Using TRAMP through CyberArk Privileged Session Manager

Question

Normally it is very easy to convert ssh and scp commands into tramp format for access via dired.

For example

The command line

ssh username@hostname

will become

/ssh:username@hostname:

in emacs.

Unfortunately, I'm unsure how to convert even the simplest CyberArk example command for use with tramp:

ssh username@target-username@target-hostname@cyberark-psm-hostname

Question

How will I be able to use TRAMP to connect via SSH when proxying through a CyberArk Privileged Session Manager server?

I found out this week I will not have access to CyberArk PSM for several more months so I will not be able to test any solutions on my own. My hope is that someone in the community has already figured out how to do this and will share their expertise. Thank you!

Answer 1

I've never heard of CyberArk Privileged Session Manager, but from your description adding it to tramp-methods shouldn't be too hard. The simplest way is probably to add an entry with

 (add-to-list 'tramp-methods
             ("psm"
               (tramp-login-program "ssh")
               (tramp-login-args
                (("-l" "username")
                 ("-p" "%p")
                 ("%c")
                 ("-e" "none")
                 ("%u@%h@cyberark-psm-hostname")))
               (tramp-async-args
                (("-q")))
               (tramp-remote-shell "/bin/sh")
               (tramp-remote-shell-login
                ("-l"))
               (tramp-remote-shell-args
                ("-c"))))

Then you can use it by opening /psm:target-username@target-hostname:….