Skip to main content

Unanswered questions

42 Topics
V
Varuns29Newcomer
asked in General
Use Case: No Centralised PAM Team

Hey Guys,I have got a use case where my client does not have a centralise PAM team to control end to end asset/accounts onboarding to Password Safe (PS) and manage the BT upgrade. I can think of a solution as BT tool related tasks (patching/upgrading etc.) can be taken by Infra/ IT team and 1 person from each application team (Linux, Windows, Database etc.) can be given permission to perform a set of actions like onboard asset/account, manually trigger update/change password, approve request etc.Application Team owners will be provided with End User Guide explaining each task they can perform so they have all the resources they need.I see there is ISA role which I can leverage for Application Owners but it gives a lot of unwanted permission.Is there any other way where I can create another role in BeyondTrust Password Safe to cater my specifics?Thanks in advance!   :)Disclaimer: I have worked in other PAM tools where this was achievable but not sure in BT aspect as I’m new to BT.

242
GloriaB
BeyondTrust Employee
12 days ago
M
ManasviApprentice
asked in Windows & MacOS
Configure a non-default SQL Server port for the U-Series Appliance.

Hi team,Is it possible to change the default  SQL port to a customized port in the BeyondInsight configuration tool.  

252
C
BeyondTrust Employee
12 days ago
L
LeeAtkinsonRising Star
asked in General
Unable to select jump zone proxy cluster for Jump Client installer

I’ve created a jumpoint cluster with jump zone proxy enabled. When I create a jump client installer, I am unable to select the jumpoint cluster as the jump zone proxy. It says: “There are no standalone Jumpoints with proxying enabled.” I am on the latest version of PRA and clustered jumpoints with jump zone proxy should now be supported.Any ideas please? 

101
L
14 days ago
S
BeyondTrust Employee
ShaunDennisBeyondTrust Employee
asked in General
New copilot ARM devices

Looking for some insight from our customers that are using the new copilot ARM devices. Specifically around the use of smart card devices.Do these devices actually have physical smart card readers? 

241
J
14 days ago
T
tcussatNewcomer
asked in General
Server grouping

Is there a way to limit the servers a user sees when accessing their privileged account? We want to be able to only list servers a user has access to in AD so that they can RDP to them without being overwhelmed with a listing of all servers.

1464
S
15 days ago
F
Fabien LandaisRising Star
asked in General
Secret Safe License

Hi,I have a lot of customer who needs Secret Safe + Workforce Password features for all their users to be able to provide a central password storage system. However the licensing model around Secret Safe is crazy because they have to buy a full Password Safe license, just to be able to use Secret Safe module…. and moreover they have to buy a new license just for WFP ! I would like to understand why Secret Safe is not bind as WPF on end user licensing ??? Please provide us more flexibility on this because we are loosing projects :-/

1815
S
15 days ago
M
ManasviApprentice
asked in Windows & MacOS
Upgrade package manager

Hi Team, The EPM agent was installed manually on the endpoints using the Jamf file. The EPM console has now been upgraded to the latest Build Version 24.7, but the agents installed on the endpoints are still on the older version. If we want to upgrade the agents on all endpoints using the package manager, do we need to remove the existing agents installed manually through the Jamf file, or will the package manager upgrade and replace them automatically when we push the new package to the endpoints? Product: Endpoint Privilege management -Mac

615
MikeK
15 days ago
P
Philip HoranApprentice
asked in Windows & MacOS
Elevate cmd.exe / PowerShell.exe for Developers

I am interested to learn how other customers are elevating cmd.exe / PowerShell.exe to allow developers to install/test applications.

1073
P
20 days ago
M
ManasviApprentice
asked in Windows & MacOS
Unable to run CaptureConfig Tool on macOS

Hi,Unable to install and run the CaptureConfig Tool on the macOS endpoint. To Clarify :Added the Privilege Management application group to the policy, and the CaptureConfig app definition has been created within that group, but we still cannot install the CaptureConfig Tool on the macOS endpoint.The Capture Config tool was downloaded from PMC console. To clarify, the PMC console has been upgraded to the latest build version(24.7) and we are currently downloading the latest version of the Capture Config tool.(24.7.0.1) However, the agent still shows an old version of EPM(23.7.1.1) As observed this issue is on the mac OS version 15.0 who has upgraded OS with Sonoma to sequin The version of macOS installed on this endpoint is: macOS 15.0 

751
tclowater
BeyondTrust Employee
21 days ago
A
AndyHApprentice
asked in General
Updater doesn't show the subscription list

