Skip to main content

How do I add, or edit a shared account?

Krista Foisy
  • Updated
  • ~ minute read

Shared accounts in Evo are known as Elevated Access accounts.

An elevated, or privileged access account is an account that has more privileges than ordinary users. The elevated account, might be able to install/remove software, upgrade operating systems, or modify system/application configuration. They might also have access to files that are not accessible to a regular user.

How to add a shared directory account

Shared elevated access accounts created from a directory, will only be possible for an Active Directory (On-Premise or Azure) that has been connected to sync with Evo.

Didn’t enable the new account(s) for password rotation? Not to worry, you can do that at any time, see How do I enable, or disable password rotation?

  1. From the top navigation, click Professional Services.
  2. Click Privileged Access Management.
  3. Click Elevated Access.
  4. With the Shared Accounts tab selected. In the displayed list of tenants, find the one the new shared account should be added. Click the tenant’s name.
  5. Click Add Shared Accounts.
  6. Click Select from Synced Directory.
    Shared-Directory.png
  7. In the displayed list of directories, find the one you want to associate. Select the radio button for the directory.
  8. Click Next Step.
  9. Enter in the email address of the user. Once located click Add.
  10. Skip if the correct user has been applied. If you’ve selected the wrong user, hover over the email address and click the trash can to delete. Repeat step 10 to add the correct user(s).
  11. Click Next Step.
  12. Optionally, switch the toggle to enable password rotation for the new account.
  13. If you have toggled password rotation on.
    1. Select the rotation frequency:
      1. Hours: Use the slider to select the rotation frequency. Anywhere between 1-hour to 24-hours.
      2. Days: Use the slider to select the rotation frequency. Anywhere between 1-day to 30-days.
        PasswordRotation.png
  14. Click Add Shared Accounts.

Repeat steps 5 to 14 for each tenant where a shared account is to be added.

Now that the new shared account has been created, you’ll need to assign it to a group for use. Refer to How do I add, edit, or delete an access group?

PurpleInfoIcon.png The first password rotation can take up to 10-minutes to complete. Until that happens the existing password you have set on the shared account remains in effect. Once the password rotation is completed. You’ll be able to view the new password from the table, refer to Can I see the shared account passwords?

How to manually add a shared account

Tip: To confirm the entered password is correct, click the eye (ClosedEye.png) in the password field to see what you’re typing in plain text. To hide the password, click the eye (OpenedEye.png) again.

  1. From the top navigation, click Professional Services.
  2. Click Privileged Access Management.
  3. Click Elevated Access.
  4. With the Shared Accounts tab selected. In the displayed list of tenants, find the one the new shared account should be added. Click the tenant’s name.
  5. Click Add Shared Account.
  6. Click Add Manually.
    Shared-Manual.png
  7. Fill in the appropriate detail
    1. Enter the email address or username for the shared account.
    2. Enter a password for the shared account.
    3. Optionally, enter a domain.
  8. Click Add Shared Accounts.

Repeat steps 5 to 8 for each tenant where a shared account is to be added.

Now that the new shared account has been created, you’ll need to assign it to a group for use. Refer to How do I add, edit, or delete an access group?

How to edit a shared account

Editing shared account is limited to the type of account that was added.

  • A shared account created from a synced directory you can update the password rotation frequency or enable/disable password rotation.
  • A manually created shared account, you can update the shared account, password, and domain.
  1. From the top navigation, click Professional Services.
  2. Click Privileged Access Management.
  3. Click Elevated Access.
  4. With the Shared Accounts tab selected. In the displayed list of tenants, find the one the new shared account should be added. Click the tenant’s name.
  5. Click the edit pencil at the end of the row for the shared account to be edited.
  6. Make the edits you want.
  7. Click Edit Shared Account.

Related articles

Comments

0 comments

Please sign in to leave a comment.