|Approval requests enable just in time (JIT) access, allowing you to provide granular privileged access as and when requested.
|Accounts discovered on a device during a device audit are allocated a state to help identify if the accounts are recognised. The account states can be used to review and assess the validity of the audited account that exists on the device.
|Refers to the authentication service the account is linked to, and which is used by Osirium PAM to authenticate the accounts on the device.
|Web based interface used to manage and administer Osirium PAM.
|Cluster Joining Bundle
|File generated on a leader cluster node and required when joining nodes to an existing cluster.
|Account that will be used to manage the device. It will be used by Osirium PAM to manage and communicate with the device/Active Directory.
|Refers to the device that has been provisioned and is accessed through Osirium PAM.
|Status indicators allow you to monitor the current state and accessibility of the device and help highlight any issues with a device.
|Tasks that can be executed on a device.
|Protocols used to access a device, i.e. HTTPS, SSH, RDP, etc.
|Helps safeguard against man-in-the-middle attacks. Osirium PAM will check that the associated fingerprint matches the devices fingerprint during connection.
|Role assigned to all nodes joining a cluster subsequent to the leader node.
|Groups of Interest
|Is a list of Active Directory Security Groups that will be audited by Osirium PAM.
|Role assigned to the first PAM Server created in a cluster. The assigned leader role will provide elevated privileges to the PAM Server.
|Is an Osirium PAM controlled Windows Server used for launching remote applications.
|Master Encyption Key (MEK)
|The underlying encryption key for the PAM Server database, required to recover a system using a backup file and clustering.
|Allows an active primary PAM Server to push a copy of its backup file to a secondary PAM Server. The secondary PAM Server does not contain any live configurations. It will be used for restoring the primary server using the backup if the active server goes down.
|Member of a cluster.
|Osirium's privileged access management suite of products.
|A group of PAM Servers working together to help provide load balancing, greater scalability, increased availability, resilience and simplified management.
|The main component that drives Osirium PAM. It incorporates the virtual appliance, database, Admin Interface and User Interface.
|PAM Server Console
|Virtual machine console window that provides access to the PAM Server troubleshooting options and command line.
|Web based interface and access point for users. Provides access to device tools, device tasks and credentials.
|PAM UI Server
|A dedicated web server used to run the web based interface.
|Provides role-based management controls and enables you to link together a group of devices, tools, tasks, users and user groups.
|Process of adding a device to Osirium PAM.
|Real time actions captured in frames, saved and can be played back.
|Mechanism that enables files to be shared between the local machine and the remote machine.
|A single PAM Server that runs on its own and is not part of a cluster.
|Used to store credentials that Osirium PAM isn't able to manage directly on the device.
|The primary account that will be created during the PAM installation and given full access to the Admin Interface.
|See device tasks.
|Interface between Osirium PAM and the device. Provides the necessary language to allow Osirium PAM to communicate with the device and provide access control, account provisioning and execution of tasks.
|See device tools.
|Time based one-time password, used for multifactor authentication with Osirium PAM.
|See User Interface.
|Mechanism that removes the device so it can no longer be administered by Osirium PAM.
|Person who will be logging on and accessing Osirium PAM as well as privileged access to devices and device tasks.
|A set of users that require the same access levels.
|Osirium PAM interface (browser or Desktop Client) and access point for users.