Get Started!

Xton Access Manager (XTAM) can quickly find records that match XTAM search criteria. By default, XTAM search query finds records by record name, description and a host name on a record. However, XTAM also uses special conventions to look for special record parameters such as permissions, record types or connection method.

XTAM Search Parameters

This article discusses different queries that could be executed using XTAM search bar located on the record list screen.

XTAM Search bar screenshot

Records Visibility

Note that XTAM will only display records a currently logged in user has permission to view. However, some of the records a user can view might come from folders the current user has no access to browse. In this case user might see records they cannot browse through regular folder hierarchy. For quick access to such records user might use search again. Alternatively, users can “favorite” these records to access them through Favorites link in the application menu. Yet another way to access visible records located in invisible folders is to use Shared with Me link to review items shared with the current user from other users.

XTAM Search Criteria Options

1
Search by record name, description or host name.

Type a search criteria in the XTAM search bar, click Search button to find records that contain the search criteria in record name, description or a host name.

2
Clear search.

Remove search criteria from XTAM search box, click Search button to return to the folder hierarchy browser.

3
Access Search.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all records the provided USER can view:

acl:USER
a:USER
permissions:USER

4
Find items with unique permissions.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all folder and records with unique permissions:

acl:unique
a:unique
permissions:unique

Note that when folder or record has unique permissions changing parmissions of the parent of this record does not affect permissions of this item. It is much easier to manage items that inherit permissions from their parents because permissions could be managed in fewer places. Design the permission architecture so that items will naturally fall into the folder hierarchy with few uniquely permissioned folders.

5
Find records with unique formula.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all records with unique password formula:

formula:unique
f:unique

By default, record type defines password formula for all records of this type. However, it is possible to make a password formula unique for a record to define record specific formula complexity. When inheritance of the password formula from the record type is broken the change of the password formula on the record type level does not affect the complexity formula of the record with unique password formula. This query is a quick way to find records with unique password formula to understand the reason behind this uniqueness.

In the situations when many records have similar unique password formula, it might be easier to create a special record type for the records with specific password formula to manage formula in a single place for multiple records.

6
Find records with unique task set.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all records with unique set of tasks:

tasks:unique
tm:unique

By default, record type defines task set for all records of this type. However, it is possible to make a task set unique for a record to define record specific tasks with the scripts and event based execution policy. When inheritance of the task set from the record type is broken the change of the tasks on the record type level does not affect the tasks of the record with unique tasks. This query is a quick way to find records with unique task set to understand the reason behind this uniqueness.

In the situations when many records have similar unique tasks (including scripts and execution schedule), it might be easier to create a special record type for the records with specific tasks to manage tasks in a single place for multiple records.

7
Find records by connection type.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all records with specific connection type such as RDP, SSH or RemoteApp:

session:TYPE
sm:TYPE

Below are some examples of such query:
Query sm:RDP will find all RDP records while sm:RemoteApp will find all RemoteApp records.

8
Find records by record type.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all records with selected record type:

type:TYPE
t:TYPE

All XTAM records are of a certain record type. This query helps to identify all records of a specified record type.

Below are some examples of such query:
Query type:Windows Host will find all Windows Host records while t:Unix Host will find all Unix Host records.

9
Find folders.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all folders visible to the current user by folder name and description criteria:

folder:query
folders:query

Below are some examples of such query:
Query folders:auto will find all folders with name or description containing the substring auto

10
Find referencing records.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all records visible to the current user by referencing a record found by provided name, description, host and indexed metadata criteria:

reference:query
ref:query

Below are some examples of such query:
Query ref:Domain Admin will find all records referencing records found by Domain Admin criteria.

11
Find records using specified record as a shadow account.

Type one of the search queries below to the XTAM Search bar and then click Search button to find all records visible to the current user using a record found by provided name, description, host and indexed metadata criteria as a shadow account for their task execution or password reset scripts:

shadow:query

Categories: xton

Mark Klinchin

Mark Klinchin

I am Co-Founder and CEO of Xton Technologies. I am interested in computers, software development, cyber security, content management, photography, image processing and mathematics.

Related Posts

xton

XTAM API VBScript Example

Below is a small example of calling XTAM API using VBScript. Majority of this example are the functions that parse JSon responses from XTAM API and encode parameters. Scroll down to the section “XTAM API Read more…

xton

Privileged Access Management Deployment Architecture

The article discusses a typical mid-size deployment architecture of a Privileged Access Management system. Architecture The diagram below illustrates typical High-Availability (HA) setup of an Xton Privileged Access Management (XTAM) system with Disaster Recovery (DR) Read more…

xton

High Availability Configuration for XTAM Deployments

XTAM High Availability (HA) option is deployed using two or more XTAM nodes with the same software connected to a single database and balancing HTTP traffic using a Load Balancer or Virtual IP technologies. XTAM Read more…

Copyright © 2018 Xton Technologies, LLC. All rights reserved.