Skip to main content

General

A general place for Privileged Remote Access conversations.

  • 155 Topics
  • 330 Replies
155 Topics
B
Community Manager
BeyondTrust CommunicationsCommunity Manager
published in General
Monthly Buzz - June - Privileged Remote Access
Monthly Buzz - June - Privileged Remote Access

What’s New in BeyondTrust Privileged Remote Access 25.1: Enhanced Security & Stability for Privileged Access Everywhere BeyondTrust continues to raise the standard for privileged access security. Version 25.1 of BeyondTrust Privileged Remote Access (PRA) delivers critical behind-the-scenes upgrades, doubling down on BeyondTrust’s mission to deliver the most dependable, secure privileged remote access platform on the market. This maintenance release focuses on providing stronger security, improved reliability, and more seamless control of privileged sessions. Version 25.1 rolls up recent security patches, runs them through an exhaustive regression test suite, and layers in targeted stability improvements and key performance refinements for both cloud and on-prem environments. This update is available whether you run a cloud or on-prem deployment of Privileged Remote Access. Cloud users receive updates automatically. On-prem customers can download and apply version 25.1 from the appl

410
B
Community Manager
B
Community Manager
BeyondTrust CommunicationsCommunity Manager
published in General
Monthly Buzz - May - Privileged Remote Access
Monthly Buzz - May - Privileged Remote Access

RS/PRA failover configuration Can RS or PRA failover be configured so a specific appliance automatically reclaims the primary role once it comes back online? No, once a failover occurs, the IP address associated with the hostname is assigned to the backup appliance. This IP address is no longer available without manual intervention. When the former primary appliance comes back online, it checks to see if the hostname and IP address are available. If they are not available, because they are being used by the backup appliance, it will not reclaim them and will not switch back to primary.After a failover, all connections are established with the backup appliance, which is acting as the primary. Additionally, configuring one appliance to always assume the primary role could lead to further disruptions after a failover, as everything is still connected to the backup appliance.Read more here Latest Available Version:Privileged Remote Access 25.1.1 - April 2025 Beekeepers Hot Topics PRA - AD

420
B
Community Manager
Sean Cashin
BeyondTrust Employee
Sean CashinBeyondTrust Employee
published in General
BeyondTrust Remote Support SaaS Service Security Investigation

As a result of our investigation into the Remote Support SaaS Security Incident detailed in our Security Advisory (link below), we have proactively completed an update for our Secure Remote Access (Remote Support and Privilege Remote Access) Cloud customers, fortifying the security of their solution overall. More information can be found as it becomes available via the Security Advisory on our website found here. Please note that we have updated the security investigation as of 28-Jan-25, 5:45 PM Eastern Time. Please follow the link for additional details.

6086
Sean Cashin
BeyondTrust Employee
GloriaB
BeyondTrust Employee
GloriaBBeyondTrust Employee
published in General
Privileged Remote Access - Knowledge Article Publications (Aug 25 - Sep 1)Weekly KB Publications

The following articles were published last week. New Knowledge Base Articles: KB0022808 - Jump Client Direct Download link does not work. Incorrectly prompts for Pathfinder authentication KB0022811 - How to run the session policy to simulator to check for permission issues KB0022815 - SAML IdP cloud groups showing as GUID's under Group Policies in Pathfinder KB0022820 - Vendor user cannot register recieves error: Email address from this domain is not allowed KB0022828 - What is the 'Verified Administrator' for RS or PRA? Can it be changed or updated?

