Wikis - Page

Privileged Account Manager 4.3 Release | March 9, 2023

1 Likes

Features and Benefits:

In PAM 4.3, multiple improvements and bug fixes related to consumer and security have been made. The introduction of a framework for dynamic and just-in-time (JIT) secrets for applications is a highlight, as well as the capability to generate short-lived AWS credentials and short-lived certificates. The Reporting and Compliance Auditor have been relocated to the new console for easier accessibility. Furthermore, APIs have been added to allow for the retrieval of secrets without the requirement for Access Control or Command Control policies.

PAM 4.3 New Features & Benefits

Delegated Administration
• Support for Organization Resources in PATHs within Vaults
• Ability to define delegated admins for PATHs

Just In Time (JIT) Secrets Framework
• Framework to enable plugins for supporting dynamic/JIT secrets for applications.
• Reviewing and Listing of active dynamic secrets.

Support for AWS (Dynamic Secret)
• On demand (Just in time) short live AWS credentials.
• Ability to define Dynamic Secret templates based on AWS Groups/Roles.
• Provision both Console Access & Programmatic Access secrets.

Direct Secret Read Ability
• API to directly read secret without needing Access Control/Command Control policies
• Ability to define secret read permission at Vault level.

Cert Issuer Resource Type – PKI and SSH
• Ability to issue short lived certificated based on configure Root CA.
• Generate regular PKI certificates, or SSH certificates.

Advance Filters for User Roles and Resource Pool creation
• Advance filter capability while creating Resource Pools, including filters for Extended Attributes.
• Advance filter capability for searching LDAP users, including capability to use advance LDAP queries.

UI Migration of old Console
• All Command Control settings, Risk Settings migrated to new console
• Compliance Auditor migrated to new console along with Reporting

Submit User for WebRDP
• Ability to configure submit user in Access Control for WebRDP

Other
• Security Fixes and Improvement
• Default PAM landing page changed to New Console
• AppSSO improvements


Operational Details:

The Standard Delivery method for our software is electronic. New orders receive a link via email where the software can be downloaded, which is specific to the order.

 

Language Availability:

European Portuguese, Italian, Japanese, French, French Canadian, German, English, Spanish, Swedish, Chinese - Simplified, Chinese - Traditional

*New Orders and Updates
for Existing Customers:

*Internals and
Partners:

 

Commercial Customers

(Worldwide)

Software Licenses and Downloads

Internal License Request

 

Partner Enablement and Demonstration Licenses

Product Support Lifecycle Information:

Lifecycle Table:

Lifecycle Policy:

View our Product Support Lifecycle table to see specific details and support lifecycle dates for your product. 

View the details of our new Product Support Lifecycle policy.

Licensing Strategy:

 

Licensing Technology

Other

New Implementation, a license key required

No

Update from previous version, new license key required

No

Additional License Information

Labels:

NetIQ Privileged Account Manager
Comment List
Related
Recommended