Privilege Manager’s dashboard is completely interactive and actionable so you can quickly gain visibility into all your endpoints. You’ll see what your users are doing, and discover what top applications are in your environment. Privilege Manager is agent-based which means you can deploy agents to discover endpoints, apps, and capture all processes.

Platform Overview


Quick Installation


Troubleshooting

Issue1 : Agent is not registering to Privilege Manager Server
The following steps would need to be done as an admin on the enduser’s machine:

1. Stop the Thycotic Agent and Thycotic Application Control services
2. Delete the client database files located in the c:\programdata\arellia\clientitems folder
3. Delete the PMAgent certificate
3a. Open mmc.exe
3b. File menu -> Add Snap-in -> Select Certificates -> Add
3c. Select Computer Account -> Select Local Computer -> Finish -> Ok
3d. Go to Certificates\PM Agent\Certificates
3e. Delete the certificate
4. Start the Thycotic Agent service and then the Thycotic Application Control service
5. Open Powershell
6. Run the ‘c:\program files\thycotic\powershell\Arellia.Agent\SetupAgent.ps1’ script
7. Run the ‘c:\program files\thycotic\powershell\Arellia.Agent\SetAmsServer.ps1’ script

Unsigned Driver Issue


After installed the bundled agent, we might have this A digitally signed driver is required issue. Windows blocked Arellia Application Control Driver’s installation because it is unsigned driver.

Here is the fix to let Windows 10 ignore unsigned drivers. 

1) Press Win+R (Windows key and R key) at the same time. A Run dialog box will appear.
2) Type gpedit.msc in the run box and click OK button.
3) Click User Configuration in left pane and double-click on Administrative Templates in the right pane.
4) Double-click on System.
5) Double-click on Driver Installation.
6) Double-click on Code signing for device drivers.
7) Select Enabled change it to Ignore from the drop-down menu. Then click OK button.

After disabling the code signing for device drivers, install the driver and it should work this time. 

from Blogger http://blog.51sec.org/2021/08/thycotic-endpoint-privilege-manager.html

By Jon

Leave a Reply