Reference Guide
...
Multitenancy
Administration by Tenant Admin...

Policy Management

0min

The Kron PAM role-based management (user/device/policy) concept is based on realms. Individual creations are collected under a group and groups are connected to each other. Realms connect the groups together so that users can connect to devices by using policies. The diagram below illustrates Kron PAM's realm structure, which allows admins to manage specific users to authenticate on specific devices and authorize specific policies.

Role-Based Management Concept
Role-Based Management Concept


Policies are applied to SSH/Telnet connections. RDP and SFTP connections do not require policies.

Please refer to section Policy Management for policy definitions, policy tracking, and approval mechanism configurations.