Lithnet Access Manager
PricingRequest a trial or quoteDownloads
v1.0
v1.0
  • Home
  • How does Access Manager help prevent lateral movement
  • Access Manager Editions
  • Licensing
  • Change log
  • Installation
    • Downloads
    • Creating a service account for the Access Manager service
    • Choosing between the Microsoft and Lithnet agents for LAPS support
    • Installing Access Manager
      • Access Manager Agent
      • Access Manager Service
  • Configuration
    • Setting up Authentication
      • Setting up smart card authentication
      • Setting up authentication with ADFS
      • Setting up authentication with Azure AD
      • Setting up authentication with Okta
    • Deploying features
      • Setting up Microsoft LAPS
      • Setting up Bitlocker access
      • Setting up Just-in-Time access
      • Setting up password encryption and history
      • Installing in a Failover Cluster
      • Integrated Windows authentication
    • Importing authorization rules
      • Importing BitLocker permissions
      • Importing local administrators group membership
      • Importing Microsoft LAPS permissions
      • Importing mappings from a CSV file
      • Importing rules from Lithnet LAPS web app
  • Help & Support
    • Frequently asked Questions
    • Troubleshooting
    • Getting Support
  • Advanced help
    • Advanced help topics
      • Access evaluation in Access Manager Service (AMS)
      • Performing an offline discovery of local admins
      • Script-based authorization
      • Backing up Access Manager
      • Recovering from a lost encryption certificate private key
    • Application help pages
      • Active Directory
      • Audit variables
      • Auditing Page
      • Auditing scripts
      • Authentication Provider
      • Authorization Page
      • BitLocker Page
      • Effective Access Page
      • SMTP Server Settings
      • High Availability Page
      • Proxy Settings
      • Jit Access Page
      • Licensing-Page
      • Local Admin Passwords Page
      • Rate Limits Page
      • User Interface Page
      • Web Hosting Page
Powered by GitBook
On this page
  • Microsoft LAPS directory permissions
  • BitLocker recovery directory permissions
  • Import members of the local administrators group from computers
  • Import user-to-computer mapping from a CSV file
  • Import authorization targets from the Lithnet LAPS web app

Was this helpful?

  1. Configuration

Importing authorization rules

PreviousIntegrated Windows authenticationNextImporting BitLocker permissions

Last updated 2 years ago

Was this helpful?

Access Manager provides several different mechanisms for creating authorization rules by discovering and importing permissions from external sources.

Microsoft LAPS directory permissions

If you have an existing Microsoft LAPS deployment, you can search your directory for those users and groups you've assigned permission to read the Microsoft LAPS attribute, and convert those permissions to Access Manager authorization rules.

BitLocker recovery directory permissions

If you have delegated permissions to read BitLocker recovery passwords in your environment, you can search your directory for users and groups with existing permissions to read the BitLocker attributes, and convert those permissions to Access Manager authorization rules.

Import members of the local administrators group from computers

Access Manager can remotely connect to computers and obtain the list of members of the local administrators group of each computer, and consolidate that into a set of authorization rules.

Import user-to-computer mapping from a CSV file

You can prepare a CSV file of mappings between users and computer and Access Manager can consolidate that list into a set of authorization rules.

Import authorization targets from the Lithnet LAPS web app

If you had the Lithnet LAPS Web App installed (the predecessor to Lithnet Access Manager), you can import your target rules and notifications from the web.config file.

Importing Microsoft LAPS permissions
Importing BitLocker permissions
Importing local administrators group membership
Importing mappings from a CSV file
Importing rules from Lithnet Laps web app