search

pspete / psPAS

PowerShell module for CyberArk Privileged Access Security REST API
https://pspas.pspete.dev
MIT License
293 stars 91 forks source link

Add-PASApplicationAuthenticationMethod -Unable to set the Auth value for the certificate Attributes #303

Closed Loga-Sivakumar closed 4 years ago

Loga-Sivakumar commented 4 years ago

Describe the issue Using Add-PASApplicationAuthenticationMethod unable to set the Auth value for AuthType : certificateattr

To Reproduce Steps to reproduce the behavior:

Expected behavior The Auth value of the certificateattribute (Subject,Issuer,SAN) needs to be set.

Screenshots & Console Output After adding certificateAttribute (Subject) and executing the command Get-PASApplicationAuthenticationMethod -AppID AIM_CCP_Access_Wt_Cert Getting the below error AppID : AIM_CCP_Access_Wt_Cert authID : 2 AuthType : certificateattr AuthValue : AllowInternalScripts : IsFolder : Comment :

Console Output Code Block: $cred = Get-Credential New-PASSession -Credential $cred -BaseURI http://server.xxx.yyy.zzz -type CyberArk -Verbose Add-PASApplicationAuthenticationMethod -AppID AIM_CCP_Access_Wt_Cert -Subject "CN=server.xxx.yyy.zzz" Get-PASApplicationAuthenticationMethod -AppID AIM_CCP_Access_Wt_Cert

Your Environment

Additional context While passing the comments to Add-PASApplicationAuthenticationMethod while sending the Subject details, Comments is getting updated but the Subject Attribute is empty.

pspete commented 4 years ago

Confirm if you see the expected values with this command:

Get-PASApplicationAuthenticationMethod -AppID AIM_CCP_Access_Wt_Cert | Select-Object *
pspete commented 4 years ago

Added to default view in psPAS 4.3.65

Loga-Sivakumar commented 4 years ago

Able to get the authentication method but the Auth value is empty. Able to get auth value of Serial number authentication, but not for the certificate attribute authentication type

On Fri, Aug 21, 2020 at 1:42 AM Pete Maan notifications@github.com wrote:

Added to default view in psPAS 4.3.65

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/pspete/psPAS/issues/303#issuecomment-677879410, or unsubscribe https://github.com/notifications/unsubscribe-auth/AOKPPAL6RWUKP6XEHOWPWYTSBV7UHANCNFSM4QGCLQBQ .

-- with regards S.LOGAMBIKAI

pspete commented 4 years ago

Please provide supporting information to illustrate what you are reporting, or alternatively, create a new issue containing all the requested details. You can include screenshots, console output, module version etc.