Skip to main content

General

A general place for Privileged Remote Access conversations.

  • 44 Topics
  • 95 Replies
44 Topics
Sean Cashin
BeyondTrust Employee
Sean CashinBeyondTrust Employee
published in General
BeyondTrust Remote Support SaaS Service Security Investigation

As a result of our investigation into the Remote Support SaaS Security Incident detailed in our Security Advisory (link below), we have proactively completed an update for our Secure Remote Access (Remote Support and Privilege Remote Access) Cloud customers, fortifying the security of their solution overall. More information can be found as it becomes available via the Security Advisory on our website found here. Please note that we have updated the security investigation as of 17-Jan-25, 3:51PM Eastern Time. Please follow the link for additional details.

3494
Sean Cashin
BeyondTrust Employee
4 hours ago
B
badbeagleNewcomer
asked in General
pra V24.3 mapped network drives

The What’s New document said “Our zero trust Network Tunnels are capable of enabling mapped network drives for Windows workstations, so you can extend PRA’s centralized identity security controls to the entirety of your generalized networking needs. Trash that VPN!” Has anyone looked into this or tested it?  Tried searching the KB and technical docs but haven’t discovered anything yet.

211
DavidC
BeyondTrust Employee
8 hours ago
A
AnilreddyNewcomer
asked in General
Local Linux accounts password rotation in PRA

HI Everyone, I have onboarded the local Linux accounts in PRA. But am looking for password rotation via PRA for non domain joined Linux accounts. Does any one have idea about local Linux accounts password rotation in PRA. If yes please suggest me on this. Thanks and looking for your quick support.

91
P
BeyondTrust Employee
1 day ago
S
samiRising Star
asked in General
PRA Deployment Questions

Hi everyone. Appreciate your feedback on the below queries.For PRA Cloud what is the communication matrix (firewall ports) that needs to be allowed for Jump Points, Jump clients and PRA to work smoothly?   For PRA Jump Points, what is the recommended hardware sizing (CPU, Memory, Disk) etc ?   Where the session recordings going to be stored? Is it going to be on the Jump Point or PRA cloud and in case if its going to be on the Jump Point what is the requirements for Disk storage?

5910
P
BeyondTrust Employee
2 days ago
GloriaB
BeyondTrust Employee
GloriaBBeyondTrust Employee
published in General
Privileged Remote Access - Knowledge Article Publications (Jan 6 - Jan 13)Weekly KB Publications

The following articles were published last week. New Knowledge Base Articles: KB0021908 - Jump Clients are stuck pending upgrade after upgrading Remote Support or Privileged Remote Access to 24.3.1

160
GloriaB
BeyondTrust Employee
4 days ago
GloriaB
BeyondTrust Employee
GloriaBBeyondTrust Employee
published in General
Privileged Remote Access - Knowledge Article Publications (Dec 30 - Jan 6)Weekly KB Publications

The following articles were published last week. New Knowledge Base Articles: KB0021323 - No Jump Items found match the search criteria message shows before showing the search results KB0021861 - Sync Error "Not available. Verify if the provider is enabled and it supports the requested operation."

220
GloriaB
BeyondTrust Employee
11 days ago
C
Carlos MendonçaApprentice
posted in General
Password Safe e PRA

Hello, how are you?I'm new to the community and I see several very relevant topics. We recently acquired Password Safe and PRA to use integrated and we intend to use Jumpoint for Remote Jump, so this is all still very new. Would anyone like to exchange knowledge and support for these features? I'm available to contact you.

423
P
BeyondTrust Employee
15 days ago
S
samiRising Star
asked in General
PRA Questions

Hi Everyone.I am new to PRA and have few questions that I would like to clarify. Appreciate your feedback on these.When we have PRA Cloud and On-Prem Jump Cluster deployed. Does the Jump clients communicate to PRA cloud via the Jump Points or they make a direct outbound connection to PRA cloud by default?    Typically each Jump Point handles around 25 concurrent connections? Are they also storing any session recordings locally? typically what should be the specifications for the Jump server for a mid size org like (CPU, Mem and Disk)? Is there any sizing calculator that we can use or some assumptions to take into consideration when determining the resources required for sizing the Jump Point?   If we have AWS and On-Prem servers, Can we do segregation for Jump Points? Like for Azure environment, deploy a Jump cluster there that would be specifically used to access servers deployed in Azure and Deploy another On-Prem Jump cluster that would be typically used to access servers deployed o

452
P
BeyondTrust Employee
15 days ago
GloriaB
BeyondTrust Employee
GloriaBBeyondTrust Employee
published in General
Privileged Remote Access - Knowledge Article Publications (Dec 23 - Dec 30)Weekly KB Publications

The following articles were published last week. New Knowledge Base Articles: KB0021297 - Generic tokens and SSH accounts excluded from rotation summary message during bulk account rotation KB0021337 - Secure Remote Access Appliance certificates disappear after uploading a new one KB0021628 - Session termination behavior is not working in Privileged Remote Access and users are still appear as logged in after a session ends KB0021815 - Web Jump is timing out on Linux endpoint unable to produce logs

110
GloriaB
BeyondTrust Employee
18 days ago
GloriaB
BeyondTrust Employee
GloriaBBeyondTrust Employee
published in General
Privileged Remote Access - Knowledge Article Publications (Dec 16 - Dec 23)Weekly KB Publications

The following articles were published last week. New Knowledge Base Articles: KB0021448 - OAuth email configuration error - Test email failed. Unknown error occurred ... [Code 451] or There was an error processing your request KB0021530 - The save filter option in the RS Rep Console or PRA Access Console and how to use it KB0021791 - Privileged Remote Access 24.3 feature static username and port sessions setting KB0021815 - Web Jump is timing out on Linux endpoint unable to produce logs KB0021843 - Is Remote Support and Privileged Remote Access compatible with Windows 11 ARM devices?

1190
GloriaB
BeyondTrust Employee
25 days ago
E
EdenNCITApprentice
asked in General
Remote Support 24.3.1 Upgrade Pending

We have 50+ jump clients that are showing in an Active [Upgrade Pending] state and are inaccessible.  The devices are on the network, pingable, and I’m able to open a remote PowerShell session on them using enter-pssession, however, they’re not completing the jump client upgrade process. I’ve been able to get a few to complete the upgrade after forcing multiple reboots.  In two cases I had to gain physical access and uninstall the old client and manually install the new one.Is anyone else seeing these issues?

82313
C
28 days ago
L
lineTrailblazer
asked in General
Integrate SQL management studio with credential injection on PRA

Jump SQL management studio with credential injection on PRA

612
L
29 days ago
V
Venkata OduriNewcomer
asked in General
Default browser for Web Jump method

I would like to know which default browser BeyondTrust is integrated for the web jump method. Is there any default browser for this method, or does it utilize the browser from the Jumpoint server?

942
L
30 days ago
T
TZoltanApprentice
asked in General
PRA Access Console - Freezing

Hi,Has anybody experienced slowness with Access Console in v24.3.1?We have some reports that connections are established slower in 24.3.1, and some consoles are freezing too.Did anybody experienced similar issues?

441
R
BeyondTrust Employee
1 month ago
Prudhvi Keertipati
Prudhvi KeertipatiVeteran
posted in General
Match naming of the SRA Console User and Password Safe User

Context: Once Password Safe and SRA are successfully integrated. One of the reasons for SRA user fail to search for the managed systems from Password Safe is the mismatch of the naming of the SRA Console User and Password Safe User. In most cases, your Password Safe User has a domain name included in the username but where as SRA user has the short name.Below is one of the method to fix the username matching for SRA SAML2 and/or SCIM security providers. It is useful for the Password Safe Cloud and SRA Cloud instances where customer doesn't have access to backend configuration.  Solution: For example if username in Password Safe is domain.com\username or username@domain.com. To match the username in SRA Console, Navigate to /login console, Go to Users & Security → Security Providers → Edit SAML2 or SCIM Providers. Expand User Attribute Settings, Edit the Username filed. If you are getting the domain.com as an Domain attribute in SAML2 or SCIM claims. Update Username filed as below:

371
J
BeyondTrust Employee
1 month ago
Prudhvi Keertipati
Prudhvi KeertipatiVeteran
asked in General
PRA Access Console - Connection Issue

Hi Team,We have a PRA Cloud tenant deployed and there are NO network restrictions setup on /login console. From US, we are able to access the Access Console, but our users from India team are unable to access and getting below error. They can access /login console but not Access Console. Are there any logs that I can verify or what might be the cause?Thanks,Prudhvi

1183
Prudhvi Keertipati
1 month ago
GloriaB
BeyondTrust Employee
GloriaBBeyondTrust Employee
published in General
Privileged Remote Access - Knowledge Article Publications (Dec 2 - Dec 9)Weekly KB Publications

The following articles were published last week. New Knowledge Base Articles: KB0021764 - Privileged Remote Access 24.3 feature show all Password Safe (PS) items in a Jump Point KB0021780 - SEC_ERROR_EXPIRED_CERTIFICATE error when accessing appliance through Firefox browser KB0021788 - Do the following HAProxy CVEs affect Remote Support or Privileged Remote Access? KB0021791 - Privileged Remote Access 24.3 feature static username and port sessions setting KB0021794 - Privileged Remote Access and Remote Support 24.3 OS Certification Matrix KB0021808 - Vault interface not pulling in Password Safe connected credentials through ECM integration when executing SQL Tunnel in Privileged Remote Access KB0021820 - How to restrict access to /appliance

1030
GloriaB
BeyondTrust Employee
1 month ago
R
rp-natApprentice
asked in General
PRA - Anyone use Cloudflare successfully?

