Integrating PAM360 with AI for Intelligent Insights

PAM360 brings AI-driven capabilities that help administrators quickly analyze key activity patterns and identify potential risks associated with privileged access. By offering AI capabilities for critical functions, PAM360 helps reduce manual effort, improve access governance, and adapt to evolving security demands across diverse environments. This document outlines the detailed steps to integrate PAM360 with OpenAI and leverage its capabilities for intelligent insights to enhance privileged access management. It covers the following topics:

1. Roles and Permissions
2. Supported Capabilities
3. Integration Steps

1. Roles and Permissions

By default, users with the administrator type user role can manage AI integrations and generate AI insights for the supported functionalities in PAM360. Additionally, PAM360 allows administrators to configure custom user roles with the following privileges to manage the AI integrations and generate AI insights using the integrated AI platform:

1. Manage AI Integrations - Navigate to Admin >> Customization >> Roles >> Add Role >> AI-Powered Insights, and enable the custom role Manage AI Integrations. Enabling this privilege will allow the users to enable, manage, and disable AI integrations with PAM360.
2. Generate AI Insights - Navigate to Admin >> Customization >> Roles >> Add Role >> AI-Powered Insights, and enable the custom role Generate AI Insights. Enabling this privilege will allow the users to generate AI insights for the supported functionalities.
   

2. Supported Capabilities

PAM360 integrates with OpenAI to offer intelligent insights into various aspects of privileged access management. The integration offers the following AI capabilities to enhance privileged access management through contextual decision-making:

• AI Summaries for Recorded Sessions
• Risk Remediation for Cloud Entitlements

2.1 AI Summaries for Recorded Sessions

PAM360 leverages OpenAI's natural language processing (NLP) capabilities to automatically generate concise and intelligent summaries of recorded SSH and Telnet sessions. These summaries offer a quick overview of all the commands executed by the user and help administrators quickly understand the intent and actions carried out during each session without manually reviewing the full-length session recordings. This capability saves time and highlights any suspicious activity or deviation from standard access behavior, aiding faster incident response and forensic analysis.

Explore this link for more details about generating session summaries for recorded sessions using AI.

2.2 Risk Remediation for Cloud Entitlements

In cloud environments, where identities are often assigned excessive privileges, PAM360 uses OpenAI to provide intelligent insights to remediate the risks associated with cloud identities. Alongside PAM360’s built-in remediation suggestions, AI-based remediation suggestions are now available, offering additional flexibility and context-driven recommendations. The integration offers IAM policy recommendations that help revoke excessive privileges to remediate these risks, thereby allowing administrators to enforce least-privilege access policies more effectively to improve the security posture and reduce the attack surface on cloud identities.

Administrators can also generate policy remediation summaries for the recommended IAM policies suggested by PAM360 and OpenAI for an excessive privilege risk associated with an identity. These summaries highlight the differences in the currently attached and recommended IAM policies and specify how the suggested policy ensures a least privilege approach.

Explore this link for more details about generating IAM policy suggestions to remediate the risks associated with the Identity and to generate policy remediation summaries that highlights how the recommended policy remediates the risk of excessive privileges to the identity using AI.

3. Integration Steps

Follow these steps to integrate OpenAI with PAM360 to unlock AI-powered insights across various functionalities within the application:

1. Navigate to Admin >> Integrations >> AI-Powered Insights.
2. On the AI-Powered Insights page, click the Enable button below the OpenAI logo.
   
3. In the OpenAI Configuration window that appears, enter the following details:
• Enterprise API Key - Enter the API key generated on the OpenAI website. Explore this link for more details.

Note: You should bring your own enterprise API key. ManageEngine PAM360 does not include or provide an enterprise API key as part of the product license.

• AI Model - Select the desired enterprise-licensed OpenAI model to generate intelligent insights from the displayed options. Currently, PAM360 supports the following OpenAI models, using which you can generate intelligent insights: GPT-3.5 Turbo, GPT-4, GPT-4 Turbo, GPT-4o mini, GPT-4o.
  
• Allow OpenAI to access the PAM360 features - Select the specific AI-powered functionalities within the supported modules, such as cloud entitlements and remote sessions, you want to enable in PAM360.
1. Cloud Entitlements
• Policy Generation - Enable this check box to use OpenAI to generate recommended policy suggestions for an excessive privilege risk associated with a cloud identity.

Note: The currently attached policy and identity usage behavior of the selected identity will be analyzed by OpenAI to suggest a least-privilege policy.

• Policy Summary - Enable this check box to generate a policy remediation summary for an excessive privilege risk associated with an identity.

Note: The selected OpenAI model compares the previously attached and currently suggested AWS inline policies to summarize key differences and highlight how excessive privileges are remediated to ensure that only just enough permissions are granted.

2. Remote Sessions
• Recorded Legacy SSH Session Summary - Enable this checkbox to use the selected OpenAI model to generate a summary for recorded legacy SSH sessions.
• Recorded Telnet Session Summary - Enable this checkbox to use the selected OpenAI model to generate a summary for recorded Telnet sessions.

Note: The recording may include user inputs, outputs, and actions performed by the user, which will be analyzed by OpenAI to generate an insightful summary.

4. After entering the required details, click Enable to integrate OpenAI with PAM360 successfully.
5. On the Open AI Data Privacy Notice that appears, read and approve the terms and conditons and click the Agree button to integrate OpenAI with PAM360 for the selected features.
   

You have now successfully integrated OpenAI with PAM360 to generate intelligent insights for the preferred features. After integration, you can edit the configuration at any time or disable the integration directly from the AI-Powered Insights page.