One Identity Safeguard Integration

Hello,
Do you know if the RestAPI return the password directly?

Regards

They do -

I could also include other information, like the username.

What happens is that the "password" is checked out, and the credentials are provided - then at logoff it checks in the password again, and rotate it.

I would be happy to provide you with a system to test with ? - But it is not ready before 2-3 weeks.

Hello,
I will let you know when we will have the resource for the integration.

Regards

Bumping up the thread. Our security team is looking into implementing this so would like to know how much we would be able to integrate with RDM...

Hello,
I will be completely honest, we havent started the integration and I'm not sure when we will be able to look into it.

Regards

Merci pour la réponse rapide!

Any way we can upvote this?

C'est plus une question de resources mais je ne vous oublie pas.

Cordialement

(Je continues dans la langue de Shakespeare pour nos amis anglos)

Hence my proposal to upvote. If we`re enough to vote, resources should be easier to come by. ;) Quick scan of the forums shows another person interested so that makes 3 votes...

Merci en passant!

It will be great to see this integration get implemented. Another Upvote!

Upvote ++++
Please consider this request seriously!

Another Upvote ;)

Hello,
would be great to have this integration!

Kind regards

Hi,

i would also love to see that integration with One Identity Safeguard

cheers

Hello,

My name is Josef and i am Pre Sales Engineer at One Identity.
We would love to see our Safeguard PAM Solution being integrated into Devolutions RDM ;)

If there is anything i can help with (technical documentations, testing etc) please feel free to contact me directly: josef.pernecky@oneidentity.com
Our REST API documentation incl Powershell commandlets etc is public available at https://github.com/oneidentity
regards
Josef

Hi Josef,

We will open a ticket for this and I will join you email to it. We'll discuss how we want to proceed and reach back to you.

Thanks for providing this information!

Best regards,

Hi Josef,

We will open a ticket for this and I will join you email to it. We'll discuss how we want to proceed and reach back to you.

Thanks for providing this information!

Best regards,

Hello, OneIdentity customer here. We're also interested in an RDM integration along these lines, but more geared around Safeguard for privileged sessions. We'd like to see a session check out from safeguard when a connection attempt to a server is made rather than a password checkout.

@Josef, could you DM me. I'd like to discuss.

Hi,

The newest version of RDM is available with a new credential type, One Identity Safeguard for Privileged Passwords:



For now, it only supports the "Local" mode of authentication. We are working on adding the "External Federation" mode right now.

As for your specific request takpass, I've opened a ticket. I can't provide any ETA as of yet though.

Best regards,

Hi,

The newest version of RDM is available with a new credential type, One Identity Safeguard for Privileged Passwords:



For now, it only supports the "Local" mode of authentication. We are working on adding the "External Federation" mode right now.

As for your specific request takpass, I've opened a ticket. I can't provide any ETA as of yet though.

Best regards,

No worries, we've already written a custom integration for RDM that does session checkout with federated SSO.

The newest version of RDM is available with a new credential type, One Identity Safeguard for Privileged Passwords:

Superb! Merci!

Question, in the case of using Devolutions Server as back end, I will assume it is the Devolutions Server which will be doing the request over to Safeguard, or will it be the RDM client?

It would still be RDM. DVLS would contain the authentication information, but RDM will do the request.

Best regards,

I updated RDM to version 2024.3.13.0 but I can't see the new entry option "One Identity Safeguard for Privileged Passwords".
Are there any prerequisites? I can't find any information beyond the change log about this topic.

Hi andreaserb,

All of our third party credentials integration are available with an Enterprise license of RDM. Is it perhaps not your case?

Otherwise, it should be found here when creating a new entry:



Best regards,