing system. Notify:Notify:sendswhen the rule is met, Soffid will send amessage to notifynotification about the action.
- Close
Actions
PAM rules query
Query |
Allows you to query PAM policies through different search systems, Quick, Basic and Advanced. |
Add or remove columns |
Allows you to show and hide columns in the table. |
Add new |
Allows you to create a new PAM policy. You can choose that option on the hamburger menu or clicking the add button (+). To add a new PAM policy it will be mandatory to fill in the required fields. |
Delete |
Allows you to remove one or more PAM policy by selecting one or more records and next clicking the button with the subtraction symbol (-). To perform that action, Soffid will ask you for confirmation, you could confirm or cancel the operation. |
Import |
Allows you to upload a CSV file with the PAM policies list to add or update PAM policies to Soffid. First, you need to pick up a CSV file, that CSV has to contain a specific configuration. Then you need to check the content to be loaded, it is allowed to choose if you want or not to load a specific attribute. And finally, you need to select the mappings for each column of the CSV file to import the data correctly and to click the Import button. |
Download CSV file |
Allows you to download a CSV file with the PAM policies information. |
PAM rules detail
Apply chanages |
Allows you to create a new configuration PAM policy or to update an existing. To save the data it will be mandatory to fill in the required fields. |
Undo |
Allows you to quit without applying any changes made. |
Delete |
Allows you to delete a PAM policy. To perform that action, Soffid will ask you for confirmation, you could confirm or cancel the operation. |