• State Not Answered
  • Replies 1 reply
  • Subscribers 28 subscribers
  • Views 598 views
  • Users 0 members are here
Options
Related

filtering account related to a server on the same domain

dario guastella
over 2 years ago

a USER has two privileged accounts on two different domain. So he can choos an account to go on a server on a domain or choose the second account to go on another server on another domain (two account on two domains for two server on two domains)

when this USER ask a NEW REQUEST and choose one of the two servers at the step after he see all his accounts and not only the account related to the specific domain where the server is attested.

So, is it possible to filter the accounts for only the server (of the same domain of the account) he chose at the step before? filtering for account and server on the same domain?

because the USER maybe be mistaken.

i hope to be clear.

thanks a lot!

Parents
  • 0 over 2 years ago

    Hi Dario,

    You can try creating two separate Access Request Policy, for example:

    ARP1:
    Add Asset1 to the scope and  in the AccessConfig  > Asset Based Access > Directory Account: select the directory account1

    ARP2:
    Add Asset2 to the scope and  in the AccessConfig  > Asset Based Access > Directory Account: select the directory account2

    This will enforce that for Asset1 only have account1 available and for Asset2 would only have account2 available.

    Thanks!

Reply
  • 0 over 2 years ago

    Hi Dario,

    You can try creating two separate Access Request Policy, for example:

    ARP1:
    Add Asset1 to the scope and  in the AccessConfig  > Asset Based Access > Directory Account: select the directory account1

    ARP2:
    Add Asset2 to the scope and  in the AccessConfig  > Asset Based Access > Directory Account: select the directory account2

    This will enforce that for Asset1 only have account1 available and for Asset2 would only have account2 available.

    Thanks!

Children
No Data