OPAM 11g R2 PS2: Quick Start Guide

Oracle Privileged Account Manager (OPAM in short) is a solution which helps organizations manage privileged accounts in a secure manner.

I have created a Quick Start Guide which is a series of short documents/tutorials to get you up and running with OPAM. Links at the end of this post

What exactly is a Privileged Account?

• Accounts which grant access to sensitive data
• Are often shared by multiple users
• Are associated with higher levels of access than other accounts
• Typical examples are – Database accounts with SYSDBA privileges, UNIX root account, LDAP admin accounts etc

Why use OPAM?

• Centralized password management for all your sensitive accounts
• Check out and automatically managed check ins for privileged accounts
• Provides OOTB integration with LDAP, UNIX, Databases systems
• Easy to install and configure
• Powerful real-time auditing and monitoring features along with reporting capabilities supported by BI Publisher
• New in PS2 – Session Checkout facility for UNIX systems (does not need the password to be exposed!)
• Integrates with Oracle Identity Manager to provide seamless privilege account access to enterprise identities by leveraging its Approval capabilities – employees request for access to LDAP groups which in turn drives privilege account access in OPAM via Grantee policies
• Flexible and extensible via Plugins
• Password management is based on Identity Connector Framework, which means that developers can extend OPAM functionality to targets which are not supported by OPAM out-of-the-box
• Supports the notion of integration with disconnected systems (remember OIM 11g R2?). They are know an lockbox target type in OPAM
• Provides RESTFul APIs and Command Line interface options as well

I am sure there are other benefits which you will notice once you start playing with it ! 🙂

No more waiting.. get started ………………….!

• Setup-How-To-Begin
• Installation-Guide
• Configuration-Guide
• Target-Management
• Service-Account-Management
• Privileged-Account-Management
• Session-Checkout-For-UNIX