Onboard local Windows server accounts through Account discovery

A user with administrator-level privileges has access to all the accounts in an IT environment. Only such a user can pull and onboard accounts while an account discovery job is in progress. Such an account will be termed as a "Management account". Once a discovery job is launched through a management account, a scan is performed for accounts. If the 'onboard' feature is enabled, all the discovered accounts will get onboarded and the account password will be reset for security reasons.

Procedure: 

1. For configuring management account, log in to the system and select PAM from the product navigator.
2. Go to Setup→ Account Defaults → Add Account Default → Asset Category=Select from drop-down list,  Asset Type=Select type of asset , Account role=Management, Username=Specify the username, Domain=Specify the domain.
3. Go to Manage → Account Discovery → Add Account Discovery.
4. Set Job Title=Windows Server Discovery,  Asset Category=Operating System, Asset Type=Windows Server.
5. Set Schedule type and time → Select 'Yes' for 'Onboard'.
6. Click on Save.
7. If you want to start account discovery immediately, click on Save+Run Now.

Related articles