CyberArk

After you install and configure CyberArk on the service provider's website, configure the CyberArk settings in the Management Console.

1. Navigate to Management Console > Settings > CyberArk.

2. In the Callback URL box, paste or type the URL for the CyberArk Central Credentials Provider host.

3. In the CyberArk port box, paste or type the port number for the CyberArk Central Credentials Provider host.

4. In the IIS application name box, enter the CyberArk Central Credentials Provider application name specified in the IIS.

5. If you use a self-signed certificate, in the Server certificate box, upload the TLS server certificate of the CyberArk Central Credential Provider.

   • To upload a new certificate, click the Change certificate button.

   • To remove a certificate, click the Remove certificate button.

6. To test the current configuration, click Test.

7. Click Save.

The following are guidelines for using CyberArk after it's installed and configured:

• Set up and manage both secrets and target systems in the Vault to provide robot access.

• In configuration.xml, any combination of CyberArk (external) and Built-in-store (internal) is valid except that both properties cannot be false (disabled). At least one must be true (enabled). Refer to the Tungsten RPA Installation Guide.

  During Management Console startup, the system validates that all secret stores referenced by the secrets currently stored in the Vault are enabled in the configuration. If any required secret store is not enabled, Management Console fails to start and logs an error message indicating which secret store is missing.