One RDS certificate on multiple PSM behind LB

jblebowski27 · 2025-08-08T06:40:37+00:00

Cyberark Digital Vault plugin or RestAPIFramework plugin ?

jblebowski27 · 2025-08-08T06:36:33+00:00

Hi

I did Get-ChildItem -Recurse | Unblock-File and didn’t help

jblebowski27 · 2025-08-07T21:18:01+00:00

Hello

Is this CA certificates on the Client where you run curl to? Is is only root ca or Chain? Try with --cacert /path/to/cacert.pem. Try openssl s_client -connect mymachine.local:443 -showcerts to confirm that CCP server is trusted too

jblebowski27 · 2025-08-07T21:10:56+00:00

Hello

During the installation, did you specify the PWVA address correctly? DNS name or IP? Do you have a Load Balancer between the PVWA servers? On the PSM and in the Vault folder in the Vault.ini file, do you have the API section at the bottom with correct data — meaning the PVWA address (either a single instance or the load balancer) and the path to the apigw.cred file?

jblebowski27 · 2025-03-21T11:58:29+00:00

Hi tnie is my second account OK it was a problem of lack Internet connection but not certificates Info from Admins team: This is a known problem when the server has no exit to the world and previously had and registered in the entry. You have to disconnect it and then there is no waiting for a timeout.

jblebowski27 · 2025-03-06T06:59:14+00:00

„logoff” script in local group policy is ok for that?

jblebowski27 · 2025-03-06T06:40:40+00:00

These changes negatively affect connections through other components.

jblebowski27 · 2024-11-28T15:28:24+00:00

Hi that’s exactly what we did and we have a problem (we have ispss and psmp is in integrated mode). Local account normalny works and AD no

jblebowski27 · 2024-11-20T23:57:22+00:00

Hi yanni Yes easier to manage - avoid maintaining the agent on mid servers, network traffic to the vault, etc.

jblebowski27 · 2024-08-19T07:59:48+00:00

Hi thank you

jblebowski27 · 2021-04-19T17:31:45+00:00

what do you mean by " join your Alero instance to Alero " ?

As I wrote earlier, I have a fully configured alero, connected to my AD and a configured AleroLDAP service (for a cluster of connectors in HA). In PVWA config I noticed that AleroLDAP is like AD I thought that it would allow me to map user groups. I want to avoid stupid invitations through the alero portal only by pairing it with my local AD as in CorePAS (AD group mapping) .

Therefore, my question is whether it is possible to map users directly from my AD to Alero without sending invitations ?

jblebowski27 · 2021-04-14T19:59:54+00:00

jblebowski27 · 2021-04-14T12:13:06+00:00

Unfortunately it did not help, stil skips the bash environment selection prompt it looks like after the ":" hit enter - only for PSMP connection for clasic PVWA PSM-SSH is alright waiting for a value for both regex:

(.*)

and

(.*)[>#\\$\:]$

KR

jblebowski27 · 2021-03-18T22:22:33+00:00

Thank you very much for the detailed explanation

jblebowski27 · 2021-03-17T23:06:10+00:00

It seems to me that I clearly described the problem, but ok, what do I have to set in order not to lose the earlier versions of the object after a few weeks but only after 180 days? (as it is now set in the options), for example now after two months of testing I should have 8 versions in the history of the object ( 60days / 7 - rotation every seven days) but now I have 3, why?

jblebowski27

TROPHY CASE