Skip to main content

Hi Team,

 

Could you please share the retention policy document and specify how long session recording logs are stored?

 

Regards,

K.Sathiya

Password Safe Retention Policy Documentation


You did not indicate what version you are using. You can access the official Password Safe administration guides here:

These documents cover configuration, session monitoring, and retention settings.

 

Session Recording Log Retention

🔹 On-Premises Deployments

  • Session recordings are retained on the appliance for up to 90 days.
  • You can download recordings during this window via the /login interface or in bulk using the BeyondTrust Integration Client.
  • Many organizations extend retention by archiving recordings to a network share, allowing for an additional 90 days or more depending on storage and policy.

🔹 Cloud Deployments (Password Safe Cloud)

  • Session recordings are stored for 1 year, and this duration is not configurable.
  • Sessions older than 6 months are automatically archived, but can be restored and replayed within the 1-year window.
  • Audit data can be exported via Reporting & Analytics or the REST API.

 Where to Configure Retention

For on-prem setups:

  • Go to /login > Management > Security > Data Retention tab.
  • This section allows you to configure how long different types of logs and recordings are retained.

Hi Frank Colvin,

 

Thank you for your response.

The Password Safe Admin Guide you shared was very helpful. I would now like your support regarding PRA.
Could you please share the retention policy document and specify how long the session recording logs are stored? 

Here's a summary of the BeyondTrust Privileged Remote Access (PRA) session recording retention policies based on deployment type:

On-Premises Deployments

  • Retention Duration: Session recordings are stored on the PRA appliance for up to 90 days.
  • Extension Options:
    • Retention cannot be extended directly within the PRA portal.
    • To retain recordings longer, organizations must download them manually or use the BeyondTrust Integration Client to archive them to external storage (e.g., network shares).

Cloud Deployments (Password Safe Cloud)

  • Retention Duration: Session recordings are stored for 1 year, and this duration is not configurable.
  • Archiving Behavior:
    • Sessions older than 6 months are automatically archived.
    • Archived sessions can be restored and replayed within the 1-year window.
  • Audit Data Access: Available via Reporting & Analytics or the REST API.

Where to Configure Retention (On-Prem)

  • Navigate to: /login > Management > Security > Data Retention tab.
  • This section allows configuration of retention for various logs and recordings.

Account policies | PRA Cloud

PRIVILEGED REMOTE ACCESS FOR ADMINS USER GUIDE | PRA On-prem

Badge Earners

  • BCIE: Remote Support
    Pichayethas earned the badge BCIE: Remote Support
  • BCSE: Password Safe
    Kaenniehas earned the badge BCSE: Password Safe
  • 25 Courses Completed
    Daron Garrisonhas earned the badge 25 Courses Completed
  • BCSE: Privileged Remote Access
    AliBhas earned the badge BCSE: Privileged Remote Access
  • BCSE: Privileged Remote Access
    Krista Neunerhas earned the badge BCSE: Privileged Remote Access
Show all badges
Terms & ConditionsCookie settingsAccessibility statement