We are getting ready to deploy a PAM solution and were wondering if root actually does anything on a web gateway. Does it run any processes, jobs, etc. that would be disrupted if we scheduled a password change?
Solved! Go to Solution.
@clath13 We rotate our root and admin passwords with some frequency and haven't noticed anything breaking on the SWGs as of yet. We do it using automation leveraging a PAM solution. It works great for us and saves us the time of having to change them manually.
Hello @clath13
while most mwg processes are running as a restricted mwg/mwgc user, some processes are running as a root user, for example mwg-trap and mwg-monitor. By default there isn't any process that require a root password to run.
Maybe somebody from SkyHigh can confirm if WG still supported when PAM (like a CyberArk or similar) is used.
@clath13 We rotate our root and admin passwords with some frequency and haven't noticed anything breaking on the SWGs as of yet. We do it using automation leveraging a PAM solution. It works great for us and saves us the time of having to change them manually.
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.
Thousands of customers use our Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership: