Can only share one certificate at a time...
I need to share a lot of certificates with users and user groups...In PMP an user can only share one certificate at time.
Find resources shared with users
Hi there, I have completed a migration of PMP on site instance to PMP in AWS. It looks like there are a number of users who were given access to resources individually rather than via groups. I can easily locate who access to resources if shared to a user group but is there a way to do the same if the resource is shared with a user? I have been going through the various tables in the database to find what I need but there is nothing there. Thank you. Gareth
Groups view not working after upgrade to 9.7
The groups view does not work anymore when I'm connected through ad auhtentication and being a SuperAdministrator. The url https://XXX:7272/SuperGroupView.ec?USERNAME=DOMAIN\user&LOGINID=1502 returns a 400 bad request code. If I try the same url by removing the domain it works: https://XXX:7272/SuperGroupView.ec?USERNAME=user&LOGINID=1502 It only fails when having the SuperAdministrator right.
IT analytics in 90 seconds: Stay on top of unusual behavior in your privileged accounts
Watch over every abnormal user activity in your privileged accounts, and catch malicious behavior using Analytics Plus reports. If you're not already using Analytics Plus, download your free, 30-day trial today.
[Password Manager Pro Masterclass] Facilitating automation in your DevOps pipeline and application communications without credential embedding.
Hi there, Our next topic for the Password Manager Pro Masterclass series is "Facilitating automation in your DevOps pipeline and application communications without credential embedding," scheduled for November 07th. Click here to register for the session. In this Masterclass session, you'll learn how to: 1. Leverage Password Manager Pro's secure APIs for application-to-application password management—SSH-CLI, XML-RPC, and REST 2. Integrate with various CI/CD tools such as Jenkins, Ansible,
Clearing Password Alerts
Password Alerts How do we clear all these alerts? We dont do password SYNC, Expired, or have minimum requirements. Is there any way to bulk fix this?
Stop Users from exporting passwords, but not admins
So it turns out that someone in the role "Password User" can export all the passwords they have access to. This stunned me as I thought PMP was supposed to be about securing passwords!! I found in the admin > export\offline access options there is a way to prevent this, however it also stops super admins (ie. me) from exporting passwords which seems odd. I have unchecked the option to export all passwords but how do I configure it so that super admins can export, but not password admin, password
IT analytics in 90 seconds: Easily detect security breaches in your privileged accounts
Spot security breaches easily by monitoring user authentication records with Analytics Plus. If you're not already using Analytics Plus, download your free, 30-day trial today.
Password Expiry Date in the past but still says valid!!
Hi all, We have some passwords in our system where there is 1 resource with multiple accounts within it. We add all passwords manually and dont use auto logon or auto change. Passwords entered into PMP have no connection with the actual server/account they are for. Our password policy is that the password when entered should expire in 90 days. There are some accounts where the password has expired i.e the date of expiry is 23/3/9, but below it, it says valid. This means that the dashboard doesn't
Cannot use UK Pound sign in password.
I have migrated 700+ passwords into a new instance of PMP and noticed that a number of passwords have a strange character symbol, looks like a ? in a black triangle shape. The symbol turns out to be £ however when I try to update the password to include £ I get the following error: "Error occurred while changing the password. Activity Logs: Trying to use Agent Mode: 1. Agent not installed in." I have attached a screenshot.
Migrating resource groups\accounts to new instance of PMP
I am currently using PMP installed on a onsite server but have now created a new PMP instance in AWS. I am now trying to export the existing groups\account in a format which I can then import easily into the new PMP. However I also want to include the user group permissions as well as I have 300+ groups to migrate and I do not want to have to add each group individually to the user groups setup in the new PMP. Is there anything which will make this easier? Note that the onsite PMP is running build
VMware Discovery in Organisation PMP
Hi, it's possible de discover VMware VM in organisation PMP ? I can do that in MSP but not in organisations. I use PMP MSP Enterprise 10.102 Thanks, Best Regards, Quentin
Password Manager Pro new build 10400
Hi, Password Manager Pro 10400 has been released and is now available for download. In this build, new features such as integration with DigiCert SSL, CSR Templates, option to exclude expired and revoked certificates and option to modify the email id of the Let's Encrypt account have been introduced. The product has also undergone numerous enhancements. Please see our Release Notes to learn in detail about the feature and enhancements included in this upgrade pack (build 10400). How to Upgrade
Unable to edit server.xml file
I was trying to edit/update server.xml and the file access is denied. I have administrative user rights on the server. I disabled the password manager service and restarted the server and try to change the file but still I cannot. I am not sure what is locking the file. Do you have any ides/solution?
