This documentation supports the 11.3 version of BMC Discovery.

To view an earlier version of the product, select the version from the Product version menu.

Configuring appliances to access the CyberArk Vault

This procedure describes the steps for BMC Discovery appliances to gain access to the CyberArk Vault (safe).

CyberArk uses the term Vault to refer to the CyberArk server component which holds information securely (all Safes reside in the Vault). This should not be confused with the BMC Discovery Vault.

Before you begin

Ensure that you configure the provider user for accessing CyberArk.

To grant access to application

  1. Log in to the CyberArk application and click Policies > Access Control (Safes).
  2. From the list of safes displayed in the details section, select the safe for which you want the BMC Discovery user to have access and click Members from the bottom-right corner of the page.
    The Members dialog box is displayed. 

  3. In the members list, click Add Member.

  4. In the Add Member dialog, enter the application provider user, for example Prov_lakers in the search field and click Search.

    The appliance name for your appliance might appear differently in the search result. This is because CyberArk truncates additional underscores, spaces, and special characters. For example, the appliance name Discovery Server 1 might appear as DiscoveryServer1.

  5. From the result list displayed, select the appropriate provider user  and grant it permission to Use, Retrieve and List accounts.
    Repeat the process for each CyberArk Credential Provider <Prov_appliancename>, granting Retrieve and List accounts.The access to the CyberArk Vault (safe) is now granted.

Where to go from here

Enabling and testing the CyberArk integration

Was this page helpful? Yes No Submitting... Thank you