What's New in Remote Desktop Manager 2024.3

• New features
  • Azure Privileged Identity Management (PIM)
  • One Identity Safeguard
  • Support for Delinea Secret Server proxy for RDP and SSH
  • HP® iLO native console
  • Proton Pass password manager
  • Add-on support for Barracuda NAC VPN
  • ServiceNow ticketing service
• Improvements
  • SSH terminal broadcast enhancements
  • SSH syntax highlighting: support for bold characters and more color options
  • Devolutions PAM: Automatic check-in of a privileged account when closing a session
  • Customizable permissions for temporary access
  • Offboarding users

---

Thank you for updating Remote Desktop Manager to version 2024.3. This is our third and last major update for 2024, delivering many additions and improvements inspired by feedback from our users.

For the full bulleted list of changes, please refer to the release notes.

Continue reading for an overview of the most exciting additions and improvements!

New features

Azure Privileged Identity Management (PIM)

We’ve added a new integration with a service in Entra ID, Azure Privileged Identity Management (PIM). This new integration eliminates the need for Azure PIM operators and administrators from having to go on the Azure administrator console to activate/deactivate privileged accounts, bringing efficiency and security. Do it all within Remote Desktop Manager!

One Identity Safeguard

We’ve added a new PAM vendor integration in RDM, One Identity Safeguard. Similar to our CyberArk integration and others like it, this integration blends the power of One Identity secrets with our expertise in remote access protocols to give One Identity users a more focused and intuitive user experience when connecting to endpoints by retrieving credentials from One Identity and injecting them against sessions within RDM.

Support for Delinea Secret Server proxy for RDP and SSH

We’ve added new RDP and SSH sessions specifically designed to leverage Delinea’s Secret Server proxy. The custom RDP entry has the same standard settings as the regular RDP connection. You can also launch SSH connections through the Secret Server proxy. The same settings for the regular SSH connection are also available. Use SFTP, change background colors and fonts, configure your keyboard settings, etc.

HP® iLO native console

Following the addition of the Dell iDRAC console, we’ve added the HP® iLO native console. A server with HP® iLO (Integrated Lights-Out) is a server with integrated remote management technology, allowing control of the server regardless of its operating system or operating state. Learn more about HP® iLO.

Add-on support for Barracuda NAC VPN

We now support the Barracuda NAC VPN as a new add-on for our Barracuda users to help them automate the connection to endpoints using RDM.

Note: This new entry type is experimental, and we would like to have your feedback. Write to us on our forum to share your thoughts on this new VPN entry!

Proton Pass password manager

Our list of third-party password managers grows once more! We’ve added support for Proton Pass for easy credential injection in Remote Desktop Manager!

ServiceNow ticketing service

It’s now possible to add a prompt for specifying a ticket in ServiceNow (only for SQL Server for now). Accessible through Administration > System settings > Ticketing service, this option will make access requests and tasks significantly easier by validating the reason for connecting to endpoints where a ticket number is required. This is also useful for logging purposes, especially for audit trails.

Improvements

SSH terminal broadcast enhancements

We’ve implemented broadcasting all opened SSH Terminal sessions in RDM. This feature improves upon the existing broadcast functionand makes it much easier and more intuitive to send the same command to all opened terminal sessions.

Behavior of the Broadcast all button:

• Requirement: Needs at least two entries open that can broadcast.
• No existing broadcast entry: Adds all entries to the broadcast.
• Existing broadcast entry/entries: Adds any entry not currently broadcasted.
• View switching: If enabled, switches to a pre-configured view.

Behavior of the Remove all broadcasts button:

• Removes all entries from the broadcast if any are currently broadcasting.

SSH syntax highlighting: support for bold characters and more color options

We’ve added support for making characters bold when doing syntax highlighting in our SSH terminal. You can also configure bold style as the default for all current SSH entries in File > Settings and change the default settings of new entries, affecting all new SSH sessions that are created.

To configure bold style in RDM’s general settings:

You can now also use custom colors (RGB values), instead of the predefined terminal colors (e.g. ANSI Green, ANSI Red, and ANSI Cyan). Just like with the previous improvement for syntax highlighting, you can change the default setting for new sessions in File > Settings.

Devolutions PAM: Automatic check-in of a privileged account when closing a session

Continuing on our journey of enhancing and expanding the capabilities of Devolutions PAM, we’ve improved how privileged accounts are handled in sessions. Users can now automatically check in or be prompted to check in a privileged account if its allotted usage time hasn’t expired. This will reduce security risks and make managing these accounts easier for administrators, especially in cases where password rotation policies for highly sensitive accounts are critical. This feature also comes into play when just-in-time (JIT) elevation is used to allow a particular account to execute privileged tasks.

Customizable permissions for temporary access

It’s now possible for users to request and for administrators to specify additional permissions as needed, such as giving view/execute rights for a certain period of time and granting rights through permission sets when users request or when administrators grant temporary access. Administrators may not want users to see all of the entries, but may want to make these entries temporarily visible, or allow users to open sessions so that credentials can be automatically filled into websites. With these elements now available, it’s easier for administrators to delegate access rights on a temporary basis and for users to receive quicker access to entries with the permissions they need to do their work.

Offboarding users

We are introducing an automated offboarding process for users within SQL Server, Devolutions Server, and Devolutions Hub (already supported) data sources. This process will allow administrators to automatically prepare and remove RDM users when they leave the team or stop using RDM, so that their licenses can be easily reassigned and their user vaults can be recovered and made into a shared vault accessible to administrators only.