This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Multiple Instances related query in TPAM

We have added multiple domain instances in our TPAM in admin interface -> system status settings -> External authentication->WinAD config-

Instance names are vmware.com and vmwtest.com

we added vmwtest.com system entry in active directory platform section

we would like add vmware.com systems with vmware.com domain functional account and vmwtest systems with vmwtest domain functional account.

In connection Tab -> Use domain account section -> we should be able to see both domains functional accounts.

Please advise how can we complete this configuration.

Appreciate your support on this.

Thank you

chiru

Parents
  • Hi Chiru

    I think you are mixing up external authentication settings which are used to allow users who authenticate to TPAM with the configuration of the platform type of Windows AD.

    When you add a system with the windows ad platform type it will have a functional account that it will use on that domain and that domain alone.

    It will not reference any of the domains you configure in the external authentication section. The only place you will see these domains is when you add a user who is going to use the domain to authenticate to the TPAM solution.

    I hope this helps.

    Tim

Reply
  • Hi Chiru

    I think you are mixing up external authentication settings which are used to allow users who authenticate to TPAM with the configuration of the platform type of Windows AD.

    When you add a system with the windows ad platform type it will have a functional account that it will use on that domain and that domain alone.

    It will not reference any of the domains you configure in the external authentication section. The only place you will see these domains is when you add a user who is going to use the domain to authenticate to the TPAM solution.

    I hope this helps.

    Tim

Children
  • Hi Tim,

    Can we add multiple domain systems and accounts in the same TPAM instance. Please confirm

  • Hi Chiru

     

    Yes. You can add as many AD’s as you like. You just add each domain as a separate system with the platform type of windows ad. Each then has its own functional account and will allow you to perform all password or session functions.

     

    Tim

  • In connection Tab -> Use domain account section -> we are only able to see vmware.com domain service accounts not service accounts related to vmwtest.com in the drop down list.

    Please advise if we need to update any configuration to get both domain functional accounts in that drop down list. 

    Thank you very much for your help. 

  • Hi Chiru

    Not following you.

    Have you added 2 separate domains with the windows ad platform type?

    Haven you added a functional account that exists in the domain for each of these systems?

    Why are you looking for accounts that exist in another domain?

    These domain systems are completely separate just like any other windows system you have. You would not expect to see local accounts on one system on another. TPAM is treating a domain just like any other system.

    What is it you are trying to achieve at the here?

    Tim