Password Management

The Password Management (PAM) feature (along with the Account Discovery feature) is an integral part of Syteca's Privileged Access Management (PAM) functionality. It allows the credentials of shared privileged accounts to be securely stored and managed in account secrets (where these credentials are stored in encrypted form in the database), and role-based access control to be implemented. The system supports the JIT (Just-in-Time) PAM approach.

NOTE: This feature is only available with an activated product license serial key that includes the Password Management application and features, and PAM seat licenses.

NOTE: PAM seat licenses first need to be assigned to users (on the Users page) for them to be able to use the PAM functionality (i.e. for users to get access to both the Password Management and the Account Discovery pages in the Management Tool, and to the Syteca Connection Manager on a Windows computer used as a jump server to connect to the privileged accounts by using the corresponding account secrets.

NOTE: A jump server computer is only required if two or more concurrent sessions are required on the Client computer with the Syteca Connection Manager, and it is recommended to use a Windows Server operating system for the correct functioning of the Syteca Connection Manager on a jump server computer.

NOTE: The Syteca Connection Manager requires .NET Framework 4.8 to be installed on the Client computer (i.e. the computer with the Syteca Connection Manager).

A stand-alone component of Syteca, called Syteca Application Credentials Broker (ACB) is also available, which is a REST API integration tool designed to allow customers to securely (with access token rotation) get the PAM secrets data for applications, without needing to log in to the Management Tool, in order to use for their own business purposes.

Table of Contents