Microsoft Privileged Access Management (PAM) Supported Non-Domain Client/Workstation?
We are Planing to deploy Microsfot Privileged Access Management (PAM) in Our Environment. Below are some quires regarding the Microsfot Privileged Access Management (PAM).
- Non-Domain servers/Workgroup servers e.g Windows Server,Linux , Unix ,AIX ,Oracle ,SQL prevelidge accounts can be managed via PAM?
- How can we manage Service accounts of existing AD as these accounts are required to run the managment?
The servers would need to be domain joined as you create a bastion domain that has a trust relationship to your AD DS.
Do you mean service accounts for MIM and SQL? These accounts would be created in the bastion AD DS.
Check out Plan your PAM deployment https://docs.microsoft.com/en-us/microsoft-identity-manager/pam/environment-overview
There's also a step by step deployment guide