Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

DR-765 Change code for Discovery enforcement #1316

Merged
merged 1 commit into from
Oct 26, 2024
Merged

DR-765 Change code for Discovery enforcement #1316

merged 1 commit into from
Oct 26, 2024

Conversation

jwalstra-keeper
Copy link
Contributor

  • Update the PAM protobuf to keeperapp-protobuf PR 106.
  • Change CMT_GENERAL to CMT_DISCOVERY for any discovery gateway action.
  • Added a readme on how to generate a protobuf python file.

To enable Discovey ...

https://dev.keepersecurity.com/console/dev2/#login

once logged in, navigate to Admin -> Roles
find the role that belongs to the user you're using
click on Enforcement Policies button
click on Privileged Access Manager tab (left side menu panel)
at the very bottom, you should see the Discovery enforcement

This enforcement permission via requests to the gateway. There are still commands in Commander that can be run by any person, which we may need to lock down.

@jwalstra-keeper
DR-765 Change code for Discovery enforcement
4ac5dd3 
* Update the PAM protobuf to keeperapp-protobuf PR 106.
* Change CMT_GENERAL to CMT_DISCOVERY for any discovery gateway action.
* Added a readme on how to generate a protobuf python file.

To enable Discovey ...

```
https://dev.keepersecurity.com/console/dev2/#login

once logged in, navigate to Admin -> Roles
find the role that belongs to the user you're using
click on Enforcement Policies button
click on Privileged Access Manager tab (left side menu panel)
at the very bottom, you should see the Discovery enforcement
```

This enforcement permission via requests to the gateway.
There are still commands in Commander that can be run by
any person, which we may need to lock down.
@jwalstra-keeper jwalstra-keeper merged commit e7120b1 into discovery-and-dag-support Oct 26, 2024
0 of 2 checks passed
@jwalstra-keeper jwalstra-keeper deleted the DR-765-pam_discovery_enforcement_changes branch October 26, 2024 00:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@jwalstra-keeper