Which type of account does not require credentials when using PSM?

The type of account that does not require credentials when using Privileged Session Manager (PSM) is unmanaged accounts connecting through PSM. This is because unmanaged accounts are not stored or managed by the CyberArk Vault, and the PSM can establish a session without needing to authenticate the user or application against stored credentials.

Unmanaged accounts typically refer to accounts that are not centrally controlled or do not have corresponding records in the CyberArk Vault. When using PSM to connect to these unmanaged accounts, the process does not rely on retrieving and presenting stored credentials, thus allowing access without requiring the user to provide additional authentication credentials.

In contrast, managed accounts in the CyberArk Vault are designed to require credentials for secure and controlled access. Similarly, accounts stored on local machines are also managed resources typically subject to strict credential requirements, as they are bound to local security policies. Service accounts often have elevated privileges and are generally managed within the CyberArk environment, requiring credentials for secure access and management.