A user performs a break glass check out when they need immediate access to an account that they are not authorized to manage.
To break glass an account, send the HTTP request to the following URL:
https://<host_name>:18443/iam/api/1.0/restapi/environments/ac/endpoints/<endpoint_name>/accounts/<account_name>?breakglass-accounts=true
Specifies the host name.
Specifies the endpoint name.
Specifies the account name.
The following example shows the HTTP body content to break glass an account:
<Account>
<PasswordState justification="my justification">BreakGlass</PasswordState>
</Account>
Note: Only users with the break glass privileged access role can perform the break glass process.
Copyright © 2013 CA Technologies.
All rights reserved.
|
|