Privileged Access Management (PAM) functionality in the Keyfactor API
An API is a set of functions to allow creation of applications. Keyfactor offers the Keyfactor API, which allows third-party software to integrate with the advanced certificate enrollment and management features of Keyfactor Command. allows for configuration of third party or Keyfactor Command local PAM providers to secure certificate stores and provide access credentials for certificate authorities, workflows, and other functions. Third-party PAM functionality is provided using custom PAM extensions. Keyfactor provides several PAM extensions on the publicly-facing Keyfactor GitHub:
The PAM component of the Keyfactor API includes methods necessary to programmatically create, delete, edit, and list PAM providers and PAM provider types. PAM provider types must be created before PAM providers for them can be created. Methods are also included for managing local PAM secrets.
Table 581: PamProviders Endpoints
| Endpoint | Method | Description | Link |
|---|---|---|---|
| / | GET | Returns a list of all the configured PAM providers. | GET PAM Providers |
| / | POST | Creates a new PAM provider. | POST PAM Providers |
| / | PUT | Updates a PAM provider. | PUT PAM Providers |
| /{id} | GET | Returns information for the specified PAM provider. | GET PAM Providers ID |
| /{id} | DELETE | Deletes a PAM provider. | DELETE PAM Providers ID |
| /Types | GET | Returns a list of all available PAM provider types. | GET PAM Providers Types |
| /Types | POST | Creates a new PAM provider type. | POST PAM Providers Types |
| /Types | GET | Returns the PAM provider type with the specified ID. | GET PAM Providers Types ID (v2) |
| /Local/{providerId}/Entries | GET | Returns information for the specified local PAM provider secret. | GET PAM Providers Local ID Entries |
| /Local/{providerId}/Entries | POST | Creates a new local PAM provider secret. | POST PAM Providers Local ID Entries |
| /Local/{providerId}/Entries | PUT | Updates a local PAM provider secret. | PUT PAM Providers Local ID Entries |
| /Local/{providerId}/Entries | DELETE | Deletes a local PAM provider secret. | DELETE PAM Providers Local ID Entries |
Was this page helpful? Provide Feedback