in

Thycotic Endpoint Privilege Manager – InfoSec Memo


Privilege Manager’s dashboard is completely interactive and actionable so you can quickly gain visibility into all your endpoints. You’ll see what your users are doing, and discover what top applications are in your environment. Privilege Manager is agent-based which means you can deploy agents to discover endpoints, apps, and capture all processes.

Platform Overview

Quick Installation

Troubleshooting

Issue1 : Agent is not registering to Privilege Manager Server

The following steps would need to be done as an admin on the enduser’s machine:

1. Stop the Thycotic Agent and Thycotic Application Control services
2. Delete the client database files located in the c:programdataarelliaclientitems folder
3. Delete the PMAgent certificate
3a. Open mmc.exe
3b. File menu -> Add Snap-in -> Select Certificates -> Add
3c. Select Computer Account -> Select Local Computer -> Finish -> Ok
3d. Go to CertificatesPM AgentCertificates
3e. Delete the certificate
4. Start the Thycotic Agent service and then the Thycotic Application Control service
5. Open Powershell
6. Run the ‘c:program filesthycoticpowershellArellia.AgentSetupAgent.ps1’ script
7. Run the ‘c:program filesthycoticpowershellArellia.AgentSetAmsServer.ps1’ script

After installed the bundled agent, we might have this A digitally signed driver is required issue. Windows blocked Arellia Application Control Driver’s installation because it is unsigned driver.

Here is the fix to let Windows 10 ignore unsigned drivers. 

1) Press Win+R (Windows key and R key) at the same time. A Run dialog box will appear.
2) Type gpedit.msc in the run box and click OK button.
3) Click User Configuration in left pane and double-click on Administrative Templates in the right pane.
4) Double-click on System.
5) Double-click on Driver Installation.
6) Double-click on Code signing for device drivers.
7) Select Enabled change it to Ignore from the drop-down menu. Then click OK button.

After disabling the code signing for device drivers, install the driver and it should work this time. 

from Blogger http://blog.51sec.org/2021/08/thycotic-endpoint-privilege-manager.html



Source: https://www.51sec.org/2021/08/13/thycotic-endpoint-privilege-manager/

Leave a Reply

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

GIPHY App Key not set. Please check settings

Indian Users Expected to Spend More on OTT, Sony-Zee to Cash on Market Growth

15 Best Music Players Made With Vue js