Product Support - TPAM Appliance

Filter to browse recommended product support content
(Choose different product)

Self-service tools will help you to install, configure and troubleshoot your Dell product.

Our technical support staff has identified the following critical information to get you started. To get the best results make sure you read through all material prior to using your Dell Product.

Java plugin blocked by default in Chrome version 42
Chrome version 42 blocks the Java plugin by default, which will cause Privileged Session Manager (PSM) session connections to fail, unless the plugin is re-enabled.
TPAM Appliance 2.5.914 Release NotesWe highly recommend that you read the release notes for the most up to date information on new features, bug fixes, known issues, etc.
CTRL button gets stuck in PSM sessions
In PSM sessions if the CTRL button is pressed and then released and then Shift pressed and released the CTRL key gets stuck.  
Non ascii characters can not be copy and pasted into a RDP PSM session
Non ascii characters cannot be copy and pasted into a PSM session. The clipboard is truncated when pasting text with special / non-ascii characters into the RDP session. When pasting text from the users workstation into the PSM session if the text contanis umlauted characters (eg. äöü) or special characters (eg äöü¥∞߉ˆ¸ƒ&lsaquo...
Ports used by "Windows" or "Windows AD" platforms
What network ports are used by "Windows" or "Windows AD" platforms? Does TPAM use WMI? Is it possible to limit the ports TPAM uses?
How to Shutdown or Restart an HA pair or Cluster
How to Shutdown or Restart an HA pair or Cluster
Hard disk encryption on new 2.5 appliances.
Does the hard drive encryption still exist on the new 2.5 appliances and is the login still required on boot?
Activity recorded for a CLI user
If a user CLI user changes a UserIDs password, the activity in not recorded in the /tpam | Reports | Activity Reports | Activity Report
Password display in logs on Linux / Unix
When performing a "Reset Password" on Unix or Linux systems, the password is displayed in plain text in the logs. e.g.[MM/DD/YYYY HH:MM:SS] debug1: Authentication succeeded (password).[MM/DD/YYYY HH:MM:SS] debug1: channel 0: new [client-session][MM/DD/YYYY HH:MM:SS] debug1: Entering interactive session.[MM/DD/YYYY HH:MM:SS] debug1: Sending environment.[MM/DD/YYYY HH:MM:SS] debug1: Sendi...
The passphrase for a CLI user is being ignored
When setting up "Key Based Authentication" with a CLI user if the "CLI Key Passphrase:" option is not, the generated key does not have a passphrase
Below is a list of the recommended software along with any documentation that will help with the install process to bring your product to the version referenced.

Java plugin blocked by default in Chrome version 42
Chrome version 42 blocks the Java plugin by default, which will cause Privileged Session Manager (PSM) session connections to fail, unless the plugin is re-enabled.
TPAM Appliance 2.5.914 Release NotesWe highly recommend that you read the release notes for the most up to date information on new features, bug fixes, known issues, etc.
Migration error: "“Error running CodeBlock "2.4.804_PAR_db_tables", Block #167: Could not find store
Error when migrating from 2.3.768 “Error running CodeBlock "2.4.804_PAR_db_tables", Block #167: Could not find stored procedure 'master..sp_PAR_cmdshell'.”
Using a Windows AD functional account fails on "MS SQL Server" platform
Connection to a Micorosft SQL 20xx server fails to connect when using a Active Directory functional account "Use Domain Account""Test System" shows the following error: [DD/MM/YYYY HH:MM:SS] Gathering the information necessary to perform a check of SQLSERVER... [DD/MM/YYYY HH:MM:SS] Checking the MS SQL Server Database SQLSERVER( [DD/MM/YYYY HH:MM:SS...
What is the part number for the Dell R320 model rail kit?
What is the part number for the Dell R320 rail kit?
Majority of PSM Enabled accounts have been disabled after migration from version 2.4 to 2.5
After migrating our TPAM appliance from 2.4 to 2.5, we noticed that most of our PSM Enabled accounts now have that feature disabled in 2.5. How can we re-enable these thousands of accounts?
Problem enrolling DPA in TPAM 2.5 after migrating from 2.4
During migration from 2.4.804 the following error halts the migration: "Error during Migration: Error 50000, Level 11, State 1, Procedure SaveAppliance, Line 149, Message: Error: Max DPA license limit would be exceeded with this new DPA. In usp_RethrowError AT LINE 59Migration Haulted!" Stopped the Migration, increased the 2.5 License count for DPAs, tried the migration again, same erro...
SSH Server vulnerabilities reported for SPCW 2.5
Security scan reports the following SSH server vulnerabilities for SPCW 2.5 clients:1) SSH Server CBC Mode Ciphers Enabled2) SSH Weak MAC Algorithms Enabled.

