Imprivata Documentation | Imprivata Vendor Privileged Access Management | Topic updated: October 01, 2025

Installation

Imprivata Customer Privileged Access Management (CPAM) is an application that enables you to remotely and securely access your customer's assets. To provide the service, you need to install and help your customers install components that:

Establish the secure connection between you and your customers' assets.
Provide customizable configurations of the remote access.
Manage and monitor the remote support session manager and logging services.

This section contains a high-level description of the CPAM components.

CPAM Components

Gatekeepers

A Gatekeeper is the component that handles all interactions between you and your customer's assets. When your customer installs a Gatekeeper on a dedicated server or application, they can grant you access to it, enabling you to provide remote and secure support.

All the activities that you perform in your customer's Gatekeeper are monitored and logged for audit and safety purposes.

Read the Gatekeeper Installation for information on how to install this component.

Read the Gatekeeper Management documentation to learn how to configure and manage gatekeepers.

Gateways

Gateways serve as an access point to your customer's network and systems. Gateways direct traffic from your users that log in to the CPAM server to provide customer support. The Gateways software system is accessible by administrative users of your CPAM server and they are housed in your customer's Local Area Network (LAN), on a server that they manage. When you install a Gateway in your customer's systems, you are also installing a Gatekeeper for that Gateway.

Read the Gateway Installation Guide information on how to install this component.

Read the Gateway Management documentation to learn how to configure and manage gateways.

Connection Manager

The Connection Manager is the component that enables the secure connection between users and the target systems. The purpose of establishing secure connections is to facilitate the resolution of issues or the installation of files that are otherwise unavailable to the target system.

The Connection Manager creates the connection between support agents and target systems through the same SSH tunneling of the Gatekeeper installed in the target customer’s device.

Read the Connection Manager documentation for more information.

Certificate Installer

The CPAM Certificate Installer enables you to install and manage root and ephemeral certificates. This component helps you keep your certificates up-to-date and is fully configurable, allowing your server to handle everything for you once you set it up.

This component is optional, as it is not required for your CPAM to provide functinality.

Read the Certificate Installer documentation for more information.

IP Connect

IP Connect is a driver that maps the remote host's IP address and hostnames to the administrator's local machine. With the IP Connect driver, system administrators can also define hostnames or IPs for remote service connections. This component associates a customer's randomized hostnames and IPs to a CPAM user's local interface. IP Connect runs as a background service for all connections and sessions between CPAM users.

Read the IP Connect documentation for more information.