Solarwinds and CyberArk Integration

Two main reasons to it:

1. CyberArk works as a password vault and hence it can securely store the credentials used by Solarwinds (user name + password)

2. CyberArk comes with certain level of automation as well which can sync/change the password on the tool (for service accounts where there is a restriction to change the password every 'X' days, this feature would come into play where CyberArk automation can be used, if Solarwinds can expose a API or something for automatic password change/sync on Solarwinds tool (credentials section like Windows Cred or SMTP Cred or ....) without any downtime on the tool or without affecting monitoring of devices performed by Solarwinds (without skipping a poll) then it would be a cool feature.

I have seen few idea's in the past with respect to the same:

Find more posts tagged with

Status: None

Comments

solar_vijay

Greetings!!

Having an integration between SolarWinds & CyberArk would be an advantageous feature for SolarWinds as it gets an added security for the product while application monitors/templates

use dynamic passwords instead of Static ones.

We need not restrict to monitors but can be extended to reports, jobs & so on.

Thanks!!

Vijay S

dsimpkins

Totally agree with this idea, an API that allows modification of existing credentials so that a password vault can go in and change these is much needed.

It doesn't be focussed on CyberArk as this makes the target audience smaller but with an standard API any password vault or account automation can leverage it.

Holewink

Agree, getting push back from security not allowing WMI access to Domain controllers and SNMP v3 is not supported on Windows.

silverbacksays

Bumped! CyberArk and many other similar enterprise password management suites are becoming more and more prevalent. I would see this FR as part of a wider revamp of the Orion access controls. CyberArk could be a fourth account type within Orion after Orion local AD, and groups, and the integration should be configurable to ensure the changes are updated within Orion in a timely manner.

#bumpsquad

mesverrum

Credential management was added to the API in a recent release

Credential Management · solarwinds/OrionSDK Wiki · GitHub

dsimpkins

Didn't spot that update had been added in 12.4.

Does this also mean updating local Orion accounts is now possible? i see a new verb in the accounts table for change password but haven't tested it.

Would also like to see this trend continue across the platform into things like IPAM, Appinsight etc etc.

RaviK

Has anyone successfully tested out the Solarwinds platform users being authenticated by the password vault - CyberArk?

Your urgent responses appreciated.

Aware that Orion 2018.4 upwards we do have SAML v2.0 support and same is true for CyberArk. But any customer success story, will bring in the confidence

Jay_Cummings

Agreed. It would be nice to know of labs or environments where the integration is working well.

tony.johnson

I am curious to understand which PAM solutions are being used out there, If you have a moment please answer the following poll.

Impaler

We have just deployed CyberArk into prod & now I can no longer back up all/any of our Cisco node configs via NCM. Any suggestions, ideas, successes, links etc. related to fixing this would be greatly appreciated.

chris_ka.

dear Audi employee,

could you please provide me an eMail so that I could contact you and discuss!?

my eMAil: christoph.kansy@cyberark.com

Regards

Christoph Kansy, Global Account Manager Volkswagen Group

therealdax

Hi,

I've recently had this request from a customer and during our initial requirements gathering process to write a custom integration, we had the following response from the Customer Success Team at CyberArk:

I just wanted to give you a quick update that our business development team are currently working on integration with Solarwinds that will use the CCP (Central Credential Provider) to allow Solarwinds to pull the credentials directly from CyberArk using the application access manager (particularly the CCP). The first integration will be for the DPA product which is expected to be ready mid-July and the next integration will be for Orion.
Whilst a couple of CCP licenses will be required to make this integration work, I would advise going down this route as this will be an officially supported integration from both the CyberArk and Solarwinds perspective. This will remove the complexities of working with a bespoke integration.

I would advise anyone still looking at this as a requirement to reach out to CyberArk directly as this native integration seems likely in 2021.

rdavidsoncca

Bumped!

MarcFom

4 years later and only DPA has this CyberArk CCP integration.

What makes it so complicated to have the same integration in all SolarWinds suite modules ?