Configuring appliances to access the CyberArk Vault
This procedure describes the steps for BMC Discovery appliances to gain access to the CyberArk Vault (safe).
CyberArk uses the term Vault to refer to the CyberArk server component which holds information securely (all Safes reside in the Vault). This should not be confused with the BMC Discovery Vault.
Before you begin
Ensure that you configure the provider user for accessing CyberArk.
To grant access to application
- Log in to the CyberArk application and click Policies > Access Control (Safes).
From the list of safes displayed in the details section, select the safe for which you want the BMC Discovery user to have access and click Members from the bottom-right corner of the page.
The Members dialog box is displayed.
In the members list, click Add Member.
In the Add Member dialog, enter the application provider user, for example
Prov_lakersin the search field and click Search.
The appliance name for your appliance might appear differently in the search result. This is because CyberArk truncates additional underscores, spaces, and special characters. For example, the appliance name
Discovery Server 1might appear as
- From the result list displayed, select the appropriate provider user and grant it permission to Use, Retrieve and List accounts.
Repeat the process for each CyberArk Credential Provider
appliancename>, granting Retrieve and List accounts.The access to the CyberArk Vault (safe) is now granted.