To get the Axidian Privilege distribution, please contact Technical Support.


Before you begin the installation, prepare the configuration files.


  1. Download and unzip the Axidian Privilege archive to the management server.

  2. Login with Active Directory account and run PowerShell as administrator.

  3. Run the Indeed-PAM-Wizard.ps1 installation script.

  4. In the Select components window, check Management Server and click Next.
  5. In the next step, click Install and wait for the installation to finish.
    Click OK in the popup window.

  6. Place the prepared configuration files along the following paths:
    1. C:\inetpub\wwwroot\pam\core — core
    2. C:\inetpub\wwwroot\pam\idp — idp
    3. C:\inetpub\wwwroot\pam\mc\assets\config — mc
    4. C:\inetpub\wwwroot\pam\uc\assets\config — uc
    5. C:\inetpub\wwwroot\ls\targetConfigs — ls

    6. C:\inetpub\wwwroot\ls — AxidianPAM_2.9.0\indeed-pam-windows\ILS\clientApps.config

      If you are using a PostgreSQL database, you need to change the Type value from mssql to pgsql in the clientApps.config file in the <Target Id="Pam.DbTarget" Type="mssql"/> line.


  7. Navigate to the path: indeed-pam-tools\scripts, run PowerShell as administrator and run the ils-access-list.ps1 script.

  8. Add the CA certificate to your trusted root certificates.

  9. Add the prepared server certificate to your personal certificate store.

  10. In the Axidian Privilege distribution, navigate to the path: indeed-pam-windows\MISC\ConfigurationProtector and run PowerShell as administrator.

  11. Run the command:

     .\Pam.Tools.Configuration.Protector.exe generate-signing-cert


  12. Start Internet Information Services (IIS) Manager.

  13. Select Default Web Site, click Bindings....

  14. Click Add..., select Type: http, Port: 80, click OK.

  15. Click Add..., select Type: https, Port: 443, click OK.

  16. Choose prepared server certificate in SSL certificate, click OK.

  17. Click to Restart on the Manage Website section in the Default Web Site window.