Privileged Account Manager 3.0
Course 8215

This course teaches the basic concepts and installation of the Privileged Account Manager (formerly Privileged User Manager) product. Students install, configure, and test Privileged Account Manager. They also learn about command control, how to audit, and run reports on activity.


Course Information

Delivery Method: Exam

Course Duration: 2 days

Course Level: Intermediate

Key Objectives

Training Privileged Account Manager Administrators

Audience Summary

Privileged Account Manager 3.0

NetIQ Privileged Account Manager: Administration (Course 8215) is for those who need to install, configure, and maintain NetIQ Privileged Account Manager as part of their overall Identity and Security solution and infrastructure.

Course Outline

Module 1

  • Welcome
  • Welcome and Introductions
  • Classroom Environment
  • Agenda
  • Introduction to Privileged Account Manager
  • Understanding Customer Issues
  • Overview
  • Administration Console
  • User Console
  • Lab 1-1: Log into the Lab Environment

Module 2

Installing NetIQ Privileged Account Manager

What is the Framework

  • Key Features

Framework Manager

  • Default Manager Modules
  • Framework Manager Console
  • Framework Agent

Workspace Layout

  • Navigation Pane

Supported Platforms

Installing the Framework

  • AIX Framework Manager Installation
  • HP-UX Framework Manager Install
  • Linux Framework Manager Installation
  • Solaris Framework Manager Installation
  • Windows Framework Manager Installation
  • Accessing the Framework Console

Managing Framework Hosts

Manage a Host

  • Managing Domains
  • Managing and Monitoring Hosts

Installing and Registering a Framework Agent

  • AIX Agent Install
  • HP-UX Agent Install
  • Linux Agent Installation
  • Solaris Agent Install
  • Windows Agent Installation
  • Lab 2-1: Installing Privileged Account Manager

Module 3

Configuring the Framework

Setting Up a Package Manager

Lab 3-1: Installing the Package Manager

Managing Framework Users and Groups

  • Managing Users
  • Configuring Account Settings
  • Adding a Framework User
  • Modifying a Framework User
  • Lab 3-2: Configuring the Framework

Managing Groups

  • Adding a Framework User Group
  • Modifying a Framework User Group
  • Lab 3-3: Understanding Command Control and Rule Creation

Module 4

Understanding Command Control and Rule Creation

Command Control

  • How Does Command Control Work?
  • Command Control Modules (A 7.22.1)
  • Integrating Command Control to User Environments
  • Using usrun with a Command
  • Using Privileged Shell for Privileged Sessions
  • Using cpcksh for Complete Session Capture
  • Using Privileged Shell¬†¬† for Complete Session Control

Understanding Rule Creation

  • Rules
  • Commands
  • Modify a Command
  • User Groups
  • Lab 4-1: Commands and Rules

Module 5

Understanding Compliance Audit and Reporting

Compliance Audit Overview

  • Controlling Access to the Compliance Auditor
  • Compliance Audit Reports
  • Compliance Auditor Records
  • Lab 5-1: Compliance Auditor

Module 6

Configuring Audit and Event Reporting

Configuring Audit Settings

  • Access Control Levels

Lab 6-1: Access Control

  • Compliance Audit Rules
  • Compliance Audit Reports
  • Adding or Modifying an Audit Report
  • Compliance Auditor Records
  • Viewing a Compliance Audit Record
  • Viewing and Editing a Command Control Keystroke Report

Lab 6-2: View Event Reports

Archiving Records

  • Managing Archived Records
  • Lab 6-3: Configuring Compliance Audit

Module 7

Configuring Load Balancing and Failover

  • Failover
  • Failover Example

Load Balancing

  • Load Balanced Packages
  • Load Balancing Example
  • Lab 7-1: Configuring Load Balancing

Module 8

Understanding Advanced Policy Administration

Policy Templates

  • Understanding Sample Policy Template
  • Importing Sample Policy Templates
  • Adding a Policy Template
  • Lab 8-1: Add a Policy Template

Test Suites

  • Adding a Test Suite (A 7.21.1)
  • Adding or Modifying a Test Case (A 7.21.2)
  • Running a Test Suite (A 7.21.3)
  • Lab 8-2: Understanding Advanced Policy Administration

Shared Account Management for Privileged Account Credentials

  • Configuring PAM to Enable Password Checkout for Oracle Database
  • Configuring PAM to Enable Password Checkout for Applications
  • Specifying Password Policies
  • Managing Credentials for Shared Accounts

Accessing and Monitoring Oracle Database

  • Supported Database Versions and Platforms
  • Prerequisite
  • Accessing the Database
  • Monitoring Database

Command Line Options

  • Backup
  • Backing Up and Restoring a Command Control Configuration (A 12.2.2)
  • Lab 8-3: Working with Backup, Export, and Import

Command Risk Rating

  • Lab 8-4: Configure Command Risk Rating

Module 9

Understanding Advanced Tools

Understanding udsh

  • Functions
  • Lab 9-1: Working with UDSH

Module 10

Understanding Remote Connection to a Windows Host with Remote Desktop Protocol

Remote Desktop Protocol Relay

  • Configuring the Windows Machine for the RDP Session (A 7.14.1)
  • Starting a Remote Desktop Session by Using an RDP Relay (A 7.14.2)
  • Connecting to a Windows Host with RDP

Setting up the Rules for RDP Connections

Privileged Credential Vault

  • Creating an Account Domain for Windows Systems (A 7.13.1)

Creating the RDP Rules

Lab 10-1: Understanding Remote Connections

Emergency Access for Privileged Sessions

  • Examples for Emergency Access Request

Course Prerequisites

Privileged Account Manager 3.0

Familiarity with the concepts of super-users and root management from Unix or Linux is helpful, but not necessary to attend NetIQ Privileged User Manager: Administration (Course 8215).