We want to deploy VM Tools to CA PAM virtual host, which is deployed in ESX server. Is this supported?

Privileged Access Manager, all versions

Privileged Access Manager is delivered as a self-contained, hardened appliance deployed as a VMware OVA. A single appliance contains all the necessary components to control privileged access in an environment. Each appliance is a hardened appliance, which means that security measures are implemented to prevent any access to the appliance. PAM is a black box appliance with no console access being provided, the only way to access the application is either using a Web Browser or using the PAM client.

It is not possible to deploy VMware Tools or OS hotfixes to the CA PAM appliance. There are certain tools such as TCPDUMP can be deployed only for troubleshooting purpose by the Technical Support team only. Applying VMware Tools would not improve the user experience since the only option to connect to CA PAM either using Internet Explorer or using the CA PAM Client.

If deploying VMtools is a feature which is required with a proper business justification and technical impact of not being able to deploy VMtools, please do file this as a product enhancement idea with product management. VMware Tools are generally deployed on hosts that have a graphic console for better user experience since CA PAM does not have a Graphic console or gives access to the OS.