On This Page
Vault Servers
Overview
In TOS Aurora, you can maintain a list of CyberArk vault servers that can be used in place of defining credentials for individual devices. After TOS Aurora establishes the connection with the vault server, access to the device is authenticated using this connection. This includes actions like revision retrieval, dynamic topology, and provisioning, You can specify authentication of a device by a vault server for:
-
Fortinet FortiManager
-
Palo Alto Panorama
-
Checkpoint CMA, MDS, and SmartCenter
-
Cisco ASA
-
Juniper SRX / J-Series
Prerequisites
Before you configure devices in SecureTrack to use the CyberArk vault server, do the following:
-
Verify that you defined an application in CyberArk and that you input the Certificate Serial Number in the Authentication tab.
- Generate a certificate with a private key that enables SSL mutual authentication. This file has a
.p12extension and is required when adding a vault server to SecureTrack.
What Can I Do Here?
Add a Vault Server
-
Click Add New Vault Server.
-
Complete the required fields.
-
Name: Name of the vault server.
-
URL: Web address of the vault server.
-
Port: Port to access the vault server.
-
Application ID: ID of the application defined on the vault server.
-
Description: Type a description for the vault server.
-
Client Certificate: Certificate generated from the vault server. The file has a
.p12extension and contains a private key that SecureTrack uses to access the vault server. -
Password: Certificate's password that is used to decrypt the
.p12file. -
Retrieve Server Certificate: Click to download the server's public certificate. This certificate is stored in SecureTrack and enables full connectivity between SecureTrack and vault server.
-
-
Click Create.
Edit a Vault Server
-
Click
and select Edit vault server. -
Change the required fields.
-
Click Save.
Duplicate a Vault Server
-
Click
and select Duplicate vault server. -
Change the required fields.
-
Click Create.
Delete a Vault Server
-
Click
and select Delete vault server. -
At the prompt, click Yes.
How Do I Get Here?
In SecureTrack, go to Admin 
> External Authentication > Vault Servers.
Was this helpful?
Thank you!
We’d love your feedback
We really appreciate your feedback
Send this page to a colleague
