Recent Activities
Thycotic Community - Recent Posts
Reports
(6/17/2013)
[1 reply] last message by 
Joshua C in Secret Server
Hi Peter,
Sorry to hear that you are having trouble. When a users Secret Server contains more than 30 active users Secret Server switches from a drop-down selection to a search bar with auto-fill. This is down so that administrators do not have to go through long scroll boxes. To use the search box begin by typing the name of the user (both the short and long user name works) highlight the desired name and hit Enter to add/select the user. If you are still having troubles please give us a call at 202-233-6680 We are open 9:00AM-5:30PM EST Monday-Friday and I would be glad to assist you. More >>
[1 reply] last message by Joshua C in Secret ServerHi Peter,
Sorry to hear that you are having trouble. When a users Secret Server contains more than 30 active users Secret Server switches from a drop-down selection to a search bar with auto-fill. This is down so that administrators do not have to go through long scroll boxes. To use the search box begin by typing the name of the user (both the short and long user name works) highlight the desired name and hit Enter to add/select the user. If you are still having troubles please give us a call at 202-233-6680 We are open 9:00AM-5:30PM EST Monday-Friday and I would be glad to assist you. More >>
Desktop Client
(6/17/2013)
[3 replies] last message by Joshua C in Secret Server
Hi Peter,
The Secrets are encrypted and cached on the device(computer or mobile device) and will stay there till cache is cleared whether that is done manually or by a built in timer that can be set within Secret Server. The Desktop Client and Mobile Apps are good solutions should your Secret Server become inaccessible. More >>
[3 replies] last message by Joshua C in Secret ServerHi Peter,
The Secrets are encrypted and cached on the device(computer or mobile device) and will stay there till cache is cleared whether that is done manually or by a built in timer that can be set within Secret Server. The Desktop Client and Mobile Apps are good solutions should your Secret Server become inaccessible. More >>
Web Password Filler - Not configured message
(6/13/2013)
[1 reply] last message by 
Jessica M in Secret Server
Hi Michael,
Each Secret that is used by the Web Password Filler must have the required fields mapped before it is considered "configured" for this purpose. Because a user must be an Owner of the Secret to configure the Web Password Filler mappings, this must be done for a Secret before non-Owners may use it in this way.
If you have any further questions, please note that you may submit a ticket at any time by going to support.thycotic.com.
Thanks! More >>
[1 reply] last message by Jessica M in Secret ServerHi Michael,
Each Secret that is used by the Web Password Filler must have the required fields mapped before it is considered "configured" for this purpose. Because a user must be an Owner of the Secret to configure the Web Password Filler mappings, this must be done for a Secret before non-Owners may use it in this way.
If you have any further questions, please note that you may submit a ticket at any time by going to support.thycotic.com.
Thanks! More >>
Currently possible or feature request?
(6/12/2013)
[1 reply] last message by Jessica M in Secret Server
Hi Erich,
Thanks for the post. Secret Server does allow you to use one Secret Launcher for multiple servers, however it will only provide Remote Password Changing and Heartbeat capabilities for the server primarily listed on the Secret. We recently posted an article in our blog that provides more detailed information on this capability:
http://blog.thycotic.com/2013/05/03/restricting-user-input-for-launcher/
As best practice, we encourage using unique local account passwords rather than universally identical local accounts. This brings us to your second question:
Secret Server Enterprise Plus edition provides a feature called Discovery Rules. This allows you to create rules that can be applied to Local and/or Domain accounts. Configuration of each Rule allows you to specify criteria for importing the account information such as domain, computer name and account name. You may also specify how the information will be formatted within Secret Server by declaring a Secret Type, Folder destination, Secret Name, and Secret permissions. Lastly, you are given the option to change the password to a predetermined or randomly generated new password as the information is imported. More >>
[1 reply] last message by Jessica M in Secret ServerHi Erich,
Thanks for the post. Secret Server does allow you to use one Secret Launcher for multiple servers, however it will only provide Remote Password Changing and Heartbeat capabilities for the server primarily listed on the Secret. We recently posted an article in our blog that provides more detailed information on this capability:
http://blog.thycotic.com/2013/05/03/restricting-user-input-for-launcher/
As best practice, we encourage using unique local account passwords rather than universally identical local accounts. This brings us to your second question:
Secret Server Enterprise Plus edition provides a feature called Discovery Rules. This allows you to create rules that can be applied to Local and/or Domain accounts. Configuration of each Rule allows you to specify criteria for importing the account information such as domain, computer name and account name. You may also specify how the information will be formatted within Secret Server by declaring a Secret Type, Folder destination, Secret Name, and Secret permissions. Lastly, you are given the option to change the password to a predetermined or randomly generated new password as the information is imported. More >>
API Code Examples
(6/10/2013)
[1 reply] last message by Christopher B in Secret Server
Hey Frank
I made this a couple of days ago, maybe you'll find it useful, it's based off of the example here on Thycotics site.
function GetFieldId($template, [string]$name) {
Return ($template.Fields | Where {$_.DisplayName -eq $name}).Id
}
function CreateNewSecret {
param($accountUserName, $accountPassword)
#fill in username, password, and baseUrl for your Secret Server.