Hello,We have a standalone updater server. It was supposed to download all the subscriptions packages and the 2 UVMs connect to the updater server to get the packages and installed. We actually did the Windows update back on February 2024. However, when we tried to update the appliances to windows security update to 202409, we couldn’t find the subscriptions on the available list. The screenshot was below: The updater server has full Internet access and test connection was success.Below is part of the updaterService log:2024-10-16 11:20:00,152 [15] INFO PackageManager - GetDownloadablePackages()2024-10-16 11:20:00,152 [15] INFO PackageManager - Get subscriptions.2024-10-16 11:20:00,152 [15] INFO A. - GetSubscribedSubscriptions2024-10-16 11:20:00,152 [15] DEBUG PackageDownloadInternal - Service in Online mode using: PackageDownloadInternet2024-10-16 11:20:00,200 [15] INFO A. - GotSubscriptions: Active Directory Bridge2024-10-16 11:20:00,200 [15] INFO A. - GotSubscriptions: Applianc

1064
GloriaB
BeyondTrust Employee
22 days ago
A
Abhilash BTNewcomer
asked in General
Concurrent session via Password safe

Hi Beekeepers, Any idea on limit on concurrent session via password safe console maximum limit.

2021
GloriaB
BeyondTrust Employee
22 days ago
B
bt101Trailblazer
asked in Windows & MacOS
EPM Windows - msedgewebview2 error

 Hi All,We got below MS edge WebView runtime related error message on one of the Windows 11 machines. It was right after a reboot which was possibly caused by another device driver. We rebooted the machine multiple times again to see if it reappears. We are working with support on this but I wanted to check if anyone else has seen this type of error .The error code seems to be indicating signature verification failure, which should not be the case. There are similar errors with other DLLs on various forums and solutions indicate an issue with either the DLL/app or MS Edge and WebView. I have general idea that pghook.dll will be injected in app processes for EPM to functionEPM agent version 24.3.349 

795
S
25 days ago
W
W1z4rds123Newcomer
asked in General
Allow endusers to watch their own session recordings

Hi, is there a way to allow endusers to watch their own session recordings?I had a developer who wanted to review a 5 hour SSH session he ran to look foir a mistake, however I cant seem to find the function to enable it for him?

521
J
BeyondTrust Employee
26 days ago
M
Mostafa GhazyNewcomer
asked in General
BeyondTrust Certified Implementation Engineer

I need access to the BeyondTrust Certified Implementation Engineer resources. I previously had access, but after the update, I can no longer find it. We are a BeyondTrust partner.

531
L
27 days ago
J
JasperRising Star
asked in Windows & MacOS
allowing users to run installer packages from a specific network folder

We have a network folder location that contains some applications used by a mixture of non-privileged users . Some of these install source files have .MSI while some have .EXE. When my users run it, they get filtered into the catch all app group instead of the app definition I created. I just used \\networkshare\folder1\* with no publishers, drive is network and App requires elevation (UAC). I know this is not very secure but that is the only way I know that would allow my users to run the install themselves without asking help from our deskside support. This application group by the way sits above the priority list before the catch all and is also using rule filter for those specific users only. My problem is that it does not get triggered from that definition. Has somebody got any similar definition in place that I can follow that works?

261
J
27 days ago
T
tnossemNewcomer
asked in General
Errors when setting up and accessing public portal

I have set up another public portal and template for one of our companies to remote support, but when attempting to access the portal, we are getting DNS_PROBE_FINISHED_NXDOMAIN. Is this something I need to resolve on my side or does BeyondTrust need to set this up for us to have functioning? What are my next steps?We have also tried to add the certificate for the domain in the Appliance section, but it does not appear to “stick” after adding. Is this why we are having issues? How can I get this portal working?I have been trying to get a response from BeyondTrust support for 2 weeks now, and with no response, hoping someone on here can assist. Thanks!  

461
M
BeyondTrust Employee
29 days ago
M
ManasviApprentice
asked in Windows & MacOS
Upgrade Endpoint Privilege Management for Windows 24.7

Hi Team,How to upgrade Endpoint Privilege Management for Windows from version 24.6.716 to the new version 24.7.

551
J
29 days ago

Badge Earners

  • BCIE: Privileged Remote Access
    Bruceyhas earned the badge BCIE: Privileged Remote Access
  • BCIE: Remote Support
    Bruceyhas earned the badge BCIE: Remote Support
  • BCA: Privileged Remote Access
    linehas earned the badge BCA: Privileged Remote Access
  • BCA: Password Safe
    linehas earned the badge BCA: Password Safe
  • BCA: Password Safe
    MedBouhas earned the badge BCA: Password Safe
Show all badges
Terms & ConditionsCookie settings