EPM Elevate Cisco Secure Client

VPN
1

Hi, (3 weeks new into CyberArk)
What is the best way to allow elevation for Cisco Secure Client?

We have a trust policy for macOS & Windows to elevate and we put Cisco into an application group that goes to the trust based on platform. We tried Publisher ID + original file name + file location but that didn’t work we tested a few others before going only to Publisher ID. CyberArk causing these automatic installs fail.

The issue is that our network team will push minor updates and as employees connect to VPN the client will download and attempt update itself. We are using the main Cisco Client, Umbrella, ISE, Dart, etc. There are so many components to Cisco not sure how to account for this.

2

Several months since I worked with EPM but if the app is signed, don’t use path location nor original name. Sometimes companies change the original name or the users select a different installation path and then you will need to edit the exception.

Add the app to an advanced policy and make sure that you enable the “run child processes” when creating the exception.

That’s all I can remember :confused: