Devolutions ForumDevolutions Forum

BeyondInsight (beyondtrust) integration

BeyondInsight (beyondtrust) integration

avatar
eulogioapelin

I am trying out RDM Ent. I use BeyondInsight. Is there integration with RDM? I am using version BEYONDINSIGHT 7.2.1.124.

All Comments (7)

avatar
Maurice Côté

Hello,

The entries are named "BeyondTrust Password Safe" and "BeyondTrust Password Safe Dashboard".

Are you using our latest RDM version?

Maurice

avatar
eulogioapelin
Hello,

The entries are named "BeyondTrust Password Safe" and "BeyondTrust Password Safe Dashboard".

Are you using our latest RDM version?


Thanks, I found it. Running 2021.1.29

avatar
madcat

My organization uses BEYONDINSIGHT 7.2.1.124 and I have been able to successfully setup tabbed RDP and SSH sessions.. Let me know if you need any help with these and I can share my session settings

avatar
My organization uses BEYONDINSIGHT 7.2.1.124 and I have been able to successfully setup tabbed RDP and SSH sessions.. Let me know if you need any help with these and I can share my session settings

How did you get this working?

avatar
madcat

Took a bit of tweaking but this is what you need. Note these are settings based on our environment. Hopefully yours will be the same or very similar, but they may differ and you may need to experiment

Note: we also have 2FA setup so opening an RDP or SSH session will trigger BT to issue an Authenticator app prompt

RDP:
name: whatever
folder: whatever
display: embedded (tabbed)
host: custom
credentials: custom

GENERAL tab
Host: your Beyond trust server FQN
port: your Beyond trust server port
RDP type: normal
username: <domain>\<your_LAN_userid>+<BT_Directory>\<BT_Account>+<servername>
domain: <blank>
password: your LAN password

username example:
my.domain\joesmith+my.domain\joesmith-BT+myserver

ADVANCED tab
Prompt for credentials on client - ticked

All other tabs and settings are default values

SSH (PuTTY):
name: whatever
folder: whatever
display: embedded (tabbed)
host: custom
credentials: custom

GENERAL tab
Session: Default settings (or your own Putty saved settings)
Protocol: SSH
Host: <domain>\<your_LAN_userid>@<domain>\<unix_userid>@<unix_server>@<your Beyond trust server>
port: your Beyond trust server port
*username: your_LAN_userid
*password: your_LAN_password

*Note this assumes your Unix servers are AD integrated

username example
my.domain\joesmith@my.domain\jsmith@unixserver@myBTserver

ADVANCED tab
Application: PuTTY

All other tabs and settings are default values

avatar
mail8
Note: we also have 2FA setup so opening an RDP or SSH session will trigger BT to issue an Authenticator app prompt


How did you get this working? If you are using direct connect the MFA prompt is included in the connection string right?
It would be great if you could explain how you achieve this.
Thank you!

avatar
madcat

I don't know much about the setup of BT as this was set up by another team but the credentials that are used in the session pass the necessary string to BT to initiate a connection - the same/similar string that is passed to BT when you clicking the launch session button

The username string contains all the details BT required:

username: <domain>\<your_LAN_userid>+<BT_Directory>\<BT_Account>+<servername>

and that is passed to the BT server, as that is the host that is defined in the session

Host: your Beyond trust server FQN
port: your Beyond trust server port

you can also download the RDP file from BT and have a look at the connection details inside