This post is to summarize a way how to configure a remote connection manager tool to integrate with CyberArk PSM. In this way, you can directly RDP into target server through PSM, without logging into PVWA to do connect.

Microsoft Remote Desktop Connection Manager

Microsoft has retired MRDCM software and following link is not having download anymore. There is some serious vulnerabilities found in this software, although it is still very popular Remote Desktop Connection Manager tool.

Search by google and found this link to download :
To integrate RDCM with CyberArk PSM, it requires some configuration changes on RDP file object. This post lists least step you will need to follow to get RDCM working with PSM. 

1      In RDP Connection Manager, highlight your RDP
File object and select Add Server…
2       Configure the Server Settings tab:
Populate the Server name field with the text {PSM-Server-Hostname}
Enter a friendly name of your
choice in the Display name field.
3        Configure the Connection Settings tab:
Uncheck the Inherit from parent checkbox.
Populate the Start program field with this string as
shown in the sample screenshot below:
psm /u {Priv_Account_Name}@51Sec-ITPROSEC /a {Server_Name}
            {Priv_Account_Name} = The username
of the privileged account as defined in CyberArk; ie. MyUsernameAdmin
            {Server_Name} = The shortname of
the server name as resolvable via DNS; ie. 

1   4   Configure the Logon Credentials tab as
shown in the sample screenshot below:
Uncheck the Inherit from parent checkbox
Enter your non-privileged AD account
username in the User name field
Enter the text 51Sec-ITPROSEC in the Domain

When you click to connect, you will enter the
password for your non-privileged AD account.


MobaXterm also support PSM well. Here are all configuration steps in the screenshot. 

Most important step is to configure Remote command “psm /u [email protected] /a /c PSM-RDP

Create a domain user account and save it into credential list. 


So far, not find a good way to support remote command to launch “psm /u [email protected] /a /c PSM-RDP” after RDP logged in PSM .


By Jon

Leave a Reply