SecretZero Privileged Identity and Access Manager
Version 1.0
Overview
This document provides a detailed description of Secretzero - A Passwordless Privileged Access Management (PAM) solution that enables secure, seamless access to Unix, Windows, and database endpoints. The solution leverages ephemeral certificates and just-in-time credentials to eliminate the need for vaulted passwords while enhancing security and user experience.
Table of Contents
1. Introduction
- Overview
- Key Features
- Components
2. Core Concepts
- Access Control
- Ephermal Certificates
- Just in Time
- Connection Methods
- LDAP And Sudo
3. Deploying
- Minimum Requirements
- Network Connectivity
- Download Solution
- Deploy OVA Template
- Post Deployment
- Initial Secrets
- Appliance Manager
- Deploy S0 Agent
- Deploy Connector Server
4. Technical Architecture
- High Level Architecture
- Authentication And Authorization
- Supported Endpoints
- Scalibility And High Availibility
5. Integration
- Unix Systems
- Windows Systems
- Database Endpoints
6. Administration
- Logging in - Enabling 2FA
- Create Criteria
- Create Teams
- Team Management
- Approval Workflow
- Privileged Controls
- users
7. Operational Workflow
- Breakglass Access
- Database Backups
- NFS drives
8. Integration and APIs
- Supported Protocols
- API Endpoints
9. Troubleshooting
- Common Issues and Solutions