Skip to content

PAM UI Guide

This guide is intended for PAM users, to help navigate you round the user interface and access your devices.

The following topics are covered in this section:

Introduction

The PAM UI is the user interface for Osirium PAM. The UI is an easy-to-use interface accessed through a web browser. It gives you access to your device tools, device tasks and credentials, provided through Osirium PAM, to enable you to carry out your day to day job role.

To logon you will need the user credentials provided by your Osirium PAM SuperAdmin. When successful logged in, you will be presented with the user interface which will be dynamically updated and list the device tools with defined privilege levels that you have been granted. As well as a list of device tasks that can be executed on a device and device credentials.

The device list presented to you upon authentication may differ per person as access is granularly managed and tailored to your individual requirement and job role within the organisation. This allows for a least privileged model to be applied when granting access permissions and privileges.

By applying a least privileged model ensures you are only granted the permissions necessary to carry out your role and reduces the risk of mistakes being made through over privileged access.

User interface

From the user interface, you are able to:

  • Single sign-on to device tools (RDP, SSH, Telnet, Browser etc) : This means that when you click on a device tool, the Osirium PAM will manage the logon process and provide the device with the correct logon credentials, allowing you to seamlessly and quickly logon to the device. Therefore you will no longer have to remember multiple credentials to multiple devices or have to type in credentials for each device accessed.

  • Run tasks on a device or multiple devices : Device tasks can be executed on a single device or multiple devices of the same type without knowing the device specific commands. When you execute a task, the Osirium PAM provides and inputs the correct command(s) to execute the task on the device(s).

  • Reveal and update password vault credentials: The static vault can provide access to stored credentials for devices that are not managed through Osirium PAM. Encrypted device passwords can be revealed and updated through the user interface.

  • Access to the Admin Interface : Depending on the Osirium PAM access role assigned to you the operations available on the Admin Interface will vary.

Example user access level privileges *Admin Interface

User interface privilege level

Example superadmin access level privileges Admin Interface. This is the highest privilege level for Osirium PAM

Superadmin interface privilege level

Port requirements

To allow communication between the user interface and Osirium PAM, ensure TCP ports 443 and 9002 are open.

Supporting documentation

Further information relating to Osirium PAM can be found here.