Setting database‑specific policies

You can set the following policy for individual databases or database sets:

Checkout lifetime

To set database-specific policies:

  1. In the Admin Portal > Resources > Databases to display the list of databases.
  2. Select the database to display the database-specific details.
  3. Click Policy.
  4. Select settings for any or all of the database policies.
  5. Click Save.

For more information about how to set the databases-specific policies, click the policy link or the information icon in the Admin Portal. If you set polices globally, the global policies apply by default to all database accounts except where you have explicitly defined a database-specific policy.

Checkout lifetime

Type the maximum number of minutes administrators are allowed to have a database account password checked out. After the number of minutes specified, the Zero Trust Privileged Access Service automatically checks the password back in. The minimum checkout lifetime is 15 minutes. If the policy is not defined, the default checkout lifetime is 60 minutes.

You can extend the checkout time for a password as long as you do so before the initial checkout period expires. For example, if the maximum checkout lifetime is 60 minutes and you extend the checkout time before the 60 minute period is over, the password expiration is reset to the 60 minute checkout lifetime. For more information about configuring the Checkout lifetime policy, see Extending the password checkout time.