Can I access, configure or upgrade PAM or the underlying OS.

book

Article ID: 143290

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM) CA Privileged Access Manager - Cloakware Password Authority (PA) PAM SAFENET LUNA HSM CA Privileged Access Manager - Server Control (PAMSC)

Issue/Introduction

Is external access given to PAM so we can patch, configure or upgrade it?

Cause

Internal auditors want to know what version of the OS is, if it can be externally patched or upgraded.

Environment

Release : 3.3.x

Component : PRIVILEGED ACCESS MANAGEMENT

Resolution

The current version used in PAM (3.3.x) is Debian GNU/Linux 9.6.

Unfortunately we don't supply access to it.

Nonetheless, if access to the server is warranted, we will provide you with:
  • SSH Debug Patch
  • SSH Private Key
  • Then turn on "Remote CA PAM Debugging Services" in the UI
  • We will then have a WebEx, take control of your workstation and SSH in.
  • Once all work is completed, we exit out and turn off SSH access.

Additional Information

CA PAM appliance is consistently being patched.  If your internal security department thinks that there is a vulnerability in our appliance, than please open a support ticket and supply us the details.