Forum / Remote Desktop Manager - PAM Partners

Cyberark Privileged Access Solution

  • Create an Issue
  • Cancel

Current integration


We offer two credential entry types to get passwords that are stored in a Cyberark vault.

The first one is named Cyberark AIM and, as the name implies, it gets the passwords in a AIM server that typically resides in your own infrastructure. That being said, authorization is still performed against your PAS server, that means that this integration is not available offline.

The second one is simply Named Cyberark, it performs authorization, and also gets the credentials directly from the PAS. It reflects more closely the usage pattern of entry level customers of the PAS solution.

Our current limitation is that we cannot list credentials that one has access to in order to offer a list to pick from. This means that all credentials that you need to access, need to have a corresponding entry in RDM. We can work around that limitation by using the PACLI to extract a csv, which can then be imported in RDM.

Coming features

We are currently working on integrating the PSM, which would reduce the workload of sysadmins that have to handle creation and management of alternate shell commands in tens of entries. We will offer a mechanism, much like a gateway, which will create a single PSM server to a great number of sessions.

We recommend that you subscribe to new replies to this topic, as we will publish a notice when the feature can be tested. Please be advised that Cyberark must approve any integration before we can render it available to our community.

Best regards,



Maurice Côté

signaturesignature

Clock7 mths

Thanks for the update, any indication on how far we are away from the PSM/GW solution.

As a organization that uses both methods it would be great if there was a way to choose between methods (PSM vs GW) or give them a priority order?

Clock5 mths

Hello,

It turns out that another integration had been prioritized before this one, luckily it has just been completed. Engineering should start on this in the coming days.

Its a few days work, but intertwined with bug fixes and the daily whirlwind, it should be done in a release or two.

Sorry about that.



Maurice Côté

signaturesignature

Clock5 mths

We're also evaluating CyberArk PSM, and are using a RDM Enterprise version, so we're really keen on testing these new features as soon as they're coming out, please keep us posted.
Please also note that we are using different multifactor tools to access CyberArk PSM, including RSA tokens, so it would be great if we can combine those features. I'll post a separate feature request to create a credential type of RSA for that.

Clock5 mths

Hello,

we are almost ready to showcase our integration to Cyberark’s team. if they accept it as is, it should be a matter of weeks before the feature is delivered in a beta. I cannot say for sure when it will be available in a General Availability release though.

For RSA, we are at the initial phases of being able to work with them, and i mean just at signing their non-disclosure agreement. The whole process could takes months, can’t says for sure before we get access to their documents and platform.

Best regards,



Maurice Côté

signaturesignature

Clock5 mths

Thank you for the continued status updates! Look forward to that Beta more than you can imagine!

Clock5 mths

Has there been any progress in regards to the CyberArk PSM integration?

Clock4 mths

Hello,

The feature is currently going through the testing phase internally with the QA departement.

best regards,

Alexandre Roy

signaturesignature

Clock4 mths

I can see that the Beta have got some of this work now, Do we have some documentation on how to setup and use it?

Clock4 mths

@Anders Anderson,

The PSM feature is not available yet. We are still in the improvement process and the approval process from CyberArk.
We will post it here when it will be available and in which version of RDM.

Best regards,



Jeff Dagenais

OFFICE CLOSURE!
Although our various support queues will be monitored for emergencies, Devolutions' offices will be closed on June 24 and July 1st, 2019.

signaturesignature

Clock4 mths

Well I am running with version: 2019.1.3.0 and I have access to "CyberArk PSM Connection" and "CyberArk PSM Server".
Is this not the features your are working on?

or have it been released into the beta to soon?

Clock4 mths

Hello,

we need to get reviewed by Cyberark with production ready code, but we cannot call the feature as complete until it’s vetted by them.

i realize that our mistake was including it in the release notes, ill see what we can do about fixing that.

best regards



Maurice Côté

signaturesignature

Clock4 mths

Sorry looking for some clarification, does that mean the beta code is running in 2019.1.3.0? Or is the Feature still completely unavailable until the production ready code is released?

Clock4 mths

Hello,

You see the feature, it is there.

  • It's never been delivered, therefore has never been tested by a customer.
  • It hasnt been vetted. Cyberark's business team can request changes, they can even ask us to remove the integration.

It's not in Devolutions' DNA to withhold features only for our major releases. We typically have two major releases per year, which contain new features that require a lot of testing, or change the DB schema.


Throughout our minor releases, we do publish new features that have limited impact on the operations of our products.


The PSM integration, having never been published, therefore not being used by anyone, also not impacting the data access layer, nor the security system, fits that bill.

It will appear in our release notes when the business process has taken its course.


Best regards,



Maurice Côté

signaturesignature

Clock4 mths

Greetings,

I am being asked by management to get a date when the PSM feature may be available in a major release. Do you have a roadmap that I can share with them?

Clock3 mths

Hello,

The PSM integration has not being approved by CyberArk so it's not possible for us to release this integration in an official release.
Unfortunately, I cannot provide you any timeline regarding this.

Best regards,



Jeff Dagenais

OFFICE CLOSURE!
Although our various support queues will be monitored for emergencies, Devolutions' offices will be closed on June 24 and July 1st, 2019.

signaturesignature

Clock3 mths

Is there a new version that will have an updated integration in the works or something? Basically what does this mean?

Clock3 mths

Hello,

When RDM 2019 will became an official release and when the CyberArk PSM feature will be officially included, I will post in this thread with an available download link.
Unfortunately, I don't have an exact release date for the moment.

Best regards,



Jeff Dagenais

OFFICE CLOSURE!
Although our various support queues will be monitored for emergencies, Devolutions' offices will be closed on June 24 and July 1st, 2019.

signaturesignature

Clock3 mths

Hello,

Just a quick update to inform you that we are still working with Cyberark on getting approval. It turns out that we've had to initiate a process to switch from a virtualized environment provided by CyberArk, to an on-premises environment integrated with our Domain.

Setting up that environment is planned for next week.

Best regards,



Maurice Côté

signaturesignature

Clock2 mths