Missing documentation for runtime tokens in CA PAM documentation

Document ID:  TEC1473509
Last Modified Date:  07/12/2017
{{active ? 'Hide' : 'Show'}} Technical Document Details

Products

  • CA Privileged Access Management

Releases

  • CA Privileged Access Management:Release:2.8
  • CA Privileged Access Management:Release:2.8.1
  • CA Privileged Access Management:Release:2.8.2

Components

  • PRIVILEGED ACCESS MANAGEMENT:CAPAMX
Question:

When defining TCP/UDP services we can make use of several runtime tokens like "<Local IP>" and "<First Port>". These are shown in examples, but there is no documentation that would tell us which parameters are available and what they resolve to. What tokens are available for use in the client application string, or in the launch URL for Web Portals?

Answer:

The following case insensitive tokens are available as of CA PAM 2.8.2:

<Local IP> - The local IP as specified in the "Local IP" section of the service.

<First Port> - The first port defined in the "Port(s)" field of the service. If the port is defined as a <remote port>:<local port> pair, this token resolves to the local port value, i.e. the number after the colon character. 

<Second Port> - The second port in the "Port(s)" field, if it contains two entries separated by a space character. For number pairs separated by a colon the token resolves to the second number like for the <First Port> token.

<USER> - Name of the target account when an account is configured for auto-logon in the user (group) <-> device (group) policy that grants access to this service.

<PASSWORD> - Password of the target account configured for auto-logon.

<Device Name> - Name (not address) of the device that is accessed using this service. This token is new in 2.8.2 and not available in prior releases.

 

The following is an example of a Client Application string for a service running a local WinSCP executable that uses most of the available tokens. It the service is defined as shown in the image below, <Local IP> will resolve to 127.0.0.182 and <First Port> to 13222.

"C:\Program Files (x86)\WinSCP\WinSCP.exe" sftp://<User>:<Password>@<Local IP>:<First Port> /sessionname=<Device Name>

WinSCP_Service.jpg

Please help us improve!

Will this information enable you to resolve your issue?

Please tell us what we can do better.

{{feedbackText.length ? feedbackText.length : '0'}}/255

{{status}}

Not what you were looking for?

Search Again >

Product Information

Support by Product >

Communities

Join a Community >

Chat with CA

Just give us some brief information and we'll connect you to the right CA ExpertCA sales representative.

Our hours of availability are 8AM - 5PM CST.

All Fields Required

connecting

We're matching your request.

Unfortunately, we can't connect you to an agent. If you are not automatically redirected please click here.

  • {{message.agentProfile.name}} will be helping you today.

    View Profile


  • Transfered to {{message.agentProfile.name}}

    {{message.agentProfile.name}} joined the conversation

    {{message.agentProfile.name}} left the conversation

  • Your chat with {{$storage.chatSession.messages[$index - 1].agentProfile.name}} has ended.
    Thank you for your interest in CA.


    Rate Your Chat Experience.

    {{chat.statusMsg}}

agent is typing