Adding Dynamic Accounts in Password Vault

to configure password vault for any given system, a password vault account needs to be added authorized users can define the target devices’ privileged users as password vault accounts by configuring a password vault account, kron pam establishes a connection to the target system and changes the old password by generating a random password created by the password vault the new password is encrypted and stored in the kron pam database to add a dynamic account navigate to secret > vault open the vault tab click + add button and select add account select the type (dynamic), configuration (configuration is the type of target system device kron pam has pre defined configurations for password vault, but any device configuration can be added from the configuration tab this is detailed in the upcoming sections account group name, owner of vault, enter account name, private, enable /disable duallock, and additional information (description, secret notes, additional info, and account tags) click next select host (ip/name), change period, username, and userpassword information a new combobox called “ change period will be added on the vault definition screen, and the user will be able to choose how many days after the password (as in the current system), on a certain day of the week, or on the day of the month and time if the user selects change period as periodic, the change period day textbox will appear, and the user will enter the password change frequency days information in that field if the user selects recurrent as the change period value, in this case, a combo box will appear on the screen, and values will be assigned day week month if the user selects recurrent as the change period value, in this case, a new field will appear on the screen according to the recurrence unit value if the user selects week as recurrence unit, then all days of the week will appear on the screen, and the user will be able to select the days they want the password to change it will be possible to select more than one day additionally, it will be possible to define the start time at which the password is desired to be changed on the screen if the user selects month as recurrence unit, the user will enter on the screen which day of the month on which the password is to be changed after selecting the days of month value they will also need to select the frequency of the password change during the year private, change the period, owner, username, password, and configuration click save if a change period value is defined in the vault configurations screen , when the relevant configuration is selected in the vault definition screen, the parameters defined in the config will be moved to the screen and cannot be changed by the user the definitions made from the vault configurations screen will be more dominant if there is a change in the values on this vault configuration , the values of all vault accounts belonging to this configuration will be updated when the first password change job runs if a change period value is defined in the vault configuration > miscellaneous > account level properties > change period when the relevant configuration is selected in the vault definition screen account level properties change period parameter will be most dominant for new accounts and can’t be changed by users