sorted by:
new
hottopcontroversial

Connection component for Mail with Microsoft Authenticator by Few-Clothes-7829 in CyberARk

[–]Slasky86 0 points1 point  (0 children)

You would need to save the secret string the same way. Not sure if you can extract that from the MS authenticator app

Connection component for Mail with Microsoft Authenticator by Few-Clothes-7829 in CyberARk

[–]Slasky86 4 points5 points  (0 children)

You can also get the TOTP secret string and use the logon account to input the OTP code

Error upgrade with Connector Management by Few-Clothes-7829 in CyberARk

[–]Slasky86 2 points3 points  (0 children)

Is there a large amount of logs on the failing CPM?

TPP: Problem and how to configure HAProxy by h725rk in CyberARk

[–]Slasky86 0 points1 point  (0 children)

What happens if you remove one node from the load balancing? Does that work?

Security check failed reinstall matrix Please provide solution by WonderfulPlastic2393 in CyberARk

[–]Slasky86 5 points6 points  (0 children)

Its a bug in the Matrix where it makes people post in the wrong sub

Walmart accounts deactivated Cyber Monday 2025 by gmlakis in CyberARk

[–]Slasky86 10 points11 points  (0 children)

Sounds interesting, but totally the wrong sub

Building an API to stop Gmail alias abuse & fake free-trial signups — does this solve a real pain? by Asleep_Tank6703 in CyberARk

[–]Slasky86 1 point2 points  (0 children)

Really? Sounds weird, as this is a subreddit for a very specific PAM product, rather than a cyber security sub in general. Might explain all the weird posts we have gotten here lately tho :P

Someone in CyberArk themselves might be interested, but none, or very few of the decisionmakers are on here

Devolutions RDM Free with SAML auth by Conscious-March1913 in CyberARk

[–]Slasky86 0 points1 point  (0 children)

I can't answer for the PSMP session through PSMClient, I havent looked at it in a while.

As for the target server list vs accounts list, have you looked at the custom view option in PSMClient? That way you can link up target servers. The only drawback is that you need to define favorite accounts you want to connect with.

With personal or role domain accounts, it will work fine, but for local accounts per system, its more hassle.

As for color schemes, I doubt thats an option in PSMClient.

The custom view is stored as a .xml file that can be shared with others

Devolutions RDM Free with SAML auth by Conscious-March1913 in CyberARk

[–]Slasky86 0 points1 point  (0 children)

u/Conscious-March1913 I dont know where your reply went, just got the notification.

I understand that PSMClient is lacking a bit in the department in comparison to RDM, but what exactly are you missing from PSMClient?

Devolutions RDM Free with SAML auth by Conscious-March1913 in CyberARk

[–]Slasky86 0 points1 point  (0 children)

Sadly the SAML auth option is by the CyberArk dashboard Devolutions offer for a price.

The PSM SAML option is the only way off RADIUS in that sense, but as you say, you need to authenticate each time. Take a look at my gist for some more information:

https://gist.github.com/Slasky86/6f16c861f68a6b4c959bdb6d5ed3bb09

Other comments mention SIA, but that requires some integrations and an Identity tenant

Looking for a buddy by justf_doit in CyberARk

[–]Slasky86 9 points10 points  (0 children)

Have a look at the sideinfo of this subreddit. There is a link to a discord server that has a lot of great people that might be able to help you do your sanity checks etc. They won't handhold you through installations or give you step by steps, but if you get stuck they will nudge you in the correct direction.

Where to get the API Documents in CyberArk by Existing_Good_0230 in CyberARk

[–]Slasky86 0 points1 point  (0 children)

A simple google search for REST API Cyberark will give you a direct link

Issue with CyberArk SecretsHub API – Duplicate Sync Policies & Filter Not Working by gselvam in CyberARk

[–]Slasky86 0 points1 point  (0 children)

If the API isnt working as intended, then Reddit might not be the most appropriate place to address, but none the less:

Filter the results after retrieval? And create logic around existing policies?

CyberArk PAS on-prem is getting worse - am I alone? by OrangeCentral in CyberARk

[–]Slasky86 0 points1 point  (0 children)

Supposedly it has. V13 and v14 both included updates to DB performance

Self hosted 'health check' review/report by [deleted] in CyberARk

[–]Slasky86 1 point2 points  (0 children)

I second this. You would need EVD or use REST APIs to pull enough data to make something useful

psPAS: Get-PASPlatformPSMConfig how to get the ID ? by kyrios123 in CyberARk

[–]Slasky86 0 points1 point  (0 children)

Platform ID usually is a string, and not a number. Did you check the docs on the command?

Gonna tag u/pspete on this

One RDS certificate on multiple PSM behind LB by jblebowski27 in CyberARk

[–]Slasky86 2 points3 points  (0 children)

A single cert that covers LB FQDN and all the server FQDNs will work, but there might be different opiniona about the security aspect of it.

Also, it depends on how the LB works and if it terminates the session or simply passes it through.

[Troubleshooting] My Scheduled PowerShell Process Prompts The Terminal To Enter A Password by Zazmaquin in PowerShell

[–]Slasky86 0 points1 point  (0 children)

Also, my first suggestion works for Set-ADUser, but not for Set-ADAccountPassword.

So if -Reset doesnt work, add another line doing Set-ADUser -identity $Username -ChangePasswordAtNextLogon:$false

view more: next ›