(click on images for higher definition view)

pumservice flow diagramOrganizations using Privileged User Manager ® (“PUM”), may require PUM to exchange data with external computer systems.  This may be a requirement during set-up, when large amounts of information about privileged Users and Managed Servers have to be entered.  There may also be a dynamic requirement to continuously update PUM from an external data source, such as an HR system, user provisioning software, or an LDAP-based directory service if they be the authoritative source of user information.  Sometimes there is a requirement to selectively extract information from PUM, in particular the audit trail information held on the PUM Audit Servers.    

In addition to using the PUMAdmin web browser based user interface to manually enter and retrieve data, the end user organization may also use PUMService methods to add and extract that information. PUMService is a SOAP-based web service and is described in accordance with the Web Services Definition Language (WSDL).

In this way, the major data items in a PUM database can be created or extracted automatically, and be dynamically updated using authoritative data sources.   The following methods are provided as standard:

  • addUser
  • removeUser
  • addUserRole
  • removeUserRole
  • disableUser
  • getInactiveUsers
  • addManagedServer
  • removeManagedServer
  • addAccount
  • removeAccount
  • setAccountPassword
  • changeAccountAuthentication
  • searchSessionLogs
  • getSessionLog
  • searchAuditServerLogs
  • getAuditServerLog
  • searchAccessServerLogs
  • getAccessServerLog
  • searchDatabaseLogs
  • getDatabaseLogs