A new colleague created a directory mapping between the Active Directory groups and the Vault.
Where can the newly Configured directory mapping be tested?
A.
Connect to the Active Directory and ensure the organizational unit exists.
B.
Connect to Sailpoint (or similar tool) to ensure the organizational unit is correctly named; log in to the PVWA with "Administrator" and confirm authentication succeeds.
C.
Search for members that exist only in the mapping group to grant them safe permissions through the PVWA.
D.
Connect to the PrivateArk Client with the Administrator Account to see if there is a user in the Vault Admin Group.
The newly configured directory mapping can be tested by searching for members that exist only in the mapping group to grant them safe permissions through the PVWA (Privileged Vault Web Access). This process allows you to verify that the directory mapping is functioning correctly by ensuring that only the intended users, who are part of the specific Active Directory group, are granted access to the safes in the CyberArk Vault12.
References:
CyberArk Docs - Create directory mapping1
CyberArk Docs - Edit directory mapping3
CyberArk Docs - LDAP Integration in PVWA
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit