PIM/PAMSC All: Access rule for RDP login

book

Article ID: 141790

calendar_today

Updated On:

Products

CA Privileged Access Manager - Server Control (PAMSC) CA Privileged Identity Management Endpoint (PIM)

Issue/Introduction

How to create rule for RDP login access control

Environment

Release : 14.1

Component : PAM SERVER CONTROL ENDPOINT WINDOWS

Resolution

RDP login has 2+ login event, remote host login with Terminal Services and itself login with lsass.exe.

So, customer should create for these rule.

er TERMINAL server defacc(a) owner(nobody) audit(f)
er TERMINAL RDP client defacc(a) owner(nobody) audit(f)

Additional Information

This rule is needed all version of PIM or PAMSC.