New Portal Office365

Hello,

Unfortunately, Websites like Office365, Gmail and others use a new form of authentication that our auto-filling mechanism cannot process.

You must use our Auto typing macro feature. Please have a look at these here;
https://help.remotedesktopmanager.com/settings_events_autotypingmacro.htm
https://help.remotedesktopmanager.com/howto_typingmacro.htm

Best regards,

Tks.
u have a video?

Hello,

I've attached to this post a functional session for you to use.


Best regards,

Hi, Tks Mark...
The macro works, but it inserts the text $PASSWORD$ instead of the password registered in the repository.

Hello,

Sorry about that. I forgot to mention that you must enable the option allow password in variable in the security tab within the settings of your session.



Also, if you use and Advanced data source like SQL, enable the allow password in Macro (send keys) option in Administration -> Data Source Settings -> Password Policy.




Best regards,

Great! tks...

Hi there,

But what about when you DO NOT want to have the password available to the staff who use RDM?

I mean, at that point, the password could easily be grabbed by one of our staff and pasted in a notepad/email... Feels like a plaster on a broken arm, don't you think?

@Gabriel,

Indeed, this is not the proper solution if you don't want your staff to know the password because they can put the focus in Notepad as example and get the password.

What is difficult in this case, is that the username is on a page and the password is on another page. As of now, this is not supported without the interaction of the user.

Sorry about that.

Best regards,

So I used your example and just got a couple of tweaks.

Since I use so many O365 connections if you use IE, it remembers the last logged on user. That renders the macro useless. You have to forget all the old sessions and start over.

That's a pain.

So I use Chrome and do Incognito sessions.

I have modified the macro to: $USERNAME${TAB}{ENTER}{DELAY}{DELAY}$PASSWORD${TAB}{TAB}{ENTER}{DELAY}{TAB}{ENTER}

Your macro had only one TAB for the password, you need 2.

And Chrome Incognito asks if you want to stay logged in, so I added the TAB ENTER at the end to do that.

Works great!

FYI

Please note that if the user clicks to open the Office 365 connection and then switches to another application, let's say notepad for instance, the macro will paste the username and password into the notepad document. This is because the macro is just sending key presses and doesn't care where it sends them.

It has been stated that macros are not a secure method so nothing new here, I'm just highlighting how insecure this method can be.

PS. I use the following macro and put the password into the macro password field in the connection properties. Previous macros in this thread haven't worked for me as I think the login screens have changed (again).

$USERNAME${TAB}{TAB}{TAB}{ENTER}{DELAY}{DELAY}$MACRO_PASSWORD${TAB}{TAB}{ENTER}{DELAY}{ENTER}
Thanks.

Hello,

Thank you for providing insight on the Typing Macro.

We've taken care of also explaining the risk of such feature on our Online Help;
https://help.remotedesktopmanager.com/settings_events_autotypingmacro.htm


Best regards,

@Gabriel,

What is difficult in this case, is that the username is on a page and the password is on another page. As of now, this is not supported without the interaction of the user.

Sorry about that.

This answer from two years ago, is this still the case? Is it supported by now or will it be supported in near future?
Login for single-sign-on webclients like login.microsoft.com with multiple pages. In the login process you are redirected to an organisation site (username is on a page and the password is on another page or even another domain).

Hello,

Here is an export from a session where the auto-fill works on login.microsoft.com (Embedded), for both the username and password. You simply have to click "Login".
When imported, you will simply have to change the Email and Password in the session.

Best Regards,

Hello,

From the recording your sent, it doesn't seem like you filled in the Username and Password field in the General Tab.
Do you experience the issue even with your username and password directly in the session?

Best Regards,

Yes, now it works. Thank you!

Done :)

Hello,

Here is an export from a session where the auto-fill works on login.microsoft.com (Embedded), for both the username and password. You simply have to click "Login".
When imported, you will simply have to change the Email and Password in the session.

Best Regards,

Hi, I've downloaded the .rdm, however it hangs RDM when I try to import it.

Hello,

What would be your Remote Desktop Manager version?

Best Regards,

Just going to revisit this and ask if this works with an entry from the User Vault when you are doing "Find by Name (User Vault)" from the DVLS server.

I have ticked all the boxes and am still getting $PASSWORD$ also the UserVault entry is a CyberArk PVWA linked entry.

Obviously I would prefer a better solution as I am not keen on the security risk of the password potentially being typed elsewhere even though it is a unique one for each user.

Hello,

You should not have to use $PASSWORD$, if you head over to Login - Html Control ID, you can set the fields like such :

From there, you can link your credentials from your user vault and it should work.

Best Regards,

So just to confirm those are the login ids for the Office 365 login fields.

Hi again,

I have given this a test and because the username and password are on different pages this doesn't work but the field IDs are correct.

Additionally the entry needs to append the primary 365 domain to the end of the username which is different from the internal UPN.

Let me know your thoughts?
Simon

Hello,

It should still work even for multiple pages, can you confirm your Remote Desktop Manager version?

Best Regards,

Hi,

Yes RDM is on the latest version 2022.2.23.0

I also have an issue getting the right entry in as CyberArk stores the username from AD and of course it needs to go into 365 as the UPN which is different in 365 to the one on internal AD.

Thanks,
Simon

Hello,

Could you send a screenshot of how your session is configured? I will have a look on my side.

Best Regards,

Hello,

Yes absolutely here you go.

Hello,

Thank you! I will look into it!

Best Regards,

Hello Simon,

My apologies for intervening but the issue is that you are using a Cybark credential. CyberArk only allows us to use credentials for remote sessions, we cannot use them for website entries, including our DWL extension.

This matter is, unfortunately, out of our hands.

Best regards,

Hi Richard,

I’m using the same credentials on other website sessions without issue on systems such as SOTI and Vmware Vcenter. I agree it doesn’t work on an external browser only when embedded and a fee of the sites just need a macro to press the enter key but the credentials autofill without any issue.

Office 365 is a challenge though due to the separated pages during login.

Thanks,
Simon

Hello Simon,

I just did a test on a regular site (Linkedin) and the credential does get auto filled, as you mentioned. My comprehension is that this should not be allowed with any CyberArk credential, but I will verify with the engineering team and get back to you.

Best regards,