Skip to main content
Skip table of contents

Configuring a Client Computer to Use the Syteca Connection Manager


Before account secrets (also referred to as "secrets") can be created and used to access the required accounts on the corresponding host (e.g. remote) computers, a Windows Client computer needs to be configured e.g. as a jump server, also known as a PAM gateway (via which users who have the appropriate permissions will be able to use the secrets to access the corresponding accounts by way of the Syteca Connection Manager).

NOTE: PAM seat licenses first need to be assigned to users (on the Users page) for them to be able to use the PAM functionality (i.e. for users to get access to both the Password Management and the Account Discovery pages in the Management Tool, and to the Syteca Connection Manager on a Windows computer used as a jump server to connect to the privileged accounts by using the corresponding account secrets.

NOTE: The Syteca Connection Manager requires .NET Framework 4.8 to be installed on the Client computer (i.e. the computer with the Syteca Connection Manager).


To configure a Windows Client computer that will be used as a computer with the Syteca Connection Manager, do the following:

1. Log in to the Management Tool as a user with the Client Configuration Management permission for Clients.

2. Click the Client Management navigation link (on the left).

3. On the Client Management page that opens, find the Windows Client that will be used as the jump server Client computer, and click its name in the Client Name column.

NOTE: A jump server computer is only required if two or more concurrent sessions are required on the Client computer with the Syteca Connection Manager, and it is recommended to use a Windows Server operating system for the correct functioning of the Syteca Connection Manager on a jump server computer.

4. On the Properties tab that opens, scroll down to the Client Mode section, and select the following checkbox(es):

Enable the Syteca PAM Connection Manager checkbox.

Replace Windows Shell with the Syteca PAM Connection Manager checkbox to optionally only display the open Syteca Connection Manager window to users (i.e. without the Client computer's desktop).

    

5. The Syteca Connection Manager is then enabled for use.

   

NOTE: When using a custom Windows shell, the Syteca Connection Manager application (shortcut icon) may not be displayed on the desktop, but can be found in the "C:\Users\Public\Desktop" folder.

6. Select the Authentication Options tab, and scroll down to the Two-Factor and Secondary Authentication section, then select the Enable secondary user authentication on login checkbox.

   

NOTE: It is not required to enable secondary user authentication for Active Directory users.

7. Click the Finish button (in the bottom right of the page).

8. The Client as then configured (from which users will be able to connect to the accounts in the corresponding secrets by using the Syteca Connection Manager).


JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close