The current releases of the TPAM Java API are available on the HQ Portal.  For example, the file "" will have the 2.5.914 version of the edmz-par-api.jar' file for the TPAM 2.5.914 release.

Note also, the HQ Portal will have the javadoc file.

The URL for the HQ Portal is:

Is it possible to migrate a backup file from a 2.3 or 2.4 Replica appliance into a TPAM 2.5 appliance?
Is it possible to use a backup file created on a 2.3 or 2.4 Replica appliance as a Migration dataset to migrate into TPAM 2.5?
Technical Support has reviewed all the support information and has identified the most popular helpful tips and how to videos or articles to ensure you get the most out of your Dell Product.

Java plugin blocked by default in Chrome version 42
Chrome version 42 blocks the Java plugin by default, which will cause Privileged Session Manager (PSM) session connections to fail, unless the plugin is re-enabled.
TPAM Appliance 2.5.914 Release NotesWe highly recommend that you read the release notes for the most up to date information on new features, bug fixes, known issues, etc.
Failed to Auto login to Windows 2000 using Privileged Session Management
When connecting to a session on a Windows 2000 server auto login fails via RDP even though the correct password has been provided.
Enhancement Request for the ability to use an alternate field for Client Certificate Mapping.
Is it possible to use an alternate field for the Client Certificate Mapping.
Which non-alphanumeric characters are valid for password management.
Which non-alphanumeric characters are valid for password management?
Is it possible to schedule an export or report of all of the LDAP Mapping?
Is it possible to have the LDAP Mappings exported, or generate a daily report showing all of the LDAP mappings?
Are the syslogs from TPAM CEF (Common Event Format) compliant?
Are the syslogs sent from TPAM CEF (Common Event Format) compliant?
Is there the ability to send PSM Event Capture; event bookmarks; metadata to a syslog server?
Is it possible to send PSM Event Capture, bookmarks, or other metadata to a syslog server?
"Auto Discovery" and "Account Discovery" definitions.
What are the definitions of "Auto Discovery" and "Account Discovery"
Multi-Group Approvals
Trying to set up more than 1 approver for password release.Specifying different groups where approvers can approve a password release or session request.Would like to implement the scenario where approvers are from different groups.
The information below represents the most common issues customers are encountering or recent resolutions to help you trouble shoot your Dell Product.

