Press "Enter" to skip to content

Posts published in “CyberArk”

CyberArk PSM HTML5 Gateway Installation and Configuration


This post is going to record some procedures to install PSM HTML5 gateway in my lab environment. I have got some problems during installation. This post is still under writing. I hope it can be done in next few weeks. Install PSM HTML5 GW from Package You will need to get installation package from PSM installation files. It is under C:\PSMInstallation\HTML5 Gateway\RHELinux7-Intel64 after you unzipped your PSM zip file to folder PSMInstallation. Hardware specifications: Small +…

Replace CyberArk Vault Server Self Signed Certificate with CA Signed Certificate


By default, CyberArk Vault server will use self-signed certificate. There is an option to deploy CA signed certificate to be used to create a secure channel to a client. In this way, users can authenticate to the thrid party securely. If you saw this message on your vault server console, you are using self-signed certificate: “ITATP044W Security warning – Vault certificate is self-signed, It’s recommended to use a CA signed certificate with the Vault’s configuration”…

CyberArk PAS DR, HA, Backup, Failover and Failback Process


The CyberArk’s Privileged Access Security (PAS) solution is a full life-cycle solution for managing the most privileged accounts and SSH Keys in the enterprise. It enables organizations to secure, provision, manage, control and monitor all activities associated with all types of privileged identities, such as: Administrator on a Windows server Root on a UNIX server Cisco Enable on a Cisco device Embedded passwords found in applications and scripts In this post, I summarized some common…

Configure Remote Connection Tools (RDCM, MobaXterm, mRemoteNG) Integrate with PSM


This post is to summarize a way how to configure a remote connection manager tool to integrate with CyberArk PSM. In this way, you can directly RDP into target server through PSM, without logging into PVWA to do connect.

Microsoft Remote Desktop Connection Manager

Microsoft has retired MRDCM software and following link is not having download anymore. There is some serious vulnerabilities found in this software, although it is still very popular Remote Desktop Connection Manager tool.

CyberArk Free Tool Usage – PAS Reporter


The PAS Reporter allows you to conveniently generate reports about your CyberArk PAS implementation. The tool can provide helpful insights and information by analyzing Export Vault Data (EVD) exports, configuration files, and Vault trace files. PAS Reporter Implementation Guide is not clear how to use it step by step. Just to make my life easier in the future, here are steps I used to run this reporter. 

Download and Extract it

Put downloaded file to one of your CyberArk machines which is allowed to connect to Vault