BeyondTrust Privileged Remote Access Cloud

Create a Privileged Remote Access API account

Within your Privileged Remote Access administration dashboard, navigate to Management and click API Configuration.
Under API CONFIGURATION, ensure Enable XML API is checked.
Click Add beside API Accounts and configure the following:
- Provide a human-readable name, and any descriptive comments for referencing your account.
- Under Permissions, ensure the following options are selected:
  - Command API: Read only
  - Configuration API: Allow Access, Manage Vault Accounts
  - Reporting API: Allow Access to Access Session Reports and Recordings, Allow Access to Syslog Reports
- Under Network Restrictions, enter the following IP addresses:
  - US sites:
    - 50.16.236.14
    - 54.163.153.193
    - 54.225.135.48
  - EU sites:
    - 3.72.126.244
    - 3.78.41.126
    - 3.125.93.216
  - UK sites:
    - 18.130.205.142
    - 18.133.85.99
    - 18.135.255.23
  - CA sites:
    - 35.182.121.100
    - 3.97.211.0
    - 3.96.180.135
ℹ️
For FedRAMP connectors, refer to the IP address shown on the Create Connector page.
Privileged Remote Access generates a new client ID and client secret. Copy your client ID and client secret before saving your information and exiting this page.
Click Save.

Add a Privileged Remote Access connector

Select > Connectors.
Click the Total configured link.
Select Create Connector > Privileged Remote Access.

Provide the following information to connect to PRA:
- Name: A human-readable name for your PRA connector.
- Subdomain: Your PRA subdomain, e.g., subdomain.beyondtrustcloud.com.
- Client ID: Paste the Client ID provided in Step 3 of your PRA configuration above.
- Client Secret: Paste the Client Secret provided in Step 3 of your PRA configuration above.
Click Create Connector.

Navigate to the Configured Connectors panel ( > Connectors > Total Configured) to confirm the connector was successfully created and review any connector settings.