Privileged Access Management (PAM) functionality in the Keyfactor API
A set of functions to allow creation of applications. Keyfactor offers the Keyfactor API, which allows third-party software to integrate with the advanced certificate enrollment and management features of Keyfactor Command. allows for configuration of third party PAM providers to secure certificate stores and provide access credentials for certificate authorities, workflows, and other functions. PAM functionality is provided using custom PAM extensions. Keyfactor provides several PAM extensions on the publicly-facing Keyfactor GitHub:
The PAM component of the Keyfactor API includes methods necessary to programmatically create, delete, edit, and list PAM providers and PAM provider types. PAM provider types must be created before PAM providers for them can be created.
Table 514: PamProviders Endpoints
| Endpoint | Method | Description | Link |
|---|---|---|---|
| / | GET | Returns a list of all the configured PAM providers. | GET PAM Providers |
| / | POST | Creates a new PAM provider. | POST PAM Providers |
| / | PUT | Updates a PAM provider. | PUT PAM Providers |
| /{id} | GET | Returns information for the specified PAM provider. | GET PAM Providers ID |
| /{id} | DELETE | Deletes a PAM provider. | DELETE PAM Providers ID |
| /Types | GET | Returns a list of all available PAM provider types. | GET PAM Providers Types |
| /Types | POST | Creates a new PAM provider type. | POST PAM Providers Types |
| /Types | GET | Returns the PAM provider type with the specified ID. | GET PAM Providers Types ID (v2) |