Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How to restrict PAM session recording access to individual PAM owners only

Go to solution
Diwakar
Regular Contributor
Regular Contributor

‎04/09/2024 07:57 AM

We have onboarded 20 servers to CPAM and there are different owners for these servers. Through PAM Owner SAV role the manage session recording access can be granted but how to restrict the PAM owners to view and manage only those session recording for which they are responsible.

On our testing we found, granting PAM owner SAV role to any user will provide access to recording session of each server that are onboarded to CPAM as endpoints. 

This is actually a big privacy issue if we are not able to restrict the recording visibility as per ownership. Please assist.

Labels:
0 Kudos
4 REPLIES 4

Go to solution
sudeshjaiswal
Saviynt Employee
Saviynt Employee

‎04/09/2024 09:16 PM

Hello @Diwakar,

There is already an Idea in place, Please provide your bussiness use-case/Upvote the idea to get the idea accepted.

Thanks.

If you find the above response useful, Kindly Mark it as "Accept As Solution".
0 Kudos

Go to solution
Diwakar
Regular Contributor
Regular Contributor

‎04/09/2024 11:09 PM

@sudeshjaiswal Thanks for your response, we will provide our use case there. 

Also, I have noticed one thing for SAV role we have one option access to endpoints so do you think if it can be used for our use case to restrict the PAM recording session visibility? or this option is used for some other functionality?

Diwakar_0-1712729249545.png

Thanks,

Diwakar.

0 Kudos

Go to solution
sudeshjaiswal
Saviynt Employee
Saviynt Employee

‎04/09/2024 11:50 PM

Hello @Diwakar,

Thats been used for the analytics controls.


https://docs.saviyntcloud.com/bundle/EIC-Admin-v24x/page/Content/Chapter09-SAV-Roles/Understanding-t... 

Thanks.

If you find the above response useful, Kindly Mark it as "Accept As Solution".
0 Kudos

Go to solution
Diwakar
Regular Contributor
Regular Contributor

‎04/09/2024 11:57 PM

@sudeshjaiswal Makes sense thanks for your support.

0 Kudos
Copyright © 2024 Khoros, LLC