CyberArk Privileged Access Manager
This document describes how to easily integrate Securosys CloudHSM or Primus HSM with CyberArk Privileged Access Manager (CyberArk Digital Vault).
CyberArk's Privileged Access Manager - Self-Hosted is a full life-cycle solution for managing the most privileged accounts and SSH keys in the enterprise. It enables organizations to secure, provision, manage, control and monitor all activities associated with all types of privileged identities, such as:
- Administrator on a Windows server,
- Root on a UNIX server,
- Embedded passwords found in applications and scripts.
Benefits
- Highest-grade secure hardware storage, protection and key generation with a true random number generator (TRNG),
- Full life cycle management of all keys stored on your HSM or HSM partition,
Architecture
The architecture of integrating CyberArk PAM with Primus HSM looks as follows:
Target Audience
This document is intended for Securosys Primus HSM or CloudHSM administrators and IT professionals in charge of the CyberArk PAM administration. Installation of the Securosys Primus PKCS#11 Provider requires that you are already familiar with Microsoft Windows Server administration.
For on-premises HSM deployed operation administrative skills are required for Securosys Primus HSMs.
Getting started with CyberArk PAM & HSM
For a smooth start integrating your CyberArk PAM Vault using the Primus PKCS#11 Provider:
- Consult the quickstart guide for an overview.
- For detailed instructions, read and follow the installation guide.