The Shared Accounts Password Management (SAPM) feature is used to store shared privileged accounts’ passwords that are used by more than one person. SAPM stores 2 types of accounts: Dynamic and Static.

In Accounts that are statically stored on the SAPM. Before adding a device’s local accounts to SAPM, the account passwords are checked and stored. These accounts are called dynamic configured static accounts. When static accounts are stored without any device connection, they are called static configured static accounts, once an account is configured in SAPM, the Dynamic Password Controller (DPC) connects to the system, changes, and stores the password, after encrypting it. During the password lifecycle, the DPC changes the password periodically, and after each checkout. It logs checkout details, like the user, date, time, and reason, and provides accountability for password checkout events.

Learn how the Shared Accounts Password Management (SAPM) feature securely stores and manages both dynamic and static shared privileged accounts' passwords. Discover how the Dynamic Password Controller (DPC) enhances security by connecting to the system, e

Adding Dynamic Accounts in SAPM

Adding Dynamic Configured Static Accounts in SAPM

Adding Static Configured Static Accounts in SAPM

Adding Accounts in SAPM

SAPM SSH Key Rotation 

SAPM Account Permissions

Adding a New SAPM Group

Editing a SAPM Group

Deleting a SAPM Group

Adding a SAPM Account to a Group

Listing SAPM Accounts in a Group

Adding Permissions to SAPM Groups

Adding Child Groups to SAPM Groups

SAPM Group

Show/Check Out SAPM Account Password

Change Account Password Manually

Reset Account Password

Bulk Reset Account Password

Managed Systems

Adding SAPM Configurations

Duplicating SAPM Configurations

Configuration Property to Show Password to Multiple Users

Configuration Properties to Execute Commands After Changing Passwords

Configuration Property to Send Password Change Reminder 

Adding Cluster Accounts in SAPM

Adding Auto Import Rules

New User Notification Email Configuration

Editing New User Check Cronjob

Importing New Users to SAPM

Deleting New Users

Checking for New Users

SAPM Accounts Bulk Import 

Display SAPM Logs

Display Password History Log

SAPM Dashboard

Managing Passwords in a File

SAPM Mail List Notifications

Configure Notifications

SAPM Notification Settings

Auditor User

End-User

Account and Group Creator User

Admin User

SAPM User Rights

Approval Configuration

SAPM Admin & Manager Approval Roles

Manager User Approval Role

Account Base Approval Mechanism 

Future Date Reservation

Split Password Feature

Password Validation Check

Web Application Password Management

Show Notes Option

Show Password Option

Secret Notes

Shared Accounts Password Management (SAPM)

Adding Accounts in AAPM

Removing Accounts from AAPM

Requesting Passwords from AAPM

AAPM Triggers

Managing Application-to-Application Password Management (AAPM) Accounts

Creating Private Records

Creating Secret Data

Showing / Editing Secret Data Definitions

Secret Data Permissions

Adding New Secret Data Vault Group

Editing Secret Data Vault Groups

Deleting Secret Data Vault Groups

Adding Secret Data Vault Account to a Groups

Listing Secret Data Vault Accounts in a Group

Secret Data Vault Group Permissions

Secret Data Vault Group

Secret Data Vault Managerial Approval

Secret Data Vault Second-Level Approval Notifications

Secret Data Vault

Dynamic Password Controller

Reference Guide

PAM BU SC-Product Reference Guide

Single Connect Web GUI

License Manager

Email Server Configuration

Mail Management

Language Settings

Menu Lists Management

System Configuration Parameters

Enabling Push Notifications for Mobile Application

Backup Manager

Enabling HTTPS on the Single Connect Web GUI

802.1x Authentication

SAML Authentication

Hardware Security Module (HSM) Integration

Windows Authentication on the Single Connect GUI

Multitenancy

Single Connect Administration

Manual User Creation

Single Connect Users Search

User Definition Option Menu

Editing Single Connect Users

User Properties Set up 

Temporary User

Local User Bulk Import

New User Request

Force New User to Change Password 

User Password Strength Settings 

User Password Hash Algorithm Settings

Notifying Inactive Users Before Lock

LDAP/Active Directory Integration

User Group Creation

Assigned Credentials

SSH Keys Manager

User Management

Element Type

Device Groups 

Device Inventory

Device Management

Policy Key Definition

Policy Groups Definition

Policy Realm Definition

Policy Tracking

Policy Management

Managerial Approval for Connections 

Managerial Approval Reservation

Managerial Approval for Commands

Managerial Approval in Shared Account Password Manager (SAPM)

Approval Workflow

Approval Workflow SMS Settings

Approval Management

SSH Proxy

RDP Proxy

HTTP/S Proxy

Advanced Authorization Methods

Threat Analytics

Session Manager

Sending MFA QR Codes to Users

Creating a Connection Between Single Connect and the Single Connect Mobile Application

Enabling One-Time Password (OTP)

Using MFA to Log in to the Single Connect Web GUI

Using MFA to Log in to the Single Connect Desktop Client

Using MFA for SSH Connections

Using MFA for RDP Connections

Using MFA for SSH Proxy

Using MFA for HTTP/HTTPS Proxy

OTP Configuration for TACACS+ Manager

Using MFA for Mobile Application

Offline/Online Mode Settings

Using SMS for MFA

Using Hardware Tokens for MFA

MFA Configurations for VPN Services

External MFA Providers

Using MFA for SFTP Proxy

Multi-Factor Authentication

Basic Configurations for TACACS+ Devices

MSCHAPv2 RADIUS Configuration

TACACS+ Management Configuration Page 

TACACS+ Access Manager

SQL Proxy

Sensitive Data Discovery

SFTP Proxy

Data Access Manager

Importing Devices from Amazon Web Services

Importing Devices from Microsoft Azure

Importing Devices from Google Cloud Platform

Cloud PAM

Single Connect Logs

Active Sessions and Dual Control

System Log Viewer

Viewing Logs in Different Time Formats

Log Backup Management and Archiving

SIEM Configuration

Reports 

Dashboard

Tamper Proof Logging

Single Connect Reporting and Logging Functions

Adding New Command Templates

Executing a Command Template

Adding a New Script

Running a Script

Creating a Workflow

Running a Workflow

Workflow History Logs

Privileged Task Automation Manager

Monitoring 

Alarms

Alarm Configuration

Monitoring & Alarms

Watchdog Configuration 

Watchdog Mechanism

High Availability

Failover Scenario

Visualizing Reports and User Rights

Creating Charts for Reporting

Creating Dashboards

Report Email Scheduling

Dynamic Reports

Reporting

Logical Architecture

Tenant Management Requirements 

Tenant Management Interface