Login

u/TemperatureSignal199

▲ 2 r/CyberARk

xrdp from local pc works. xrdp from PSM works. xrdp from PVWA webpage returns a black screen with x cursor.

Hello,

we have an xrdp account.

xrdp from local pc works. xrdp from psm works. xrdp from pvwa webpage returns a black screen with x cursor.

From the logs I only see:

 PSMRD009I Property [Enable CredSSP support] was not found in password specifications. Reason: PSMSC100E Key [EnableCredSSPSupport] was not found in map (Code: -1, -1)

 PSMRD008I Property [Enable CredSSP support] was not found in client specifications. Reason: PSMSC100E Key [EnableCredSSPSupport] was not found in map (Code: -1, -1)

 PSMRD085I Event named [RDPConnectedEvent] is duplicated by the audit transfer job

 

What could it be? we are using PSM 14.2 and Rest of CyberArk is 14.0 . Does 14.0/ 14.2 use a custom RDP version for some reason?

The account is configured as

PSM-RDP

Username: user

Address: Host

Log On To: Host

IP: IP

 

Other xrdp accounts work fine.

 Thank you.

reddit.com
u/TemperatureSignal199 — 1 day ago
▲ 6 r/CyberARk

Is anyone else experiencing this in the last two or three days? CyberArk Community keeps asking to login to view threads, and the login randomly fails sometimes and works other times?

Is anyone else experiencing this in the last two or three days? CyberArk Community keeps asking to login to view threads, and the login randomly fails sometimes and works other times?

reddit.com
u/TemperatureSignal199 — 7 days ago
▲ 1 r/CyberARk

We need to renew the certificates for the Vault, PTA, and PVWA. What would be the impact if we do not renew them?

The certificates for the Vault, PTA, and PVWA are expiring soon.

For the PVWA, we are already using the certificate provided by the load balancer, so there is no issues there (same certificate currently used by the PSM too).

  1. The Vault certificate is going to expire. What would be the impact if we do not renew it? Also, is it really necessary to restart the PrivateArk service on the Vault after replacing the certificate? In addition, can we use the same certificate provided by the load balancer, similar to the certificates used for the PVWA and PSM? Must be  signed by a certificate authority or is it ok to use default self-signed certificate?
  2. The PTA is currently not in use, and we would like to understand the impact of not renewing its certificate. Would it also be acceptable to use the same certificate provided by the load balancer? Must be  signed by a certificate authority or is it ok to use default self-signed certificate?
  3. Is there any specific documentation available on how to replace certificates for the different CyberArk components, specifically the Vault and PTA?

Thank you

reddit.com
u/TemperatureSignal199 — 14 days ago