IT analytics in 90 seconds: How to manage your privileged accounts' passwords like a pro
Gain comprehensive insights into password behavior and secure your privileged accounts using Analytics Plus. If you're not already using Analytics Plus, download your free, 30-day trial today.
File Transfers to Linux(Unix) servers
Would be very nice to have a file transfer method for SSH sessions like they do for Windows RDP sessions.. As is I see no way through PMP to transfer files to Linux(Unix) servers
[Password Manager Pro Masterclass] Connecting securely to devices in remote isolated networks.
Hi there, In the previous Masterclass session, we learned how to cater to the access needs of both internal users and trusted outsiders with adequate security controls. Here's the video recording of the session for your reference. The next session will focus on enabling secure communication between isolated networks without removing firewall protections for effective credential management. Password Manager Pro Masterclass Connecting securely to devices in remote isolated networks. Thursday,
Desktop support folks to view passwords
Does anyone know if I can let my desktop support folks view passwords without being an admin type user?
I was adding a second domains and by mistake I've changed the setup for the main domain controller. Now I'm unable con access PMP by web.
Maybe for this case, just changing the configuration file should solve this problem. Any ideas?
Password Manager Pro new build 10302
Hi, Password Manager Pro 10302 has been released and is now available for download. In this build, a few enhancements have been done to the Password Manager Pro agent. From now on, while installing the agent on a remote server, you will have to provide a unique 'Agent Key'. Please see our Release Notes to learn in detail about the feature and enhancements included in this upgrade pack (build 10302). How to Upgrade to Build 10302? If you are an existing customer of Password Manager Pro,
PMP Web Url not permit user to view password
Hello, there is a way to permit a standard user to use a web site URL without permit to view password. Maybe with chrome extension?
IT analytics in 90 seconds: Track anomalies in your privileged account activity
Keep a close eye on the access records of your privileged accounts to tackle security breaches using Analytics Plus. If you're not already using Analytics Plus, download your free, 30-day trial today.
Silent install of IE PMP plugin
Hello I was wondering if there are silent install switches for the IE plugin for PMP? I can't find any listed anywhere on the website or community. Thanks!
Using Restful API - Harmful Content Entered
I am trying to import resources from our existing password management system into PMP using the Restful API, and am encountering this error when trying to import passwords that contain a '>' character within the string: {"operation":{"name":"Input data is in wrong format","result":{"status":"Failed","message":"Harmful Content Entered"}}} Is there way to either disable this "malicious content" check during import, or is there another solution I can use such as encoding these values such that they
"Conflicting Password" report
Hello, Can anyone explain to me how PMP detects a "conflicting password"? It currently shows that I have 12 conflicting passwords, however, some of the systems are not on the network, so PMP would not be able to detect anything about those passwords. Is there a way to turn this feature off? Thanks, ~Allen
[Password Manager Pro Masterclass] Privileged session management: Onboarding employees and vendors for secure remote access provisioning.
Hi there, Our next topic for the Password Manager Pro Masterclass series is "Privileged session management: Onboarding employees and vendors for secure remote access provisioning," scheduled for October 10th. Click here to register for the session. In this Masterclass session, you'll learn how to: 1. Launch direct RDP, VNC, and SSH sessions from any HTML5-compatible browser without endpoint agents, browser plug-ins, or helper programs. 2. Secure access gateways to establish reliable connections
IT analytics in 90 seconds: Monitor privileged account permissions to mitigate insider threats
Monitor and curtail user privileges to protect your privileged accounts from insider threats and malware attacks using Analytics Plus reports. If you're not already using Analytics Plus, download your free, 30-day trial today.
