Privileged Access Management by Gartner has the following subcategories:

• Shared access password manager (SAPM)
• Superuser password manager (SUPM)
• Privileged session manager (PSM)
• Application access password manager (AAPM)

By centralizing privileged credentials in one place, PAM systems can ensure a high level of security by handling real-time access requests, approval/disapproval workflow's, analytics, reporting, monitoring and suspicious activity policies.

Organizational Goals

1. Comply with all applicable Laws and Regulations pursuant to the business
2. Comply with all applicable Standards pursuant to the business
3. Minimize access to resources only needed for Job Role
4. Credential Check In/Out, One Time Password & Monitor/Record Privileged Accounts
5. Higher security standards by using Multi-Factor Authentication based on log in policies and location
6. Lower the cost and ease administration of systems
7. Minimize the cost of user password resets/admin
8. Analytics and reporting in real-time

Goals of Privileged Access Management (PAM)

1. We want PAM to control and monitor high risk privileged accounts (HR, Payroll, Admin, Root)
2. Check in/out credentials with session password not available to user
3. Have a time limit on use of high risk privileged accounts
4. Session termination for "rogue" commands not authorized to perform
5. Have the password automatically changed after each use
6. Provide ability to request/monitor real time access request to appropriate person for approve/disapproval
7. Provide video/key board strokes recording of privilege account session

Accomplished by using software that integrates with the enterprise identity store(s) and the other enterprise resources desired to under PAM access control