$username = 'SS_Account'
$password = 'SS_Account_Password'
$domain = 'yourDomain'
$baseUrl = 'https://yoursecretserver.com'
$url = $baseUrl + '/SecretServer/webservices/SSWebService.asmx'
$proxy = New-WebServiceProxy -uri $url -UseDefaultCredential
$tokenResult = $proxy.Authenticate($username, $password, '', $domain)
if($tokenResult.Errors. More >>
[1 reply] last message by Christopher B in Secret ServerHey Frank
I made this a couple of days ago, maybe you'll find it useful, it's based off of the example here on Thycotics site.
function GetFieldId($template, [string]$name) {
Return ($template.Fields | Where {$_.DisplayName -eq $name}).Id
}
function CreateNewSecret {
param($accountUserName, $accountPassword)
#fill in username, password, and baseUrl for your Secret Server.
$username = 'SS_Account'
$password = 'SS_Account_Password'
$domain = 'yourDomain'
$baseUrl = 'https://yoursecretserver.com'
$url = $baseUrl + '/SecretServer/webservices/SSWebService.asmx'
$proxy = New-WebServiceProxy -uri $url -UseDefaultCredential
$tokenResult = $proxy.Authenticate($username, $password, '', $domain)
if($tokenResult.Errors. More >>
Feature Request: Secret Sharing Steps
(6/6/2013)
[1 reply] last message by 
Kevin in Secret Server
Hi Ralph,
I am not aware of any behavior changes around that particular functionality. I am going to create a support ticket for you so that we can investigate this problem with you. A support engineer will be in contact soon.
Thanks! More >>
[1 reply] last message by Kevin in Secret ServerHi Ralph,
I am not aware of any behavior changes around that particular functionality. I am going to create a support ticket for you so that we can investigate this problem with you. A support engineer will be in contact soon.
Thanks! More >>
Feature Requests: Add user to secret
(6/4/2013)
[1 reply] last message by Kevin in Secret Server
Hi Joel,
This is an interesting idea, thanks for the feature request. I've entered your feature request into our tracking system for review by our product owner.
Thanks! More >>
[1 reply] last message by Kevin in Secret ServerHi Joel,
This is an interesting idea, thanks for the feature request. I've entered your feature request into our tracking system for review by our product owner.
Thanks! More >>
Feature Request: Personal Secret Defaults
(6/4/2013)
[5 replies] last message by Kevin in Secret Server
Hi Peter,
Great! I've captured a feature request. We'll reach out to you when we have a better idea of where this feature request fits in our timeline. More >>
[5 replies] last message by Kevin in Secret ServerHi Peter,
Great! I've captured a feature request. We'll reach out to you when we have a better idea of where this feature request fits in our timeline. More >>
Password Reset Server 2.3.000000 Released
(5/28/2013)
[no replies] last message by 
Ben in Password Reset Server
Release notes:
http://www.thycotic.com/products_passwordresetserver_releasenotes.html
How to Upgrade Password Reset Server:
http://support.thycotic.com/KB/a123/upgrading-password-reset-server. More >>
[no replies] last message by Ben in Password Reset ServerRelease notes:
http://www.thycotic.com/products_passwordresetserver_releasenotes.html
How to Upgrade Password Reset Server:
http://support.thycotic.com/KB/a123/upgrading-password-reset-server. More >>
Exception in KeepAliveMonitor
(5/24/2013)
[1 reply] last message by Jessica M in Secret Server
Hi Cal,
The purpose of the KeepAliveMonitor is to prevent the IIS application pool from recycling or timing out. I would recommend configuring your IIS application pool to not recycle or time out (see the following Knowledge Base article: http://support.thycotic.com/KB/a56/changing-iis-to-not-stop-worker-process-in-iis-70.aspx), so the KeepAliveMonitor process is no longer necessary and you will no longer receive these error messages. The KeepAliveMonitor feature can be turned off by going to Administration>Configuration within Secret Server and changing the setting for "Prevent Application from Sleeping When Idle" to "No" under the General tab. More >>
[1 reply] last message by Jessica M in Secret ServerHi Cal,
The purpose of the KeepAliveMonitor is to prevent the IIS application pool from recycling or timing out. I would recommend configuring your IIS application pool to not recycle or time out (see the following Knowledge Base article: http://support.thycotic.com/KB/a56/changing-iis-to-not-stop-worker-process-in-iis-70.aspx), so the KeepAliveMonitor process is no longer necessary and you will no longer receive these error messages. The KeepAliveMonitor feature can be turned off by going to Administration>Configuration within Secret Server and changing the setting for "Prevent Application from Sleeping When Idle" to "No" under the General tab. More >>
Database setup error
(5/22/2013)
[1 reply] last message by Jessica M in Secret Server
Hi Duncan,