00
GloriaB
BeyondTrust Employee
B
Community Manager
BeyondTrust CommunicationsCommunity Manager
published in General
Monthly Buzz - August - Privileged Remote Access
Monthly Buzz - August - Privileged Remote Access

Real-World Success Stories with BeyondTrust Remote Support Many of BeyondTrust’s current Remote Support customers sought a new remote support solution because of business challenges. They were on the hunt for a solution that unified their help desk use cases with key integrations and boosted productivity, all while addressing security concerns and adhering to compliance requirements. One payment and processing company saw an 80% increase in productivity after implementing our solution.This article will dive into why a few of our real-world customers decided on Remote Support as their IT software of choice, and will reveal the measurable gains they’ve made in productivity, security, and compliance. Real-World Success Stories with BeyondTrust Remote Support Many of BeyondTrust’s current Remote Support customers sought a new remote support solution because of business challenges. They were on the hunt for a solution that unified their help desk use cases with key integrations and boosted

00
B
Community Manager
B
Community Manager
BeyondTrust CommunicationsCommunity Manager
published in General
Important: Upcoming changes to filenames in Remote Support and Privileged Remote Access version 25.2

In Remote Support and Privileged Remote Access, some binaries will undergo a name change. Client name changes for Windows took place in 25.1. In 25.2, files for Mac/Linux clients as well as Jumpoints for all operating systems will be changed. In addition, directory name changes will take place, changing from Bomgar, to BeyondTrust for new installations. Existing installations will not be impacted. No action is necessary for these changes to occur, but if you are currently whitelisting directories or binaries by name with your endpoint security, you may need to update your whitelist configuration to accommodate the name changes.  Old Name New Name bomgar-scc sra-scc bomgar-pec sra-scc bomgar-rep sra-con bomgar-acc sra-con bomgar-jpt sra-jpt bomgar-sjt sra-sjt bomgar-sjp sra-sjp bomgar-rfb sra-rfb bomgar-rdp sra-rdp bomgar-rdt sra

30
B
Community Manager
M
BeyondTrust Employee
mseifertBeyondTrust Employee
asked in General
Delete SAML Session when disconnected from PRA

Is there a way to make sure, that SAML sessions (used to logon to PRA) are deleted after disconnecting from PRA (Access Console / Web Console)?Thank you!

30
M
BeyondTrust Employee
GloriaB
BeyondTrust Employee
GloriaBBeyondTrust Employee
published in General
Privileged Remote Access - Knowledge Article Publications (Aug 18 - Aug 25)Weekly KB Publications

The following articles were published last week. New Knowledge Base Articles: KB0022108 - Privileged Remote Access and Remote Support 25.1 operating system certification matrix KB0022514 - Kubernetes cluster tunnel greyed out "No Protocol Tunnel Jumpoints Available" KB0022737 - Can web jumps be used for web apps that have Java popups? KB0022797 - Unable to delete Jump Items in the Representative Console or Access Console list KB0022802 - Error when adding new traffic node in existing setup "The authentication step failed"

10
GloriaB
BeyondTrust Employee
D
DerekApprentice
asked in General
I couple issues since PRA 25.1.2 update

I’ve noticed a couple annoying issues since updating PRA from 25.1.1 to 25.1.2. We only exclusively use Jump Clients to Windows Servers and Clients through the console, and here’s what I’ve noticed:During the connection process after logging into Windows, if you switch focus to a different tab/connection and then come back, the jump client will have connected, but you will not have mouse control. You can use keyboard control or use any of the quick commands from the Console, but in order to get mouse control back, you must fully disconnect and reconnect back into the jump client, ensuring you don’t switch focus to a different server. This one is pretty consistent and can be reproduced almost every time. This one is a little more random and doesn’t always happen, but I’ve noticed it happening often now since the PRA update. In order to launch applications in Windows, I have the habit and clicking the Windows Start key and immediately start typing the product/application I need to launch

1055
P
BeyondTrust Employee
J
jeff.milesNewcomer
asked in General
Using Kubernetes cluster tunnel Jump Item effectively

I’m wondering if anyone has found a way to use a Kubernetes Cluster Tunnel effectively within BeyondTrust PRA, as documented here: https://docs.beyondtrust.com/pra/docs/jump-shortcuts#create-a-kubernetes-cluster-tunnelPrimarily what I’m curious about is how to use the temporarily generated KubeConfig and actually authenticate to a cluster? The KubeConfig that is generated doesn’t appear to do credential injection from PRA, nor can I utilize Azure CLI to get credentials for my AKS cluster injected. It seems like it would be a very poor user experience to have to have locally stored cluster credentials which must be added to the generated KubeConfig every time a connection is made. In addition, this is completely divergent from the patterns of PRA and Remote RDP where a user doesn’t have access to privileged credentials at all (due to credential injection). I have searched through documentation and opened a support ticket without getting any real answers, so I thought I’d reach out to th