Java plugin blocked by default in Chrome version 42
Chrome version 42 blocks the Java plugin by default, which will cause Privileged Session Manager (PSM) session connections to fail, unless the plugin is re-enabled.
Alerts Log showing many warnings: "A Windows Application Error occurred. EventID:0 Source:TPAMCONSOLE Description:sshd,sshd: PID 6132: fatal: Read from socket failed: Connection reset by peer"
The Alerts Log is showing many warnings:"A Windows Application Error occurred. EventID:0 Source:TPAMCONSOLE Description:sshd,sshd: PID 6132: fatal: Read from socket failed: Connection reset by peer "
An LDAP Mapping has been created, but it is not updating the expected Group or Collection within TPAM.
An LDAP Mapping is in place. The 'Validate DN' returns an expected count of objects. However, the updates are not appearing in TPAM.
In TPAM 2.5, the CLI command reports that "SQLSERVERAGENT is not Running"; should this agent be running?
When running the CLI commands to return status from TPAM 2.5 (such as "GetStatus -db") it is seen that the SQLSERVERAGENT is not running.  Should this agent be running?Example output from 'GetStatus -db' command:The Current State of SQLSERVERAGENT is Stopped
An "error: [object error]" is seen within Auto Discovery when selecting the source.
When adding a source in the Auto Discovery, an error is seen: "error: [object error]" when selecting the source for the LDAP Mapping.
Internet Explorer "Compatibility View" may cause display issues in TPAM 2.5.x
There have been reports of certain pages in the TPAM web interface not loading correctly and some buttons not triggering correctly when "Compatibility View" is enabled in Internet Explorer 8,9, 10 or 11. Known issues when using IEs compatilbity mode/view- When browsing the /tpam, /admin, or /config interface of the TPAM Appliance the banner is not correctly displayed. - Light ...
Unable to reset password when using LDAP/LDAPS platform
When using the LDAP or LDAPS platform you are unable to reset passwords with the error: "Error occurred setting the password: 2 0000203D: LdapErr: DSID-0C090C7D, comment: Unknown extended request OID, data 0, vece" or  "Error occurred setting the password: 2 unsupported extended operation" What LDAP/LDAPS servers are supported on TPAM?
"Test Event Capture" on a Windows platform errors: "Access is denied for functional account".
When running the "Test Event Capture", it returns "Access is denied for functional account" Testing event capture on system Test_System ( through DPA TEST_DPA (  Task exited with return code 255.  Testing WMI connectivity to using test_account  org.jinterop.dcom.core.JIComServer.initialise: Got the class not registered e...
SSL3.0 Vulnerability - "POODLE" and TPAM (CVE-2014-3566)
A discovered vulnerability in the SSL 3.0 protocol leaves it open to a "man in the middle" attack. According to Microsoft, the vulnerability is not considered high risk due to the fact that hundreds of HTTPS requests would have to be made to allow the attack to be successful. Please see Microsoft Security Advisory 3009008 for more information. For additional details on the vulnerabilit...
Error: "Access is denied." User Account Control blocks local user password management on Windows 2008 and above
Functional account may not be able to change local passwords when UAC (User Account Control) is enabled on Windows 2008, Windows 2012, Windows 7 or Windows 8. When attempting to "Reset Password" on a managed account you may see "Error: Access is denied." in the logs. [MM/DD/YYYY HH:MM:SS] Gathering the change details for ppm on WindowsServer... [MM/DD/YYYY HH:MM:SS] Setting t...
Version Full Support as of Limited Support as of Support Discontinued
2.5 12/11/2012
2.4 6/14/2011 6/30/2015 12/31/2015
2.3 3/3/2011 6/30/2013 12/31/2013
Earlier product versions not listed are considered discontinued.

The Product Support Lifecycle table above describes the phase during which Dell Software products are eligible for product support and new release downloads.

Please refer to the Product LifeCycle Tables available below:

Quest One Privileged Command Manager -

Quest One Privileged Password Manager -

Quest One Privileged Session Manager -

Product Support Policies

The Product Support Lifecycle describes the phases during which our products are eligible for patches (fixes), support and downloads from the Support Portal.

It is our policy to provide support and fixes in current versions of our products when you are under a current support agreement. Fixes to older versions are at our discretion. We strive to put resources behind the most recent product releases in order to continually improve and enhance the value of our products.

We will attempt to answer questions on older versions of our products provided resources are available; however, if you are using a discontinued version, we encourage you to upgrade to the currently supported version of the product.

Our usual support policy is to provide support on both the current (n) and prior (n-1) versions of our products. Refer to the product lifecycle table on your Product Support Page or Knowledge Base for more information.

