Adding a CyberArk Vault

Before You Begin

• Obtain CyberArk server information and credentials.

  1. Create application with certification authentication.

     For the procedure to create the application, see CyberArk documentation.

  2. Provide the Retrieve accounts permission to the application on required safes.

  3. Use the ApplicationId and certificate to configure CyberArk.

• Generate a Certificate Signing Request (CSR) on the CommServe by obtaining a signed certificate from a certificate authority (CA). The certificate must be in the .p12 format.

Procedure

1. From the navigation pane, go to Manage > Security.

   The Security page appears.

2. Click the Credential vault tile.

   The Manage credentials page appears.

3. Click the Vault configuration tab, and then click Add from the upper-right corner of the page.

   The Add credential vault dialog box appears.

4. From the Vendor list, select CyberArk, and then enter the following information:

   1. Name: Enter a unique name for the CyberArk credential vault.

   2. Server URL: Enter the URL for the CyberArk server, including the port number.

   3. Application ID: Enter the application ID of CyberArk.

   4. Certificate: Click Upload Certificate, browse the SSL certificate, and then upload it.

   5. Certificate Password: Enter the password that you specified while creating the certificate.

   6. Access Nodes: Displays the default node that can access the BeyondTrust vault. You can select other nodes from the list.

   7. Description: Enter a short description of the CyberArk credential vault.

5. Click Save.