Hello Lukas,
Please make sure you have on your Windows Endpoint (where you have PAM SC Agent installed):
[HKLM\SOFTWARE\ComputerAssociates\AccessControl\PUPMAgent]
EnableLogonIntegration = 1
OperationMode = 1
[HKLM\SOFTWARE\ComputerAssociates\AccessControl\Common\AgentManager\Plugins\AccountManager]
OperationMode = 1
[HKLM\SOFTWARE\ComputerAssociates\AccessControl\Common\AgentManager\Plugins\PupmAgent]
OperationMode = 1
[HKLM\SOFTWARE\ComputerAssociates\AccessControl\Common\communication]
Distribution_Server = ssl://<ACTIVEMQSERVER>:61616
User Settings:
exu AMIPAM\testuser1 pupm_flags(use_original_identity,required_checkout)
(This can be setup as a Policy and pushed automatically to be created. The XUSER will be created upon first successful login but will not contain the required flags).
Target Application - Pertains to using a DOMAIN account
Domain Name - MATCHES how the XUser created above for Domain. i.e. if domain is AMIPAM put AMIPAM in the target application, NOT AMIPAM.company.com!!! Otherwise to PAM SC, this is a different user!
Moreover you need to configure in the PAM Policy to autologin as the user AMIPAM\testuser1 - but from what you show from seaudit I guess this is already the case in your case
Make sure you run the most recent version of PAM and PAM SC (i.e. as of now 3.2.4 and 14.1) since there were some issues identified in earlier versions.
See also these KBs
PAM 3.x: Does not work login integration with CA P - CA Knowledge
For the PAMSC login integration, is it required fo - CA Knowledge
PAM + PAMSC Login Integration Not Working - CA Knowledge
Should the issue remain please open a formal Support Case with us and we shall have a closer look.