How do you change the AD Domain for authentication
In my PMP implementation, we have several different organizations and some of them (not all) have their own domain controllers and domain names to authenticate. One of these organizations decided to fold into the main organization and now their users are authenticating against the AD domain name of the main org. But, since they have password sharing enabled within the organization, they still need to stay under the same org umbrella. I just need to find a way to change the AD Domain name, against
Upgrading from v9900 to v10000 broke my installation
When upgrading v9900 to v10000 the upgrade is sucessfull but in the log i can see the update delete all v10000 files and v9900 files during the process insteand of just deleting v9900 files? The support of Manage Engine only answer 1 email per day.... So i ask now the community for more support.
Restrict RDP through Password Manager Pro Bastion host
Hi, I'd like to restrict rdp access to windows 2012 \ 16 domain servers through PMP only, removing the ability for admins to rdp with local apps like mstsc or remote desktop manager. I've tried creating group policy objects to disable rdp, (stops PMP connections from working) or to limit rdp through a specific ip address on a targets local domain firewall (doesnt work). Has anyone else run into this problem? Thanks
Deleting Resources
If I brought in the wrong OU resources I can delete them without harm to the AD. Stupid question I know but there has been some applications that do harm the AD when you delete a resources imported from an AD structure that I have used in the past so I just need to validate.
remove user from password access control authorizers
Trying to demote/retire multiple administrators from our PMP system. When I try to edit the user, I am presented with this message: Note: This user is required for approving password requests and can act only as Administrator,Password Administrator . To assign other roles, remove this user from password access control authorizers first. I've been trying to figure out the secret sauce on this one all day... Please help.
Audit Trails/Logs Purging
Greetings, By default, the PMP configuration for purging of audit logs is turned off. So, PMP has been keeping audit logs since we have first installed the application. We would like PMP to automatically delete logs older than 1 or 2 years. Currently, we are keeping logs that are older than 2 years. Is there any precaution we should have in mind on making this change? Do you suggest a specific time (after-work hours) to make this change? Please advise.
Groups
I noticed that I was created and a group called DEFAULT GROUP is associated to me. We have two other groups that seem to have all the resources accessible but I do not (When I try to add a resources it states that it is already in the system, so when try to find it it states it is not in the system. What can I do to see all the resources in the system?
PMP cant see my domane
I have 1. my test environment: DC01 controlles (mydomane.local) 2. Winserver 2016 for services (srv16.mydomane.local) This servers are Vmware VMs on VMware Workstation with virtual network On Winserver 2016 i installed pmp on PostgreSQL, its work fine. Then i try to add users and OUs from my DC01 follow the instructions in this article from web console in google chrome localhost:7272 https://www.manageengine.com/products/passwordmanagerpro/help/active_directory_integration.html In the pop-up form
Finding "empty" resources
Hello, If a Microsoft Windows computer in an Active Directory domain name is turned off, it still has a domain object. Therefore, PMP will continue to import it when a domain synchronization job is run. It will be listed as a resource with no accounts. If the computer is later removed from the domain, PMP will not remove the associated resource, which then becomes an orphan. I am interested in a way to find those "empty" resources. Is there a report criteria that I can use for this? Thanks, - Steve
[Webinar recording] How to leverage analytics to secure your privileged accounts
Did you miss our webinar on how to leverage analytics to secure your privileged accounts? No problem! Check out the recording here:
[Password Manager Pro Masterclass] Enabling password management best practices in a multi-vendor network environment.
Hi there, Our next topic for the Password Manager Pro Masterclass series is "Enabling password management best practices in a multi-vendor network environment," scheduled for September 12th. Click here to register for the session. This session will focus on managing the passwords of network devices out-of-the-box without having to worry about complex remote commands via SSH. In this Masterclass session, you'll learn how to: 1. Directly reset the passwords of any SSH-based network device without
Resource sub-groups do not inherit permissions from parent?
I created a resource group that filtered on Customer (ie. Acme.com). I then created a sub-group specifying a particular resource type (Windows machines.) When clicking on the resource sub-group, the sub-group 'filter' doesnt apply. Clicking on the sub-group shows the particular resource type (Windows), but it is not filtered by Customer (all customers' Windows machines are shown in addition to Acme's). Is this supposed to work this way? M
Integration walk thrus
I am new to this forum and not sure where everything is located. Where can I find some documentation on walk thru for the integration of Password Manager Pro and ADS (2008 today but moving to 201)
Next Page