CyberArk

The FSProtect CyberArk integration enhances the security and efficiency of handling sensitive credentials. After creating a configuration with the necessary username for logging into the domain controller (DC) and information to retrieve credentials, users can utilize this configuration when initiating a scan.

CyberArk Integrations

The table contains the regarding information about the integrated CyberArk and allows us to perform operations on these configurations with the help of a three-dot button.

Create/Edit CyberArk Configuration

Create integration and Edit integration operations over the data table redirects the user to the Edit CyberArk Configuration page seen below;

The definitions of the fields can be seen below;

• Configuration Name: The name of the configuration.

• Domain Username: The username of the individual performing the scan.

• AIM IP or Hostname: The IP address or hostname of the AIM service.

• AIM Port: The port on which the AIM service operates.

• App ID: The application ID created in PVWA.

• Safe Name: The name of the safe where the account is stored.

• Folder Name: The name of the folder within the safe where the account is stored (default is Root).

• Account Name: The name of the account.

Using Integration to Scans

The CyberArk integration you defined can be used on the new scan page. You can start the new scan by setting Auth Type to CyberArk and selecting the suitable CyberArk configuration for your domain and username.

CyberArk Host Configurations

• Allow FSProtect machine from CyberArk Privileged Access Manager.

• View CyberArk Vault setting