This article explains how Active Directory user groups (Security groups) are added to Osirium PAM.
Free AD Audit Tool
The first step to protecting AD accounts is to know what you have. This free tool does just that.
Free Privileged Access Management
Secure your infrastructure with the fastest to deploy Privileged Access Management solution. Introducing PAM Express from Osirium. For free, for 10 servers or network devices for production use.
Get your free checklist that builds on years of practical experience to provide a roadmap for PAM success.
This article explains how Active Directory user groups (Security groups) are added to Osirium PAM and the users within the group are synchronised and created in Osirium PAM.
It also provides a number of scenarios as to how the users are managed through this process.
This section provides details on how to populate the bulk import template for:
NOTE It is assumed that an Active Directory service has already been provisioned in Osirium PAM. See Active Directory integration in Osirium PAM.
This section details how to create new Security groups in Active Directory and how then configure Osirium PAM so that users are automatically synchronised.
NOTE: If your Active Directory already contains Security groups that you wish to synchronise in Osirium PAM, skip to step 2.
1. Create Security Group(s) in Active Directory and add users
2. Create User Group in Osirium PAM
3. Synchronising the Osirium PAM User group
For each of the below scenarios it is explained what will happen to users within Osirium PAM.
NOTE For the below scenarios, the term Security Group refers to a Security Group created in Active Directory. The term User group refers to a User group created in Osirium PAM. Unless stated otherwise, it is assumed that for each Security group there is a corresponding User group of the same name in Osirium PAM.
NOTE With the exception of adding a new Security Group, to see the see the changes described below immediately you will need to manually trigger a resync. See point 3 above of the Synchronise Active Directory users using Security Groups section.
1. New Security Group added
2. User added to existing Security Group
3. User removed from existing Security Group
4. Security Group removed
Ransomware attacks destroy your data and backups. Get Osirium Fast Protect for just £4,995 to stop attacks deleting your backups.
If you have any questions or want to speak to one of our representatives, please complete this form and we'll be in touch.