Hello,We have put Cloudflare (DNS Proxy) infront of our domain for PRA.This works fine 99% of the time, however, occassionally, users experience minor “blips” where the desktop console will close/re-open (remaining logged in).After talking with our SE and support alot on the issue, they cant tell me whether they have other customers using Cloudflare with DNS proxy successfully.They state that reverse proxies are unsupported (which i understand, its in the docs), however, unsupport != shouldnt work.Just trying to understand whether the issue is the same across other orgs.

1184
R
1 month ago
Prudhvi Keertipati
Prudhvi KeertipatiVeteran
asked in General
PRA - Jumpoint - RDP Service Account for Session Forensics

Hi,We have Password Safe and PRA integrated and we are using Jumpoint for Remote Jump. For Session Forensics functionality, Is there a way to get the RDP Service Account credentials from Password Safe instead of creating the account in PRA Vault? Thanks,Prudhvi

642
Prudhvi Keertipati
1 month ago
Prudhvi Keertipati
Prudhvi KeertipatiVeteran
asked in General
Jump Shortcut Import Wizard Missing

In the PRA Cloud 23.3.4 instance, Jump Shortcuts Mass Import Wizard  is missing under Jump Items. Is there any configuration or setting has to be enabled for this wizard to show? Thanks,Prudhvi

171
Prudhvi Keertipati
1 month ago
L
LeeAtkinsonRising Star
asked in General
Unable to select jump zone proxy cluster for Jump Client installer

I’ve created a jumpoint cluster with jump zone proxy enabled. When I create a jump client installer, I am unable to select the jumpoint cluster as the jump zone proxy. It says: “There are no standalone Jumpoints with proxying enabled.” I am on the latest version of PRA and clustered jumpoints with jump zone proxy should now be supported.Any ideas please? 

151
L
1 month ago
GloriaB
BeyondTrust Employee
GloriaBBeyondTrust Employee
published in General
Privileged Remote Access - Knowledge Article Publications (Nov 25 - Dec 2)Weekly KB Publications

The following articles were published last week. New Knowledge Base Articles: KB0021560 - What is FIDO2 and how to enable it for Remote Support and Privileged Remote Access KB0021779 - NET::ERR_CERT_INVALID error when accessing appliance through Chrome browser KB0021796 - Unable to retrieve available endpoints -- Details: Search term [*] is not allowed; allowWildcardOnlyEndpointSearch must be 'true' in the appSettings section of the ECM config KB0021809 - How to upgrade Endpoint Credential Manager (ECM)

200
GloriaB
BeyondTrust Employee
1 month ago
GloriaB
BeyondTrust Employee
GloriaBBeyondTrust Employee
published in General
Privileged Remote Access - Knowledge Article Publications (Nov 18 - Nov 25)Weekly KB Publications

The following articles were published last week. New Knowledge Base Articles: KB0021298 - Vault account unavailable stuck in rotating state "The selected account is queued for rotation. Please try again later." KB0021626 - Privileged Remote Access and Remote Support 24.2 OS Certification Matrix KB0021786 - Privileged Remote Access 24.3 feature start sessions with an entire Jump Group by right-clicking

140
GloriaB
BeyondTrust Employee
1 month ago
T
TZoltanApprentice
posted in General
BeyondTrust PRA Atlas Deployment

Hi,Are there any members who are using BeyondTrust PRA as an Atlas Deployment?Do you have any connectivity / stability problems? I mean slow connection establishment, “connection timed out” errors.We use it and many users have this kind of problem, when they are connected internally.If you have met this kind of problems what was your experience, how did you manage to solve it? :) 

452
T
1 month ago
GloriaB
BeyondTrust Employee
GloriaBBeyondTrust Employee
published in General
Privileged Remote Access - Knowledge Article Publications (Nov 11 - Nov 18)Weekly KB Publications

The following articles were published last week. New Knowledge Base Articles: KB0021754 - Privileged Remote Access 24.3 feature Jumpoints deployable through Docker container

80
GloriaB
BeyondTrust Employee
1 month ago

Badge Earners

  • BCSE: Privileged Remote Access
    Kragballehas earned the badge BCSE: Privileged Remote Access
  • BCA: Password Safe
    kgujashas earned the badge BCA: Password Safe
  • BCIE: Password Safe
    kgujashas earned the badge BCIE: Password Safe
  • BCIE: Password Safe
    Vinoth Rajahas earned the badge BCIE: Password Safe
  • BCA: Remote Support
    Pablo Salashas earned the badge BCA: Remote Support
Show all badges
Terms & ConditionsCookie settings