Supported Features

The Delinea Secret Server On-Premise source supports user (account) and entitlement (group and roles) management.

User Management (Accounts)

• Aggregation of internal and external users

• Refresh users

• Create user provisioning for local users

• Enable / disable users with provisioning

• Add users to groups

  Note
  The Delinea Secret Server On-Premise connector uses the PATCH method to add and remove users in groups via the group endpoints.

• Remove users from groups

• Update a user's Email ID (emails.work.primary.value) and Username (userName) attributes using the /users endpoint.

• Assign roles to users

  Note
  The Delinea Secret Server Cloud connector uses the PATCH method to assign roles to users, remove roles from users, fetch roles, and fetch users assigned to roles via the users' endpoints.

• Remove roles from users

Group Management (Entitlements)

• Group aggregation

• Single user aggregation

• Aggregate container permissions as direct permissions

• Roles aggregation

• Single role aggregation

Supported Use Cases

The following use cases are facilitated by the Delinea On-Premise connector.

Read Operation

• Fetch local and external users from the PAM system.

• Fetch local groups from the PAM system.

• View Safes / Containers and view how their permissions are assigned to groups.

• Fetch roles from the PAM system.

Provisioning

• Create local users on the PAM system.

• Add or remove internal and external users from local groups. This indirectly assigns and revokes Safes and their associated permissions.

• Enable or disable internal and external users residing on the PAM system.

• Assign roles to users, and remove roles from users.

For more information on features, refer to Identity Security Cloud Source Features.