Generally speaking, Privileged Access Management (PAM) is an umbrella term that would include Privileged Account Management (also abbreviated PAM, and often used interchangeably, despite some key differences). Privileged access may specifically refer to a point of access (such as an entitlement or enterprise role) that grants elevated permissions. Typically, an account dedicated to facilitating privileged access may be considered a privileged account, but generally any account that has privileged access assigned to it may also be denoted as a privileged account. However, since a best practice is to only assign privileged access to specially designated privileged accounts, typically users would not have any privileged access assigned to their regular or non-privileged accounts.
SailPoint platforms can denote individual points of access as privileged, so that they may be governed appropriately. Similarly, SailPoint platforms offer account management features, regardless of whether those accounts are denoted as privileged or not. However, our platforms are not PAM solutions per se, and there are specific PAM vendors (such as CyberArk, BeyondTrust, Delinea, etc.) that offer unique features for managing privileged accounts (such as brokering access to these accounts and recording/auditing the usage of these accounts).
SailPoint customers can integrate our IAM/IGA platforms with existing PAM solutions in order to increase visibility and governance of privileged accounts and access from an identity-centric point of view, and introduce additional automation of related processes. For more information, refer to the following resources:
