Individual domains can be viewed by clicking Resources > Domains. The Domains list includes all of the Active Directory domains available for you to manage that you have added to the Privileged Access Service.
You can populate this list automatically for selected domains by running discovery jobs. Discovery enables you to create a profile to identify the domains in which you are interested, then scan the network for domains that match the criteria you have specified. You can also add domains without running discovery jobs by adding them manually.
You can also manage domains by organizing them into groups. Organizing domains into logical domain sets simplifies management and reporting for set members.
If you are a member of a role with the appropriate privilege management rights, you can view, add, modify, or delete individual domains in the Domains list or collections of member domains in the Sets list. If you are the owner of a domain or a domain set because you added it to the Privileged Access Service, you can grant permissions to other users, groups, and roles to work with the domain or domain set you own.
For more information about adding and managing domains and Active Directory accounts, see the following topics:
- Planning to add domains and domain accounts
- Adding a domain
- Adding domain sets
- Viewing and searching domains
- Selecting and updating a domain
- Setting domain administrative accounts
- Adding Active Directory domain accounts
- Viewing domain account information
- Logging on to a domain computer
- Selecting the connectors to use
- Setting domain-specific policies
- Setting domain-specific advanced options
- Viewing activity for a domain
- Setting domain-specific permissions
- Deleting a domain
- Modifying domain sets
- Management port for password operations
For information on setting up zone role workflow, see Managing zone role assignment requests.