Log in to Remote Application with an SAPM User
A user account can also be kept in the SAPM, as illustrated in the figure below. When configuring the login to a remote application with a SAPM user, the definition of an IP address is mandatory and can be selected from a combo box, meaning it has to be selected from among the devices already added to Kron PAM. The IP address is the target deviceโs IP address and should match the Device IP configured in the Auto login screen in order for the SAPM account to be seen on the auto-login screen to the target application. To use this account for remote app auto login, assign this credential to the session account. For more information, see Assigned Credentials๏ปฟ๏ปฟ
Sometimes more than one device per user is kept in SAPM. In such cases, the user to be used while logging in to the remote application should be identified. The following figure shows the SAPM account configuration for remote application login.
As mentioned, SAPM accounts also can be assigned to session users to auto-log in to remote apps. SAPM account strategies are important for user listing when using the Allow Assigned Credentials option. The diagram below shows how remote app user listing is affected when a SAPM account is assigned to a session user.
The always.show.accounts.in.auto.login parameter shown in the diagram above is an SAPM configuration parameter. For more information, see Adding SAPM Configurations๏ปฟ
The remote.app.%s.ip.independent.account.show.in.auto.login parameter is a configuration parameter on the Remote App auto login page. This parameter can be selected when an assigned credential is used. According to the flow in the diagram above, if the always.show.accounts.in.auto.login parameter is set as true and we check this parameter, the account is shown on the Remote App Auto login user list without checking the IP match.
๏ปฟ