Get Started!

Xton Access Manager (XTAM) can quickly find records that match XTAM search criteria. By default, XTAM search query finds records by record name, description and a host name on a record. However, XTAM also uses special conventions to look for special record parameters such as permissions, record types or connection method.

XTAM Search Parameters

This article discusses different queries that could be executed using XTAM search bar located on the record list screen.

XTAM Search bar screenshot

Records Visibility

Note that XTAM will only display records a currently logged in user has permission to view. However, some of the records a user can view might come from folders the current user has no access to browse. In this case user might see records they cannot browse through regular folder hierarchy. For quick access to such records user might use search again. Alternatively, users can “favorite” these records to access them through Favorites link in the application menu. Yet another way to access visible records located in invisible folders is to use Shared with Me link to review items shared with the current user from other users.

XTAM Search Criteria Options

1
Search by record name, description or host name.

Type a search criteria in the XTAM search bar, click Search button to find records that contain the search criteria in record name, description or a host name.

2
Clear search.

Remove search criteria from XTAM search box, click Search button to return to the folder hierarchy browser.

3
Access Search.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all records the provided USER can view:

acl:USER
a:USER
permissions:USER

4
Find items with unique permissions.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all folder and records with unique permissions:

acl:unique
a:unique
permissions:unique

Note that when folder or record has unique permissions changing parmissions of the parent of this record does not affect permissions of this item. It is much easier to manage items that inherit permissions from their parents because permissions could be managed in fewer places. Design the permission architecture so that items will naturally fall into the folder hierarchy with few uniquely permissioned folders.

5
Find records with unique formula.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all records with unique password formula:

formula:unique
f:unique

By default, record type defines password formula for all records of this type. However, it is possible to make a password formula unique for a record to define record specific formula complexity. When inheritance of the password formula from the record type is broken the change of the password formula on the record type level does not affect the complexity formula of the record with unique password formula. This query is a quick way to find records with unique password formula to understand the reason behind this uniqueness.

In the situations when many records have similar unique password formula, it might be easier to create a special record type for the records with specific password formula to manage formula in a single place for multiple records.

6
Find records with unique task set.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all records with unique set of tasks:

tasks:unique
tm:unique

By default, record type defines task set for all records of this type. However, it is possible to make a task set unique for a record to define record specific tasks with the scripts and event based execution policy. When inheritance of the task set from the record type is broken the change of the tasks on the record type level does not affect the tasks of the record with unique tasks. This query is a quick way to find records with unique task set to understand the reason behind this uniqueness.

In the situations when many records have similar unique tasks (including scripts and execution schedule), it might be easier to create a special record type for the records with specific tasks to manage tasks in a single place for multiple records.

7
Find records by connection type.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all records with specific connection type such as RDP, SSH or RemoteApp:

session:TYPE
sm:TYPE

Below are some examples of such query:
Query sm:RDP will find all RDP records while sm:RemoteApp will find all RemoteApp records.

8
Find records by record type.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all records with selected record type:

type:TYPE
t:TYPE

All XTAM records are of a certain record type. This query helps to identify all records of a specified record type.

Below are some examples of such query:
Query type:Windows Host will find all Windows Host records while t:Unix Host will find all Unix Host records.

9
Find folders.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all folders visible to the current user by folder name and description criteria:

folder:query
folders:query

Below are some examples of such query:
Query folders:auto will find all folders with name or description containing the substring auto

10
Find referencing records.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all records visible to the current user by referencing a record found by provided name, description, host and indexed metadata criteria:

reference:query
ref:query

Below are some examples of such query:
Query ref:Domain Admin will find all records referencing records found by Domain Admin criteria.

11
Find records using specified record as a shadow account.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all records visible to the current user using a record found by provided name, description, host and indexed metadata criteria as a shadow account for their task execution or password reset scripts:

shadow:query

12
Precise search option to locate exact record match.

Exact search option to only find records that match the entered search criteria precisely without an automatic assumption of wildcard-based search. This way, the search initiated for 10.0.0.1 will not display 10.0.0.12 or 110.0.0.1 records. To initiate such a search, use enclosing double quotes around search criteria.

“10.0.0.1”

Precise search allows wildcard % specification in the certain position of the criteria. For example, the following criteria will search for all records that start with the provided string:

“10.0.0.1%”

13
Find recently created records.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all recently created records (note that search criteria new: without qualified will default to records created during last hour):

new:hour
new:day
new:week
new:month
new:

14
Find records with associated anonymous links.

Type the search query below to the XTAM Search bar and then click Search button to find all records that have associated anonymous links. you can use Audit Log report to review historical data about sharing records using anonymous links including link authors, terms and viewers but the search query below will list records with the currently associated links.

alinks:

Categories: xton

Mark Klinchin

I am Co-Founder and CEO of Xton Technologies. I am interested in computers, software development, cyber security, content management, photography, image processing and mathematics.

Related Posts

xton

Configuring Windows Server NLB for Multi-Node Deployment

Configuring Windows Server NLB for Multi-Node Deployment Architecture This article discusses details of Windows Network Load Balancer (NLB) configuration to balance two or more XTAM Server nodes. Earlier we discussed XTAM Server multi-node architecture built Read more…

Industry

The Challenge of Multi-Factor Authentication and Shared Accounts

Recently, I wrote about the importance of combining multi-factor authentication (MFA) and privileged access management. According to 2018 Global Password Security Report, 45% of organizations are already using two-factor authentication (2FA) and the 451 Group Read more…

xton

KuppingerCole Analyst Executive View of XTAM

As Xton Access Manager (XTAM) continues to grow in the Privileged Account Management space we are briefing popular analyst firms such as Gartner, KuppingerCole, Forrester and others about our capabilities and product roadmap.  If you Read more…

Copyright © 2019 Xton Technologies, LLC. All rights reserved.