CA Privileged Access Manager Tech Tip by Kelly Wong, Principal Support Engineer for 10th April 2017
Introduction
You can implement transparent login for a Windows RDP server for secondary access through an application on that Device.
Question
In policy, can we associate multiple secondary Target Accounts with the RDP Application for Transparent Login?
Example:
Two PuTTY RDP Applications referencing different Target Host with respective Target Account or one PuTTY RDP Application associate with multiple Target Accounts?
Answer
Out-of-the-box, CA PAM allows multiple Target Accounts set as primary access credentials that are consumed during login to the Device. However, it is not possible to associate more than one secondary credentials that are consumed by the RDP Application.
"Message 12015: There is credential conflict in Transparent Login Window with the title '***'" is returned when you attempt to save the user-device policy with two RDP Applications that have the same Transparent Login's Window Title.