06 - PAM I and C - Pre Implementation
06 - PAM I and C - Pre Implementation
CyberArk University
HTTPS Windows
Vault Administrators Server or Desktop
(PVWA Access)
SSH
Windows RDP
Cisco Router
HTTPS
RDP
HTTPS-Web Front-End
RDP terminal Service
Data Center 1 Data Center 2
DR to Vault heart-beat ping
(Primary Site) (DR Site)
TCP TCP TCP 1858 – CyberArk Communication
1858 RDP 1858
SSH or Telnet
TCP 1858
TCP 1858 Windows native NTLM or WMI
TCP TCP
1858 1858
Vault Server PSM Server Components Server DR Vault Server PSM Server DR Components Server
CyberArk Brokered and • Password Manager CyberArk DR Brokered and • Password Manager
Repository recorded sessions • Password Vault Web Repository recorded sessions • PVt Web Access
Access • Replication Backup
• Replication Backup
PVWA Server
passwords) passwords) managed passwords) managed passwords)
Hardware specifications
• PVWA can be installed on Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platforms
CPM Server
(<1,000 managed (1,000-20,000 managed (20,000-100,000 (more than 100,000
passwords) passwords) managed passwords) managed passwords)
Hardware specifications
• The following table lists the
recommended specifications for • Quad core processor
(Intel compatible)
• 2X Quad core
processor
• 2X Eight core
processors
• 4X Eight core
processors
the CPM servers • 8GB RAM
(Intel compatible) (Intel compatible) (Intel compatible)
are detailed in the Privileged • Windows 2022, Windows 2019, Windows 2016
•
Access Manager System .Net Framework 4.8
• CPM can be installed on Amazon Web Services (AWS), Microsoft Azure, and Google cloud Platforms
Requirements available online at
docs.cyberark.com
PSM Servers
RDP/SSH sessions) RDP/SSH sessions) RDP/SSH sessions)
•
PSM servers • 2X 80GB SATA/SAS hot- • 2X 80GB SATA/SAS hot-
32GB RAM
• Optimal performance can be • When adding concurrent sessions per user, make sure to increase the default timeout per session
accordingly.
achieved on physical dedicated • When increasing the number of Chrome sessions, regardless of PSM usage, make sure to follow
best practices regarding machine CPU and server capabilities.
hardware • Maximum number of Chrome • Maximum number of Chrome • Maximum number of Chrome
sessions per user – 15 sessions per user – 50 sessions per user – 100
concurrent connections concurrent connections concurrent connections
• Maximum total number of • Maximum total number of • Maximum total number of
Chrome sessions per PSM Chrome sessions per PSM Chrome sessions per PSM
server – 15 concurrent server – 50 concurrent server – 100 concurrent
connections connections connections
LDAP
⎼ Interactive logon is not required
NTP
Onsite Day 4
Troubleshoot any issues discovered during the CPM testing and PSM
workflows. Perform overview session with administrators. Go over and
assist in documenting the Master Policy, Access Control Model data
and permission structures. Set up and go over support access and
procedures.
cyberark.com
© 2024 CyberArk Software Ltd. All rights reserved
Could I please have the following items so
Sample
we can effectively communicate about our
engagement?
• Integration requirements