Current integration
We offer two credential entry types to get passwords that are stored in a Cyberark vault.
The first one is named Cyberark AIM and, as the name implies, it gets the passwords in a AIM server that typically resides in your own infrastructure. That being said, authorization is still performed against your PAS server, that means that this integration is not available offline.
The second one is simply Named Cyberark, it performs authorization, and also gets the credentials directly from the PAS. It reflects more closely the usage pattern of entry level customers of the PAS solution.
Our current limitation is that we cannot list credentials that one has access to in order to offer a list to pick from. This means that all credentials that you need to access, need to have a corresponding entry in RDM. We can work around that limitation by using the PACLI to extract a csv, which can then be imported in RDM.
Coming features
We are currently working on integrating the PSM, which would reduce the workload of sysadmins that have to handle creation and management of alternate shell commands in tens of entries. We will offer a mechanism, much like a gateway, which will create a single PSM server to a great number of sessions.
We recommend that you subscribe to new replies to this topic, as we will publish a notice when the feature can be tested. Please be advised that Cyberark must approve any integration before we can render it available to our community.
Best regards,
