Hi Team. What is the best practice for enabling the automatic password management for the functional account? Is it recommended to do so? and once it is enabled is it only going to rotate the password for the functional account or it will rotate all other managed accounts that are onboarded to Password safe? and how can we retrieve the password of functional account from the console once it is enabled?
Appreciate your feedback on this?
This is for the functional accounts only. it will only rotate your functional account.
You should create an additional Password Policy for the functional accounts just to have them more complex, no one is going to type the password manually or check it out for use.
Thanks for the response. Once it is enabled is there a way to retrieve the credentials for the functional account?
No, there is no way to retrieve the credential for your functional accounts, unless configured static.
For AD it’s not a big deal, as you can always reset the account.
There is a nice KB for best practice for Functional Accounts, search Function Account in the KBs.
You should be rotating the functional account, you may want to increase the frequency since its a privileged account. Also it will only rotate that account, it will not rotate others, it is tied to that account only.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
