Imprivata Privileged Access Management Product Update 2.3.201909292215
September 29, 2019
PAM Update: Added email option for access request approval and requesting access using command line interface
This update adds the option to approve or reject access requests by replying to approval notification email and command-line interface commands to request connect or unlock access or to check request status.
Added the option to approve or reject access requests by replying to the approval notification email
The update adds the option for access request approvers to reply to the approval request notification email to approve or reject access requests as an alternative to using the application WEB GUI. The option simplifies request approval and makes them quicker to perform thus facilitating the adoption of just in time access control.
Approvers can reply Yes, Ok, Approve or Approved to the notification email to approve the request. Any other comment in the reply will trigger the access rejection with the comment written in the email reply.
To enable this option system owners to need to specify IMAP port and optionally IMAP folder to monitor for replies in the mail server configuration (Administration / Settings / Mail Server) and to enable the feature using Administration / Settings / Parameters / Approve by Email global parameter.
Read more about email approval following the article How to Approve or Reject Access Requests by Email Response.
Added Command Line Interface commands to request connect or unlock access or to check request status
The update brings SSH Proxy Shell CLI commands to request unlock or connect access as well as to display access request status as an alternative to using WEB GUI. This option allows system users to receive just in time access to the sensitive information using the command line interface without using the application WEB Portal. Command line mode of operation will simplify routine activities of DevOps teams, Application Access Privileged Management (AAPM) operations, network administrators and IoT device management groups.
The update also extends SSH Proxy Shell Command Line Interface to include non-Unix records thus allowing system users to communicate with the system using command line accessing all different kinds of computers and devices under management.
Read more about details of CLI commands following the article Using the Command Line Interface.