KB000003: Configuring the Access Manager Agent to manage an account other than 'root' on Linux

Summary

Content on this pages applies only to agents running v2. Agents running v3 have native support for changing the account name in the policy configured on the AMS server

The Access Manager Agent for Linux is configured by default to manage the password of an account named root. You can configure the agent to manage an account with a different name.

Resolution

Modify the /etc/LithnetAccessManagerAgent.conf file to include the Unix and Username fields as shown below, replacing adminuser with your desired username. Be sure to match the braces, and provide the comma before the Unix element.

{
  "Logging": {
    "LogLevel": {
      "Default": "Trace",
      "Microsoft": "Warning",
      "System.Net": "Warning",
      "Microsoft.Hosting.Lifetime": "Information"
    }
  },
  "Unix": {
    "Username": "adminuser"
  }
}

Notes

The name of the account whose password is being managed is only visible to users in the web app when using Enterprise edition. Community edition users will be able to access the password, but the username will not be shown.

PreviousKB000002: Users retain their admin rights after their JIT period expires NextKB000004: Creating a log file to troubleshoot installation issues with the Access Manager Service

Last updated 2 months ago