Importing authorization rules
Last updated
Was this helpful?
Last updated
Was this helpful?
Access Manager provides several different mechanisms for creating authorization rules by discovering and importing permissions from external sources.
If you have an existing Microsoft LAPS deployment, you can search your directory for those users and groups you've assigned permission to read the Microsoft LAPS attribute, and convert those permissions to Access Manager authorization rules.
If you have delegated permissions to read BitLocker recovery passwords in your environment, you can search your directory for users and groups with existing permissions to read the BitLocker attributes, and convert those permissions to Access Manager authorization rules.
Access Manager can remotely connect to computers and obtain the list of members of the local administrators group of each computer, and consolidate that into a set of authorization rules.
You can prepare a CSV file of mappings between users and computer and Access Manager can consolidate that list into a set of authorization rules.
If you had the Lithnet LAPS Web App installed (the predecessor to Lithnet Access Manager), you can import your target rules and notifications from the web.config file.