What is a one sentence summary of your feature request?
Access to password history for managed account should be provide
Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.
In disaster revovery scenario, servers might be restore from the backup with an old password. It means the PAM password which has been rotated and the restore password are not in sync anymore. In order to connect to the server with a local admin user one needs to know the old password, set at the time of the backup.
How do you currently solve the challenges you have by not having this feature?
Not at all. It is a risk for most companies. You could have a disabled AD account in the list of local administrator but the solution suggests that networking and AD is working which is not always the case.