Can I access, configure or upgrade PAM or the underlying OS.

Article Id: 143290
Status: Published
Updated On: 11-03-2020 11:17
Products:
CA Privileged Access Manager (PAM) , CA Privileged Access Manager - Cloakware Password Authority (PA) , PAM SAFENET LUNA HSM , CA Privileged Access Manager - Server Control (PAMSC)
Issue/Introduction:

Is external access given to PAM so we can patch, configure or upgrade it?

Cause:

Internal auditors want to know what version of the OS is, if it can be externally patched or upgraded.

Environment:

Release : 3.3.x

Component : PRIVILEGED ACCESS MANAGEMENT

Resolution:

The current version used in PAM (3.3.x) is Debian GNU/Linux 9.6.

Unfortunately we don't supply access to it.

Nonetheless, if access to the server is warranted, we will provide you with:
  • SSH Debug Patch
  • SSH Private Key
  • Then turn on "Remote CA PAM Debugging Services" in the UI
  • We will then have a WebEx, take control of your workstation and SSH in.
  • Once all work is completed, we exit out and turn off SSH access.

Additional Information:

CA PAM appliance is consistently being patched.  If your internal security department thinks that there is a vulnerability in our appliance, than please open a support ticket and supply us the details.