Sorry to hear that you are having trouble. When a users Secret Server contains more than 30 active users Secret Server switches from a drop-down selection to a search bar with auto-fill. This is down so that administrators do not have to go through long scroll boxes. To use the search box begin by typing the name of the user (both the short and long user name works) highlight the desired name and hit Enter to add/select the user. If you are still having troubles please give us a call at 202-233-6680 We are open 9:00AM-5:30PM EST Monday-Friday and I would be glad to assist you.More >>
The Secrets are encrypted and cached on the device(computer or mobile device) and will stay there till cache is cleared whether that is done manually or by a built in timer that can be set within Secret Server. The Desktop Client and Mobile Apps are good solutions should your Secret Server become inaccessible.More >>
Each Secret that is used by the Web Password Filler must have the required fields mapped before it is considered "configured" for this purpose. Because a user must be an Owner of the Secret to configure the Web Password Filler mappings, this must be done for a Secret before non-Owners may use it in this way.
If you have any further questions, please note that you may submit a ticket at any time by going to support.thycotic.com.
Thanks for the post. Secret Server does allow you to use one Secret Launcher for multiple servers, however it will only provide Remote Password Changing and Heartbeat capabilities for the server primarily listed on the Secret. We recently posted an article in our blog that provides more detailed information on this capability:
As best practice, we encourage using unique local account passwords rather than universally identical local accounts. This brings us to your second question:
Secret Server Enterprise Plus edition provides a feature called Discovery Rules. This allows you to create rules that can be applied to Local and/or Domain accounts. Configuration of each Rule allows you to specify criteria for importing the account information such as domain, computer name and account name. You may also specify how the information will be formatted within Secret Server by declaring a Secret Type, Folder destination, Secret Name, and Secret permissions. Lastly, you are given the option to change the password to a predetermined or randomly generated new password as the information is imported.More >>
I am not aware of any behavior changes around that particular functionality. I am going to create a support ticket for you so that we can investigate this problem with you. A support engineer will be in contact soon.
The purpose of the KeepAliveMonitor is to prevent the IIS application pool from recycling or timing out. I would recommend configuring your IIS application pool to not recycle or time out (see the following Knowledge Base article: http://support.thycotic.com/KB/a56/changing-iis-to-not-stop-worker-process-in-iis-70.aspx), so the KeepAliveMonitor process is no longer necessary and you will no longer receive these error messages. The KeepAliveMonitor feature can be turned off by going to Administration>Configuration within Secret Server and changing the setting for "Prevent Application from Sleeping When Idle" to "No" under the General tab.More >>
I'm sorry to hear that you're running into problems with the setup - please contact technical support at your earliest convenience for assistance with this issue. We are available Monday through Friday, 9am-5:30pm EST at 202-223-6680 and would be happy to assist.More >>
We can reset the password for a local Secret Server account with access to the SQL database. If you would like assistance with this, please give us a call at 202-223-6680, M-F 9:00am-5:30pm EST and we can do this via a remote support session.More >>
Various features of Secret Server require sticky session due to storing some user information in memory of that server. If the user were to be hitting different web servers at a time, that memory would be inconsistent between the two servers.
We currently do not have a specific timeline on roadmap to change this, however I have opened a support ticket with our product manager for you to discuss and to get a better understanding of your needs.More >>