Hello,
We have Linux desktops which have non-root account which is in sudoers. This account has a common password while imaging which gets rotated every n days outside Passwordsafe (PS)
I see that we need a functional account that has ability to rotate other local accounts , which should be used to onboard these accounts to Passwordsafe. As this non-root account has a fixed initial password for each newly imaged desktop , can we use it as a Functional account in PasswordSafe and check the option “ Use Own Credentials” to Manage/Rotate password in smart rule. I am assuming that this will work as initial password of non-root account will be used by PS to onboard the account and then it will change its own password when smart rule is processed. Is my understanding correct ? am I missing anything that could result in any issues
Page 1 / 1
The "Use Own Credentials" option is exclusively for Managed Accounts and isn't available within the Functional Account menu. Instead, you'll configure the account as a Functional Account (FA) using your initial fixed password. Then, enable "Password Automatic Management." This ensures that whenever a new managed system links to this FA, it uses the fixed password for the initial login. Afterward, Password Safe will automatically change the FA's password to a unique, system-generated one.
In summary, while the Functional Account's password remains fixed in the FA menu, each managed system will have a unique password for its FA interaction.
Reply
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.