DocumentationRelease Notes
Log In
Documentation

Managed systems on Pathfinder

Suggest Edits

What is a managed system?

A managed system is any system being managed by Password Safe. A managed system can be an asset, database, directory, or cloud platform. By default, all managed systems are listed on the Managed Systems page, as the Smart Group filter is set to the built-in Smart Group All Managed Systems. You can filter the systems listed in the grid by selecting a different Smart Group from the Smart Group filter list.

Managed systems can be manually created from the Managed Systems page, as well as from the Assets page. Managed systems can also be added using Smart Rules.

How are managed systems useful?

Managed systems provide centralized control, security, and organization for various assets, databases, directories, etc.

How do I access managed systems?

To access the Managed Systems grid, log into Pathfinder, select Password Safe from your available products, and in the top left menu, select Managed Systems. You can also select the Managed Systems container card on the Password Safe Home page.

The Managed Systems page

  1. Filter dropdowns: Select an item in the filter dropdowns to filter information.
  2. Create New Managed System: Click to create a new managed system.
  3. Managed System grid: Displays information based on filter selections.
  4. Grid display preferences: Set display preferences on the Assets grid using the following options represented by icons above the grid:
    • Refresh: Refresh the grid display.
    • Download all: Download all assets in the grid to an Excel spreadsheet.
    • Columns Chooser: Select the columns to change the column headings and information displayed in the grid.
    • Grid Configuration: If available, choose the grid layout: Compact, Default, or Expanded.
    • Expand Grid: Enlarge the display area. When selected, the icon changes to Collapse Grid. Click it to collapse the grid back to its original display.

Work with managed systems

Managed systems can be manually created from the Managed Systems page, as well as from the Assets page. Managed systems can also be added using Smart Rules.

View managed system details

You can view details about the managed system, such as:

  • Identifying details, attributes, and policies
  • Managed accounts on the managed system
  • Smart Groups associated with the managed system
  • Accounts linked to managed accounts on the managed system
  • Public keys related to the managed system
  • Functional account for the managed system

View the details of a managed system as follows:

  1. From the Managed Systems page, click the vertical ellipsis for the managed system.
  2. Select Go to Advanced Details.
  3. Click through the tabs in the Advanced Details pane to view details on each topic.

ℹ️

Note

For managed systems that are linked to assets, you can click the View Asset link in the upper left to view the details of the asset. Click View Managed System to return the Advanced Details for the managed system.

Import an SSH Server key using a Smart Rule

You can import SSH Server keys from a host and accept the key on the Advanced Details for a managed system. Supported key types are RSA, DSA, and ECDSA. From the Smart Rules page, create an asset-based Smart Rule using Actions settings such as the below:

  1. Select Manage Asset Using Password Safe from the dropdown.
  2. Select a Platform that supports server keys, such as Cisco.
  3. Select the Functional Account.
  4. For the Key Enforcement Mode option, choose either Auto Accept Initial Key or Manually Accept Keys.
  5. Set the other settings as desired or leave as defaults.
  6. Add another action to Show Asset as Smart Group.
  7. Click Create Smart Rule.

Manage the SSH Server keys

After the Smart Rule processes, hosts with SSH Server keys are populated in the Smart Group you created.

An email notification is sent to the Administrators user group when a key is imported and the Key Enforcement Mode is set to Manually Accepted Keys. The email notifies the administrators that a fingerprint requires action, what asset the key is on, and also provides details about the fingerprint.

The Fingerprint Verification email template can be modified from Configuration > Privileged Access Management > Mail Templates.

Accept or deny a key

  1. From the Managed Systems page, click the vertical ellipsis for the managed system.
  2. Select Go to Advanced Details.
  3. Click the Server Keys tab.
  4. Click the vertical ellipsis for the server key you wish to work with.
    • If auto approved, no further action is required.
    • If manually approved, click Accept or Deny.
  6. After a key is accepted, from the Functional Accounts tab, click the Test Functional Account button to verify the key with the functional account.

Add a key manually

  1. From the Managed Systems page, click the vertical ellipsis for the managed system.
  2. Select Go to advanced details....
  3. Click the Server Keys tab.
  4. Click + Create New Server Key above the grid.
  5. Click Accept or Deny.
  6. Select a Key Type from the list and enter a Fingerprint and a Description.
  7. Click Create Key.
  8. After a key is added, from the Functional Accounts tab, click the Test Functional Account button to verify the key with the functional account.

ℹ️

Note

The fingerprint must be unique. An error message is displayed if the key is already imported.

Updated 1 day ago

©2003-2025 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.