Symantec Privileged Access Management

 View Only
Expand all | Collapse all

Customers can no longer log into the AWS console using PAM.

  • 1.  Customers can no longer log into the AWS console using PAM.

    Posted Sep 05, 2024 02:19 AM
    Product
    CA Privileged Access Manager (PAM)
     
    Problem
    Customers can no longer log into the AWS console using PAM.
     
    Until recently, customers were able to log into the AWS console using PAM, but now they can no longer do so.
    The error message says that automatic login has timed out, so is this the situation described in the following KB?
     
    https://knowledge.broadcom.com/external/article/267721/issues-with-webportal-autologin.html
     
     
    The customer has tried resetting the settings using the following KB as a reference, but is there still no other option than to update?
     
    https://knowledge.broadcom.com/external/article?articleNumber=372859
     
    > I used the web learning mode to link the user and password fields and tried logging in again, but the issue was not resolved.
     
     
     
    Thanks,


  • 2.  RE: Customers can no longer log into the AWS console using PAM.

    Broadcom Employee
    Posted Sep 06, 2024 02:05 PM

    Hello, When you post questions here, please provide information on the PAM release you are running. Did you check for messages in the PAM session logs at the time the problem is observed? E.g. access list violations would be logged there. These occur if the web service gets directed to a URL that is not covered in the access list configured for TCP/UDP service "AWS Management Console SSO". If you don't find messages that guide you to a solution, I suggest you open a case with PAM Support for detailed investigation.