Posts: 28
Threads: 5
Joined: Sep 2023
Reputation:
0
I'm unable to check out PAM secrets that require comments in order to check them out.
RRD version 16.0.8070.1
Password manager = Delinea Thycotic Secret Server.
Posts: 10,982
Threads: 97
Joined: Aug 2006
Reputation:
198
In API there is a field "autoComment" - we can set this field.
But currently I don't know when is a secret "checked out"? On sync of secrets we set "noAutoCheckout = true" to prevent it - when should be set a comment? I can add a field in Delinea Settings that is used on API-Calls - also autoCheckin, autoCheckout can be set - but need some more details when that make sense?!?
Regards/Gruss
Oliver
Posts: 10,982
Threads: 97
Joined: Aug 2006
Reputation:
198
New option "AutoComment" integrated and used
Regards/Gruss
Oliver
Posts: 10,982
Threads: 97
Joined: Aug 2006
Reputation:
198
Empty folders - don't know what is causing your empty folders...
Regards/Gruss
Oliver
Posts: 28
Threads: 5
Joined: Sep 2023
Reputation:
0
04-04-2024, 02:17 PM
(This post was last modified: 04-04-2024, 02:18 PM by DionEarnshaw.)
I'm still facing this issue where the folder I'm syncing isn't displaying any secrets within it when sycned to RRD. It is syncing other folders but not this one, this is one where the secrets require a comment to check them out, not sure if this is related?
I'm using RRD 2024 version 17.0.8115.1.
Posts: 10,982
Threads: 97
Joined: Aug 2006
Reputation:
198
Could you please ensure you are using REST-API - in Settings=>Delinea Secret Server - and use the URL like I posted before - I think I have tested with both API's but would be a try to test it with REST-API
I have created in my test environment a folder with highest security template - and I can read this folder and secrets inside this folder now - the secrets are restricted, we check that and do not read the content of these items anymore unless you are checking them out - The restricted secrets are marked with new red image - and then you can "check out" these secrets and use it afterwards
You can only sync these restricted secrets with option "Only sync object names" - else it would check-out the secret by first read
Regards/Gruss
Oliver
Posts: 28
Threads: 5
Joined: Sep 2023
Reputation:
0
Hi,
Yes of course, I have permissions in PAM to check out the secrets I'm trying to use.
This has since been resolved.
Thanks.