I'm sorry to hear that you're running into problems with the setup - please contact technical support at your earliest convenience for assistance with this issue. We are available Monday through Friday, 9am-5:30pm EST at 202-223-6680 and would be happy to assist. More >>
[1 reply] last message by Jessica M in Secret ServerHi Duncan,
I'm sorry to hear that you're running into problems with the setup - please contact technical support at your earliest convenience for assistance with this issue. We are available Monday through Friday, 9am-5:30pm EST at 202-223-6680 and would be happy to assist. More >>
Admin Password Reset
(5/21/2013)
[1 reply] last message by Jessica M in Secret Server
Hi Chris,
We can reset the password for a local Secret Server account with access to the SQL database. If you would like assistance with this, please give us a call at 202-223-6680, M-F 9:00am-5:30pm EST and we can do this via a remote support session. More >>
[1 reply] last message by Jessica M in Secret ServerHi Chris,
We can reset the password for a local Secret Server account with access to the SQL database. If you would like assistance with this, please give us a call at 202-223-6680, M-F 9:00am-5:30pm EST and we can do this via a remote support session. More >>
Load Balancing
(5/10/2013)
[1 reply] last message by Kevin in Secret Server
Jonathan,
Various features of Secret Server require sticky session due to storing some user information in memory of that server. If the user were to be hitting different web servers at a time, that memory would be inconsistent between the two servers.
We currently do not have a specific timeline on roadmap to change this, however I have opened a support ticket with our product manager for you to discuss and to get a better understanding of your needs. More >>
[1 reply] last message by Kevin in Secret ServerJonathan,
Various features of Secret Server require sticky session due to storing some user information in memory of that server. If the user were to be hitting different web servers at a time, that memory would be inconsistent between the two servers.
We currently do not have a specific timeline on roadmap to change this, however I have opened a support ticket with our product manager for you to discuss and to get a better understanding of your needs. More >>
Web password filler for Sonicwall GUI
(5/10/2013)
[1 reply] last message by Joshua C in Secret Server
Good Morning Erich,
Thanks for the feedback, we are aware of the issue with the Web Filler and Sonicwall Firewalls. We have a task for the development team to look into getting that working. More >>
[1 reply] last message by Joshua C in Secret ServerGood Morning Erich,
Thanks for the feedback, we are aware of the issue with the Web Filler and Sonicwall Firewalls. We have a task for the development team to look into getting that working. More >>
Group Management Server 1.2.000006 Released
(5/6/2013)
[no replies] last message by Ben in Group Management Server
Full release notes are here:
http://www.thycotic.com/groupmanagementserver_releasenotes.html
-----
To upgrade:
http://support.thycotic.com/KB/a283/upgrading-group-management-server-single-instance. More >>
[no replies] last message by Ben in Group Management ServerFull release notes are here:
http://www.thycotic.com/groupmanagementserver_releasenotes.html
-----
To upgrade:
http://support.thycotic.com/KB/a283/upgrading-group-management-server-single-instance. More >>
Featured Event
Connect With Us
Top Participants
Latest Blog Posts
Thycotic Blog
Integrating Your Ticketing System in Secret Server
(6/14/2013)
Secret Server can integrate with any web ticketing system. More >>
Secret Server can integrate with any web ticketing system. More >>
Customizing Roles For Your Company – Part Two
(5/31/2013)
In Part One of this two-part series we discussed setting custom Roles inside of Secret Server. More >>
In Part One of this two-part series we discussed setting custom Roles inside of Secret Server. More >>
Breaking the Glass With Unlimited Administration Mode
(5/28/2013)
What happens when a user creates Secrets and does not share them with anyone else, or if you are administrating Secret Server and need to re-organize your Secrets? More >>
What happens when a user creates Secrets and does not share them with anyone else, or if you are administrating Secret Server and need to re-organize your Secrets? More >>
Customizing Roles For Your Company – Part One
(5/10/2013)
Secret Server uses Roles and Permissions to control access to various capabilities within the system. More >>
Secret Server uses Roles and Permissions to control access to various capabilities within the system. More >>
Restricting User Input for Launcher
(5/3/2013)
A new feature in Secret Server is the ability to control which servers users are able to connect to using a Launcher. More >>
A new feature in Secret Server is the ability to control which servers users are able to connect to using a Launcher. More >>
Secret Server 
Password Reset Server 
Group Management Server
Company