Professional Documents
Culture Documents
08
Check Date
☐ ___/___/___ Customer has registered for a login to the Technical Community Portal
Go to https://cyberark.my.site.com/s/login/
Sign up as a customer
Review the CAMP KB for instructions on managing additional portal
users
o https://cyberark.my.site.com/s/article/Community-Access-
Management-Portal-CAMP-FAQs
☐ ___/___/___ Customer has viewed the Privilege Cloud Service Status & Global Support page
Subscribe to all Privilege Cloud & Identity Status updates
o https://privilegecloud-service-status.cyberark.com/
o https://trust.idaptive.com/
Resource Center
o Privilege cloud admin resource center
☐ ___/___/___ Customer has activated their Identity tenant by following the instructions in the
email with the subject line “Your new CyberArk tenant”
CyberArk Initial Email Tenant Action Troubleshooting and FAQ
☐ ___/___/___ Customer has downloaded and staged the software on the Connector Servers
Downloaded the latest Privilege Cloud software from CyberArk Marketplace
CyberArk Privilege Cloud
o Unified Hardening GPO
o CyberArk Privilege Cloud Tools
o PSM for SSH (Optional as needed)
☐ ___/___/___ Customer has added their Public IPv4 address range(s) to CyberArk Privilege
Cloud > Advanced Settings > IP AllowList menu.
Round robin fault tolerance is supported
CIDR ranges are supported (/22 - /32 ranges)
Documentation for Configure AllowList
☐ ___/___/___ Customer has deployed dedicated servers with system levels according to
Software Requirements:
Connector Server – Windows 2019/2022 (en-US)
o CyberArk recommends deploying on a clean ISO image
Common corporate VM template image customizations can
cause delays in the software installation and configuration
process
o Deployed into an OU with GPO inheritance disabled
For initial software installation only
CyberArk Hardening GPOs will be provided to fully harden the
component servers from the domain level
Joined to the Windows Domain (for PSM RemoteApp feature support)
.NET Framework 4.8 is installed
Antivirus not installed or disabled
RDS should not be installed on the machine preemptively. Our install
handles this automatically and needs the machine clean of RDS for it to
work.
☐ ___/___/___ Customer has an RDS Licensing server with an appropriate number of RDS CAL
licenses provided by Microsoft
RDS License type and usage - Licensing requirements for Microsoft RDS
when deploying CyberArk PSM
(optional) If TLS security layer is required by customer for RDP
connections, a signed certificate must be issued to the PSM server(s)
from an internal or public trusted certificate authority. All end user
machines must trust the certificate authority.
☐ ___/___/___ Customer has taken snapshots of the Connector VM server before the
engagement starts to prepare a backup in case of failure for any reason.
☐ ___/___/___ Domain user with Local Admin access to the Connector Servers will be available
to CyberArk administrators during installation
☐ ___/___/___ Customer has made CyberArk Administrators, needed for training and
deployment, exclusively available for the whole duration of the engagement
☐ ___/___/___ Customer has made the company's following engineers available to assist as
needed for the duration of the engagement:
Systems Administrator
Network Engineer
Domain administrator
Any Server/IT engineer as you see fit