Hello FortiPAM admins
Is there a way to hide passwords of users' secrets from being seen by the admin?
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi @AEK
Users with the following permission can view secret passwords on the GUI:
https://docs.fortinet.com/document/fortipam/1.3.0/administration-guide/488581/secrets
Admin cannot view the secrets (password) of the target with user permission:
But you can't launch the secret list with that permission.
Currently, FortiPAM don't offer to hide password for secret list with view permission.
Hope that helps,
Kind Regards,
Bijay Prakash Ghising
Hello Ghising
Thanks for your response and reference.
I think it would be much more secure to permanently hide the back-end server's passwords from any admin or user with any role/permissions.
I still don't understand why FortiPAM doesn't hide it. Maybe there is something conceptual that I don't understand yet about PAM.
Hi @AEK
If you have role disabled for "View Encrypted Information " and "view" user permission then it won't display the password.
Just verified in this Q/A
https://docs.fortinet.com/document/fortipam/1.3.0/administration-guide/117972/role
https://docs.fortinet.com/document/fortipam/1.3.0/administration-guide/488581/secrets
Thanks Ghising
But the question still here: how can I convince my sysadmin to enter his password in my FortiPAM if he knows that I (as FortiPAM administrator) can see his password if I want?
Hello
I also searching for the same question, there is missing concept here, admin or SuperAdmin should not be able to see the password in secrete, it's supposed just in one case Glass breaking mode.
I did not find any related article talks about this issue
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1692 | |
1087 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.