Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

How to create an Automation Policy to randomize managed user accounts that have been disclosed in the past 24 hours

Configure Randomization task

First determine if you will use the default randomization task or require a new task

  • Default task is applicable if you are randomizing the local Administrator account, if so this section can be skipped
  • All other accounts will require a specific task to be created

If you need to create a randomization task for your specific user follow these steps:

  1. Navigate to Tasks > Jobs and Tasks > Arellia > Client Tasks > Local Security
  2. Right click on the Local Security folder and select New > Task
  3. Select Arellia > Client Tasks > Local Security > Randomize Local User Account as the task type
  4. Select the User radio button and specify the user account name to be randomized
  5. Configure any other desired task parameters (including the task name and description) and click OK
Create Automation Policy
  1. Download the report Current disclosed passwords - Over 1 day.xml
  2. Search the XML for the string ManagedAdmin and replace it with the name of your provisioned account you wish to randomize
  3. In the Arellia Security Manager console navigate to Reports > Local Security > Password Disclosure (a different location can be used if desired)
  4. Right-click on the Password Disclosure folder and select Import
  5. Import the downloaded Current disclosed passwords - Over 1 day.xml file
  6. Navigate to Policies > Automation Policies
  7. Click on "New Policy" and give the automation policy a name, such as "Randomize passwords disclosed in past 24 hours"
  8. Schedule the policy to run every day, at a time when you would not be expecting disclosures to occur (for example 4:00 am)
  9. Select Report as the Data Source for the policy
  10. Click the pencil icon to select "Current disclosed passwords - Over 1 day" as the report to use
  11. Set the Evaluation Rule to Run for non-empty data
  12. Select the required randomization task
    • If randomizing local administrator account use the Arellia > Client Tasks > Local Security > Randomize Local Administrator User Account Password task
    • Otherwise if using a different account use the randomization task created in the previous section
  13. Click Edit input parameters and for the Selected Devices parameter specify that _ComputerGuid list should be used

You have now successfully created the required Automation Policy. If desired you can click the Test Automation Policy button which will force the policy to evaluate and start the randomization task. You can view the Task Status under the Tasks tab in the console to see how many computers are running the randomization and their current status:

  • No labels