CA Privileged Access Manager - Cloakware Password Authority (PA)PAM SAFENET LUNA HSMCA Privileged Access Manager (PAM)
Issue/Introduction
Sometimes one would like to share remotely in a terminal server, two differentiated web applications (e.g. connection through firefox with http://mysite.mydomain.com and http://myothersite.myotherdomain.com) so that one or the other may be run independently and without intervention. This article discusses how to do that.
We will use two websites and mozilla as an example. Publishing mozilla In the terminal server we can define two RDP applications in the following way
This works accessing RDP using RDPWeb: you see App1 and App2 and launching them one or the other url is started.
However, if we are trying to launch it from PAM the problem seems to be that, in the configuration for RDP service, we can only define a Path to the application we want to launch.
then when we log in to the Terminal server it interprets we want to run, literally "C:\Program Files\Mozilla Firefox\firefox.exe" http://mysite.mydomain.com and we get a permission denied.
In the same way, trying to create in the RDP Collection, the path as "C:\Program Files\Mozilla Firefox\firefox.exe" http://mysite.mydomain.com does not work.
Environment
CA PAM all versions up to 3.2.2
Resolution
There is a workaround for this:
1. In the Terminal server define the application as follows Path: C:\Program Files\Mozilla Firefox\firefox.exe Accept any parameter
2. In PAM define the different applications you want to use as having the following paths App1 --> "C:\Program Files\Mozilla Firefox\firefox.exe" http://mysite.mydomain.com App 2 --> "C:\Program Files\Mozilla Firefox\firefox.exe" http://myothersite.myotherdomain.com