Enabling vault access

This feature is available for BMC Helix Operations Management and works with PATROL Agent 23.1 and later.

A vault is a tool designed to control access to sensitive credentials. It can also generate access keys dynamically for specific services or applications.

Vault eliminates the hard coded application credentials embedded in applications, configuration files, and allows the sensitive passwords to be centrally stored, logged, and managed within the vault.

PATROL for MongoDB Database supports using passwords from the vault. When you want to specify credentials while configuring a monitor policy for MongoDB database, you can use the vault to get the credentials.

PATROL for MongoDB Database supports the CyberArk vault only.

Before you begin

Enable vault access in PATROL Agent.

For more information, see Enabling vault access.

To enable vault access

You can enable vault at the global level for all the environments and environment level for a specific environment.
Following are the examples of global and environment level configuration variables for which you can enable vault. Add one of the following configuration variables as per your requirement to enable vault.

Configuration level

Example

Description

Global level

/MONGO/DB_ENVS/isVaultEnabled = 1

This is applicable to all the MongoDB monitoring environments configured in a monitoring policy.

Environment level

/MONGO/DB_ENV/<ENV_NAME>/isVaultEnabled = 1 

This is applicable to a specific environment configured in a monitoring policy.
For example, /MONGO/DB_ENV/Production/isVaultEnabled = 1
In this example, you monitor the Production environment. 

If you are using vault to access the password in BMC Helix Operations Management, enter the query string in the Password and Confirm password field.

Some content is unavailable due to permissions.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*