CyberArk PSM SAML Authentication

Hi,

For this, I would recommend using the CyberArk PVWA credential entry, and configure it with the "Resolving mode" set to "PSM Connection" and the "Authentication mode" set to SAML.


Linking this credential entry to an RDP, and launching this RDP, will launch a PSM connection with the same mechanism used by the CyberArk dashboard entry (which use the same mechanism as the CyberArk PVWA web portal itself).

In the linking RDP entry, you can also set the preferred component in the Advanced tab:


Best regards,

That is perfect, thank you! I assumed that option was related to the PSM Connection session type.

Is it possible to support inherited credentials? Credentials on a RDP entry works, but configuring it on a folder with "Inherited" credentials on the RDP entry fails with:

I can configure Preferred component on a folder, any use case for it? Doesn't seem to inherit neither.

Hi,

For the first point with the inheritance not working. This is a bug. We've already found a fix and a ticket will be opened for this. You can expect this to work in an upcoming release.

As for the preferred component, it's not supposed to do anything on the folder at the moment. There's no inheritance implemented for this.

Best regards,

Thank you for the quick response and help 👏. Looking forward to the fix.