Privileged Access Management (PAM) is a new component that was not included with the previous versions of the product. With PAM, user access is controlled through role requests that grant access for a specific period of time. This means end users in your corporate environment no longer require permanent membership in groups you've configured as security sensitive. Additionally, group membership requests can either be autoapproved or require approval.
In this chapter, we will cover the following topics:
Why deploy PAM?
PAM components
How does it work?
System requirements
Considerations
Our scenario
Installing PAM and its requirements
User experience
PAM in the MIM service
The sample PAM portal
Multi-factor authentication