120
J
GloriaB
BeyondTrust Employee
GloriaBBeyondTrust Employee
published in General
Privileged Remote Access - Knowledge Article Publications (Aug 11 - Aug 18)Weekly KB Publications

The following articles were published last week. New Knowledge Base Articles: KB0021961 - How to create a Service Principal in an Entra ID domain services Account KB0022748 - Local users are unable to log in to the Representative Console. Error "418 Failed to decrypt" KB0022771 - PRA Registration links fail in Microsoft environments due to Safe Links rewriting

90
GloriaB
BeyondTrust Employee
GloriaB
BeyondTrust Employee
GloriaBBeyondTrust Employee
published in General
Privileged Remote Access - Knowledge Article Publications (Aug 4 - Aug 11)Weekly KB Publications

The following articles were published last week. New Knowledge Base Articles: KB0022238 - How does licensing work in Privileged Remote Access ? - License usage and how to add more licenses KB0022737 - Can web jumps be used for web apps that use Java popups? KB0022738 - Can session recordings be turned off per user?

40
GloriaB
BeyondTrust Employee
D
donApprentice
asked in General
Failed to create Endpoint Privilege Management Policies in BeyondInsight

Hi guys, i cannot find a button for “ Create Policy” , anything i can do?

163
D
B
Community Manager
BeyondTrust CommunicationsCommunity Manager
published in General
Monthly Buzz - July - Privileged Remote Access
Monthly Buzz - July - Privileged Remote Access

Best Practices for Remote Support and Privileged Remote Access Here are a few best practices for delivering secure and efficient remote support. Following these guidelines can help improve performance, reduce risk, and maintain compliance. Review the supported version lifecycle at least once a year and keep up to date. Having older software, more than two years behind, may make it more complex to get to the latest version. In some cases, a new appliance will need to be created. Refer to How to upgrade or update version 20.1.x and lower. If self-hosted, stay up-to-date with current releases and activate the Apply Critical Updates Automatically option found in the /appliance interface. For instructions, refer to Automatic critical update options in /appliance. Consider using an external authentication security providers (for example, SAML) over local accounts, and be sure to delete accounts not in use. For more information, refer to PRA Security providers or RS Security providers.

110
B
Community Manager
M
MudupuriApprentice
asked in General
more than one Integration of ServiceNow ITSM with Remote Support

Create more than one Integration with Service now ITSM tool, if a customer has different entities and has different ITSM tools like Servicenow and Fresh Desk. 

141
T
BeyondTrust Employee
GloriaB
BeyondTrust Employee
GloriaBBeyondTrust Employee
published in General
Privileged Remote Access - Knowledge Article Publications (Jul 28 - Aug 4)Weekly KB Publications

The following articles were published last week. New Knowledge Base Articles: KB0022212 - Unable to copy and paste from the Web Console" to "Unable to copy and paste from the Web Console using Web Shell to SSH KB0022714 - Which ports are required for ad-hoc sessions in Remote Support? KB0022717 - What network traffic does an active Jump Client send and can this be configured or inspected? KB0022718 - Network tunnel stuck on "Setting up server endpoint" KB0022727 - Remote Support and Privileged Remote Access Atlas certificate requirements

20
GloriaB
BeyondTrust Employee
K
KG_RJNApprentice
asked in General
Windows Search and Indexing.

Has anyone else experienced issues with Windows Search or indexing not functioning properly following the latest patch? We've observed that removing the PAM agent seems to restore search and indexing functionality.Has anyone else seen similar behavior or found a workaround?

