Jump to content

Elevating Privileged Account For Testing Purposes


support
 Share

Recommended Posts

Issue:

Some customers can run into different issues relating to sync'ing active directory accounts in Passwordstate.  This can quite often be caused by custom permissions on AD Objects or containers.

 

Suggestion:

One way to quickly rule out if permissions are causing the issue, is to elevate the Passwordstate Privileged Account to be a Domain Administrator, and then try to reproduce the error.  To find and elevate the Privileged Account, please follow these steps below:

 

Step 1:

In Passwordstate, under Administration -> Active Directory Domains, open your domain and look for the Privileged Account being used:

2020-09-02_8-43-29.png

 

Step 2:

Again in Passwordstate, go to Administration -> Privileged Account Credentials, and open the Privileged Account you found in step 1.  Take notice of the account name:

2020-09-02_8-44-25.png

 

Step 3:

In Active Directory, open the account you found in Step 2, and add it to the Domain Admins Group:

2020-09-02_8-46-28.png

 

Now try to reproduce the issue you were originally having, and see if the problem persists.  If this resolves the issue try investigating the permissions on the AD object, or container where it resides, to see if you can work out why a normal account cannot query it.

 

Once this test has finished, we'd recommend removing the Domain Admin privileges from your account again.

 

Regards,

SUpport.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

×
×
  • Create New...