Privileged accounts in IDN

Hi All,

in IDN search we search query to search privileged accounts @accounts(privileged:true) but in UI we don’t have an option to mark account as privileged

I found one option to add privileged attribute which takes boolean value and i have marked it true to make it privileged account is only way to make privileged account in IDN or any other way

thanks in advance,
avi.

You can also try tagging feature of ISC

Hello @amulpuru

At this point in time, the only way to make an account privileged is to have an account attribute called privilege and be a boolean as you have found out.

Since ISC is not an ideal PAM-solution, I would consider sticking to privileged entitlements and search these through @access(privileged:true) if that is at all possible.

2 Likes

hi @Anshu_Kunal ,
does this tags make an account previlleged ?

It would not make them privileged in a way that you can search them through @accounts(privileged:true), this requires the privileged account attribute as prevoiusly mentioned.

However, the tagging feature could help you easily find and identify the identites that you have tagged as “privileged” through Search.

1 Like

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.