What must a user have to be able to live monitor an active session in PSM?

To live monitor an active session in Privileged Session Manager (PSM), a user must possess membership in the Auditor group. Membership in this group grants the necessary permissions to observe ongoing sessions without interrupting or participating in them. This capability is essential for maintaining oversight and ensuring compliance while also securing the environment by allowing authorized users to monitor activities in real time.

Auditors are typically tasked with reviewing logged sessions, ensuring accountability, and performing compliance verifications. Their role is crucial because it adds an additional layer of security through observation and oversight, enabling organizations to detect and respond to suspicious activities promptly.

While other roles or credentials might provide access to different aspects of the PSM environment, only auditor membership enables live monitoring. RDP credentials, special permissions, or administrator access typically pertain to session initiation or configuration rather than allowing passive observation of ongoing sessions. This distinction underscores the need for specific roles and permissions within the management of privileged sessions.