Alerts and Notifications

PAM can be configured to send email notifications and in-app alerts to users who have subscribed to certain events.

If yourself or users are going to configure notifications, understand that:

• Alerts and Notifications are user profile specific. The alerts that you subscribe to are only for your account.

• PAM can be as noisy as you want it to be. When you first start out, think about what events you need to be alerted to. Over time, you can adjust the level of notifications, but like all notifications, the more we receive the less we tend to pay attention. Create alerts for notable events and use PAM reports for review.

• If you already have a Syslog or SIEM product capturing security alerts, consider outputting PAM events to your Syslog for consolidation, reporting and additional alerting.

• If you are a System Administrator, subscribe to system Error alerts so that you receive notifications in the event of system issues. Also subscribing to system Information or Warning events can quickly fill up your inbox or alert listings which can make PAM overly chatty.

• Email notifications (if configured) are sent to the email address associated to the AD account or the Local User account. Be sure these addresses are correct for all your users.

• Email notification templates can be customized. If you would like to change the wording, add or remove placeholders, feel free to do so. Use the test email template to try your changes before applying them to the production templates.