FortiPAM concepts
FortiPAM user
There are two types of FortiPAM user:
-
Standard user: Performs management tasks on the target system, e.g., IT staff, IT contractor, Database Administrator (DBA). Standard users are typically IT Managers and IT System Admins.
-
Admin user: Performs management tasks on FortiPAM server.
Target
A server/device with a privileged account supporting RDP, SSH, Web, or other admin protocols. Target systems include Windows workstation, Windows domain controller, Web server, Unix server, SQL- server, router, or firewall.
Targets allow a host to have common configuration across secrets.
Classification tags
Classification tags are used to categorize different targets by the OS type or location, e.g., Ubuntu, Windows AD, etc.
Secrets
The secrets contain information on login, credentials, and the target server IP address. Secrets are core assets in FortiPAM representing methods and credentials to access target systems in your organization.
Launchers
Launchers help users gain remote access to a target without needing to know, view, or copy the password stored in FortiPAM.
Launchers can invoke client-side software on the FortiPAM user’s endpoint, which is software to perform management tasks, e.g., Internet Explorer, PuTTY(ssh), RDP client, and SQL-commander.
Folders
Folders help manage a large number of secrets efficiently by organizing them in a hierarchical view. You can organize customers, computers, regions, branch offices, etc., into folders.
You can quickly look for secrets from the folder tree view.
Granting permissions becomes faster as secrets in a folder share the same permission and policy.