1872
K
E
edwinb77Apprentice
asked in General
Team activity event types explained

We're extracting the team activity reports and add this to our BI reporting to monitor usage.On the event type we see several events and I'm looking to filter the ones to connect and disconnect from a session.I think the below are the ones that I'm looking for but not sure: Conference Member Added -> connecting to a workstation Conference Member Departed -> disconnecting from a workstation Am I correct in this assumption?

191
T
BeyondTrust Employee
M
MudupuriApprentice
asked in General
Can we connect to SQL DB with a different instance example sqlserver\abc

Can we connect to SQL DB with a different instance example sqlserver\abc. how can I use on the SQL Server Tunnel in the PRA to connect.

251
M
BeyondTrust Employee
H
HamzaTrailblazer
asked in General
PRA Virtual Machine sizing

we are planning to move from PRA B-200 physical to VM. the article below doesn’t explain that how many concurrent jump sessions (RDP/Shell/WEB) a VM can handle in Active-Passive configuration. ( considering not jump client installed)Virtual Appliance installation  

231
T
BeyondTrust Employee
H
HamzaTrailblazer
asked in General
RDP Linux using XRDP from PRA

we have linux server in which XRDP is installed. from console I cannot RDP the linux but I can do RDP from a server (jumpoint host).what am I doing wrong here? 

301
P
BeyondTrust Employee
GloriaB
BeyondTrust Employee
GloriaBBeyondTrust Employee
published in General
Privileged Remote Access - Knowledge Article Publications (Jul 21 - Jul 28)Weekly KB Publications

The following articles were published last week. New Knowledge Base Articles: KB0022081 - Approval emails for sessions have stopped working error - SMTP error [450] Service unavailable KB0022647 - How to download the SIEM Q radar plugin for Remote Support or Privileged Remote Access integration KB0022705 - Does a live update require downtime?

80
GloriaB
BeyondTrust Employee
S
ssethurajanApprentice
asked in General
X window forwarding using the X11

Vendor user is facing issues while trying to launch a shell jump session (via Jumpoint) from Mac endpoint. User is typing the below command to invoke the web console on the shell jump session but getting display error. Target Endpoint: Rocky Linux 8.9, 64-bitsystemctl enable --now cockpit.socket~]$ DataEditorError: DataEditor: Can't Open Display They also want to know if PRA shell jump supports X window forwarding using the X11 protocol. Any suggestions to resolve this problem?

1472
R
M
MatsuNewcomer
posted in General
Network Tunnel drops connectivity on Jumpoint temporary fix, KB0021363 related

We recently encountered a recurring issue impacting the accessibility of Jumpoints, which we have traced back to behaviors described in KB0021363. The root of the problem appears to be interference between the old and new network management features, particularly when IP assignments are modified either through binding on virtual machines' NICs or via IP changes on bare metal systems.ObservationsWhen these changes occur, the resulting network configuration across the multiple management interfaces becomes inconsistent. This inconsistency causes the Jumpoint to: Attempt to resolve to its own address, Become entirely unresolvable, or Exhibit packet fragmentation or corruption during analysis. Network inspection tools and bomgar logs show erratic behavior. Logs typically reveal incomplete packets or generalized packet errors, but offer no definitive indicators as to the root cause. The symptoms include: Dropped connections, Fluctuating tunnel availability, Inconsistent routing beha

1522
C
P
pvermaNewcomer
asked in General
Inspect /dev tools on a Web Jump on PRA

Does anyone know if we can leverage inspect /dev tools on a Web Jump on PRA? We have developers trying to inspect and open dev tools on the web page but looks like it doesn’t work?

812
R

Badge Earners

  • BCA: Privileged Remote Access
    M.Galanghas earned the badge BCA: Privileged Remote Access
  • BCIE: Password Safe
    awonghas earned the badge BCIE: Password Safe
  • BCA: Password Safe
    Farukshas earned the badge BCA: Password Safe
  • BCIE: Password Safe
    Kaenniehas earned the badge BCIE: Password Safe
  • BCA: Password Safe
    JonSerhas earned the badge BCA: Password Safe
Show all badges
Terms & ConditionsCookie settings