Launching a secret

To launch a secret:

Go to Secrets > Secret List.
In the Secrets List, double-click a secret to open.
Alternatively, in Folders, go to the folder where the secret is located, and double-click the secret to open.
If the secret does not show up, it may be because you do not have the necessary permission to access the secret or the folder where the secret is located.
Click Launch Secret.
The Launch Progress window opens.
From the list, select a launcher, and select Launch.
Chrome, Edge and Firefox have extensions to support video recording for browser based launchers.
AWS does not work with Web SSH.
When using file launchers, the following two security features can be enabled in a secret:
Note: Examples of a file launcher include WinSCP, Web SMB, and Web SFTP.
1. By assigning an antivirus profile to a secret, the user can be protected from downloading viruses and the server can be protected from virus being uploaded. See the Antivirus Scan option in Creating a policy and Creating a secret. Also, see AntiVirus.
2. By assigning a DLP sensor to a secret, the server can be protected from sensitive information being uploaded and downloaded from the server. See Data loss prevention (DLP) protection for secrets.
After the session is finished, close the launcher.

See Check out and check in a secret.

Blocklist and allowlist for RDP target IP address restriction

When launching a secret with the Windows Domain Account template, you can input any IP address as the target secret. Blocklist and allowlist can help you to improve security by allowing preconfigured IP addresses.

This feature is only available on the CLI.

config secret database

edit <Secret ID>

set address-blacklist <address>

...

config secret database

edit <Secret ID>

set address-whitelist <address>

...

Notes:

If address-blacklist is set, all IP addresses except those in <address> are blocked. All other IP addresses are allowed.
If address-whitelist is set, IP addresses in <address> are allowed. All other IP addresses are blocked.

To launch a secret:

Go to Secrets > Secret List.
In the Secrets List, double-click a secret to open.
Alternatively, in Folders, go to the folder where the secret is located, and double-click the secret to open.
If the secret does not show up, it may be because you do not have the necessary permission to access the secret or the folder where the secret is located.
Click Launch Secret.
The Launch Progress window opens.
From the list, select a launcher, and select Launch.
Chrome, Edge and Firefox have extensions to support video recording for browser based launchers.
AWS does not work with Web SSH.
When using file launchers, the following two security features can be enabled in a secret:
Note: Examples of a file launcher include WinSCP, Web SMB, and Web SFTP.
1. By assigning an antivirus profile to a secret, the user can be protected from downloading viruses and the server can be protected from virus being uploaded. See the Antivirus Scan option in Creating a policy and Creating a secret. Also, see AntiVirus.
2. By assigning a DLP sensor to a secret, the server can be protected from sensitive information being uploaded and downloaded from the server. See Data loss prevention (DLP) protection for secrets.
After the session is finished, close the launcher.

See Check out and check in a secret.

Blocklist and allowlist for RDP target IP address restriction

This feature is only available on the CLI.

config secret database

edit <Secret ID>

set address-blacklist <address>

...

config secret database

edit <Secret ID>

set address-whitelist <address>

...

Notes:

If address-blacklist is set, all IP addresses except those in <address> are blocked. All other IP addresses are allowed.
If address-whitelist is set, IP addresses in <address> are allowed. All other IP addresses are blocked.