Full Support

  • Product is fully supported, generally available release/version.
  • Includes most current released version of a product and one or more prior releases.
  • Enhancement requests for this release are accepted and may be considered for future releases.
  • Maintenance releases and/or hot fixes are periodically made available for this release.
  • Release/version is fully supported by both Support and Development.
  • Release/version is available for download from Support Portal.

Limited Support

  • Support is available for this release/version, and we will use best efforts to provide known workarounds or fixes.
  • No new code fixes will be generated except under extreme circumstances and at our discretion.
  • Enhancement requests are not accepted.
  • You are encouraged to plan an upgrade to a release/version on "Full Support".
  • Release/version is available for download from the Support Portal.


  • Includes release/versions which are retired or discontinued.
  • No new patches or fixes will be created for this release.
  • Release is not available for download from the Support Portal.
  • Support will be provided to assist with upgrading to a supported version.
  • Support is not obligated to provide assistance on this version of the product.

Continuing Support

If you are unable to upgrade or migrate your product prior to its end-of-life, we offer a Continuing Support service to provide you with one year of limited support beyond your software’s end-of-life or end-of-support date. Continuing Support is not guaranteed on every product.

  • Annual software maintenance contract must be renewed.
  • Includes uninterrupted access to technical support via phone, online and chat.
  • Support Engineers will provide known workaround solutions and fixes.
  • Fee-based service available on selected products.

    Product Enhancements

    If you are interested in submitting product enhancement requests, you can do so by creating a case with support. When we receive a product enhancement request, the Support Engineer will work to define and clearly document the request. Once documented, the request will be submitted into the enhancement review system, the identification number will be provided to the submitter, and the support case will be closed.

    Product Management will review the open enhancement requests on a periodic basis and consider them for inclusion in a future product release. Product enhancements will not be considered or implemented in current or prior product releases. There is no guarantee that a specific enhancement request will be implemented in a future version of our product. It is at our discretion if a certain enhancement will be offered for an additional charge or as a chargeable option.

    Product Defects

    If your issue is determined to be a defect in the product, it is recorded in our defect tracking system, a unique Defect Identifier (ID) will be provided to you and the support case will be closed. Notifications of new product releases will be emailed to you as long as you who have configured your profile to receive product notifications. Release Notes for new releases of products will contain the list of Defect Identifiers that were addressed in the release. You can review the release notes or search the Knowledge Base on the Support Portal using your Defect Identifier to see if the issue has been addressed. We do not guarantee that all defects identified will be fixed in a future release of the product.

    Our products have license keys generated for their use. Some products require a new license key when upgrading to a new release and/or patch. We also recommend that prior to any migration or upgrade of products, new licenses are confirmed as functioning properly as some license keys are machine and machine name specific.

    If you have questions regarding licensing of a product please complete the form available on the Support Portal Licensing Page. A Dell Software Licensing Representative will respond to your query within 24 hours.

    You may also email the Dell Software Licensing team:

    For SonicWALL specific licensing questions, contact SonicWALL Customer Service.

    Support for Trial Users

    We offer software trials on selected products for testing purposes. Support for trial users is limited to 30 days from the registration date. Service Requests for your trial product may only be submitted during the first 30 days of your testing period. You will still have unlimited access to our Support Portal for accessing the Knowledge Base and Product Pages.

    Customizations policy for Dell Software products

    A customization indicates functionality and configurations added to a product that are not provided as part of the core product release and, as such, would be outside the scope of normal support and maintenance. Customizations may take the form of new or modified scripts used within or alongside our products, as well as additional functionality such as custom reports, dashboards, rules, automated actions, etc. developed by you, your partners, or our Professional Services Organization.

    Support and Customizations

    We do not perform or maintain customizations. The design and development of customizations to our products is your responsibility. Assistance from Support will be limited to helping ensure that the product's functionality which enables the addition of customizations is functioning as expected. Alternatively, you may obtain guidance through product specific community sites or the Support Knowledge Base.

    Advanced Assistance

    If more thorough and detailed assistance is needed to design and develop customizations, we recommend that you engage our Professional Services Organization or fully certified partners to assist. Their expertise in designing customized solutions will ensure customers receive maximum value and product adoption. In addition to providing post-implementation expert services, Professional Services also offers a variety of pre-packaged customizations for some products which may meet your specific requirements.

    Training & Certification

    We recommend that you obtain the appropriate product training before attempting to design, develop, and implement any customization to our products. Our training courses will equip you with the necessary knowledge and ability to design and implement effective changes to our products. For more detail on the training services available, please refer to Training & Certification Services .

    Maintaining Customizations

    Careful consideration should be given to all customizations during future migration or upgrade exercises to new product and platform versions. Customizations could inhibit the upgrade itself and may require a level of re-work to continue functioning properly. Support does not take ownership for any customizations. We strongly encourage you to document and maintain records on any implemented customization work. These records can be useful in isolating problems that may be attributable to the customization or a defect in the core product.

    Support Policy on Virtualization

    Virtualization is a technique for hiding the physical characteristics of computing resources from the way in which other systems, applications or end users interact with those resources. It is able to make a single physical resource, such as a server, operating system, application or storage device, appear to function as multiple logical devices. It can also make multiple physical resources such as storage devices or servers appear as a single logical resource. As a result virtualization enables IT departments to increase the utilization of resources, increase high availability, and simplify back-up, systems administration and recovery procedures. It also allows IT departments to be more responsive to the dynamic needs of the business. Examples of virtualization technologies include VMware ESX Server, Citrix/XenServer and Microsoft Windows Server 2008 Hyper-V.

    Our products leverage the binary compatibility offered through virtualization technologies, which provide complete transparency to the operating systems and applications deployed. As a result, for all casework received where the Dell Software product is being used in a virtual environment, we will assume that the problem is common to both native and virtual operating environments, and that we will only require the customer to recreate the problem in a native environment if and when there is reason to believe that the problem is unique to the virtual environment itself.

    From a purely functional perspective, our products will operate in exactly the same way, however we can make no guarantees with respect to performance or scalability in a virtualization environment running multiple virtual instances. Configuration aspects such as CPU, memory availability, I/O subsystem and network infrastructure can all influence such a deployment, which should be given careful consideration to ensure the virtual layer has the necessary resources available to provide a satisfactory user experience.

    Support Policy on Third-Party Software

    We are committed to providing products which work on the latest platforms and technologies available in the industry today. We work closely with technology vendors to ensure earliest possible compatibility with our solutions. We provide full details of all systems requirements, together with platform and third-party product versions supported with our products, in the Release Notes published for each product. These include operating system versions, service pack levels, mail clients or server versions, database versions, browsers and other related technology supported and at which particular version level our products have been formally tested and certified to run against. The support of future platform versions, new service packs and other related technologies would be taken into consideration and addressed during the regular product maintenance and release cycles of our products. This provides ongoing upward compatibility of our products as used in customer environments. It should be noted therefore that there could be a delay between the availability of the latest platform technology release or service patch, and the product version certified to operate against this. Please contact Support should you have any questions with regards to the current support status of any product and a particular related platform, patch or third-party product support not explicitly documented in our release notes.

    For more information about the latest third-party platforms and versions supported, please review the System Requirements section of the release notes for your product or search our Knowledge Base on the Support Portal. Please note that while we do not directly or officially support third-party software, we work closely with many other providers to ensure our customers receive the best possible service at all times.

    Regional software license agreement applicable to your use of the software is available below (including software preinstalled on Dell hardware or made available to you by download, disk media or otherwise, at no additional cost).

    Click here to find your regional agreement.

    See all Support Policies