Previous Topic: Create an EndpointNext Topic: ACF2 Connection Information


Access Control for SAM Connection Information

The Access Control for SAM endpoint type lets you manage privileged Access Control accounts.

When you create endpoints of this type, provide the following information so that CA ControlMinder Enterprise Management can connect to the endpoint:

User Login

Defines the name of an administrative user of the endpoint. SAM uses this account to perform administrative tasks on the endpoint, for example, to connect to the endpoint, discover accounts, and change passwords.

Note the following points:

If you specify the Advanced option, SAM does not use the User Login account to perform administrative tasks. Instead, SAM uses the specified privileged account to perform administrative tasks on the endpoint.

Password

Defines the password of the administrative user of the endpoint.

Host

Defines the host name of the endpoint.

Host Domain

Specifies the name of the domain that this host is a member of.

Example: Domain.com

Use Enhanced Functionality

Specifies to use CA ControlMinder on the endpoint to manage privileged and services accounts.

Note: Supported on CA ControlMinder r12.6.01 and above only.

Advanced

Specifies whether you want to use a privileged administrative account to perform administrative tasks on the endpoint, for example, to connect to the endpoint, discover accounts, and change passwords. For example, you can specify a privileged domain account that can perform administrative tasks on multiple endpoints.

If you specify this option, SAM does not use the User Login account to perform administrative tasks.

Disable Exclusive Sessions

Specifies whether to disable the exclusive sessions check on this endpoint. When selected, SAM does not check for open sessions on the endpoint.

Deny Exclusive Break-Glass

Specifies to block break-glass check-out action on exclusive accounts.