Browser Remote desktop Web App


Article ID: 106022


Updated On:


CA Privileged Access Manager - Cloakware Password Authority (PA) PAM SAFENET LUNA HSM CA Privileged Access Manager (PAM)


Sometimes one would like to share remotely in a terminal server, two differentiated web applications (e.g. connection through firefox with and so that one or the other may be run independently and without intervention. This article discusses how to do that.


We will use two websites and mozilla as an example. Publishing mozilla In the terminal server we can define two RDP applications in the following way

App1 --> Application C:\Program Files\Mozilla Firefox\firefox.exe Arguments
App2 --> Application C:\Program Files\Mozilla Firefox\firefox.exe Arguments

This works  accessing RDP using RDPWeb: you see App1 and App2 and launching them one or the other url is started.

However, if we are trying to launch it from PAM the problem seems to be that, in the configuration for RDP service, we can only define a Path to the application we want to launch.

So if we define, for instance, as path

"C:\Program Files\Mozilla Firefox\firefox.exe"

then when we log in to the Terminal server it interprets we want to run, literally "C:\Program Files\Mozilla Firefox\firefox.exe" and we get a permission denied.

In the same way, trying to create in the RDP Collection, the path as "C:\Program Files\Mozilla Firefox\firefox.exe" does not work.


CA PAM all versions up to 3.2.2


There is a workaround for this:

1. In the Terminal server define the application as follows
Path: C:\Program Files\Mozilla Firefox\firefox.exe
Accept any parameter

2. In PAM define the different applications you want to use as having the following paths
App1 --> "C:\Program Files\Mozilla Firefox\firefox.exe"
App 2 --> "C:\Program Files\Mozilla Firefox\firefox.exe"