CyberArk Using Your Privileged Account Regularly

Using Your Privileged Account Regularly: Helpful Hints

 

If you are accustomed to using your regular network account that may have been a part of the Domain Admins or Server Admins security groups in the past, you will now need to use your privileged account exclusively since only it will be a member of Domain Admins or Server Admins.

There are a few different ways to run apps such as the RSAT tools (Active Directory Users and Computers, Group Policy Management, etc.) which are covered here as an example of how to transition to your privileged account for privileged tasks (though some of you may already be expert at this.). Your logins to most other apps will not be affected by this change at this time.

 

 

There are three ways to start using your privileged account in place of your regular user account for privileged tasks.

 

  1. Login to a server or desktop machine using your privileged account, instead of your regular network account. So basically, you would be using that server as a jump box to be able to do tasks that your privileged account can do, but your regular user account should not be able to do.

  2. Use the “Shift-Right-Click” method from your regular user session on your normal machine which I will show you here. This involves simply holding down the Shift key while you right-click on an icon or shortcut to get launch options, in this case, “Run as different user”. Then, of course, you will use your privileged login with the password you copy from CyberArk. (Note: using this method from home over VPN does cause the RSAT tools to run rather poorly and even time out, so best to reserve this method when you are physically on the fcdcdom1 network.)

  3. A combo of the two.  Connect over remote desktop using your regular account to a machine on the network, and then use the “Shift-Right-Click” method to launch the app under “Run as a different user” option using your privileged account.

 

How to use Shift-Right-Click

Hold down the Shift key and Right-Click on top of the ADUC shortcut. The “Run as a different user” option will be available, so select it.

 

 

The login box will appear, so enter in your privileged account and the password you obtained from CyberArk, and login. The app should launch with your privileged credential and permissions.

 

 

 

Page Contents

Related Articles

Page Feedback Form