TOC & Recently Viewed
Recently Viewed Topics
SecurityCenter Priority Scanning for CyberArk
SecurityCenter sets a priority system that allows for flexible querying. The following describes the order SecurityCenter tries values and the logic behind it.
- SecurityCenter queries CyberArk with the target value entered into the SecurityCenter Targets configuration field. For example, if you put a FQDN in the target list, SecurityCenter will query CyberArk with the address value of the FQDN. If you enter an IP address or range such as 192.168.1.1-20, SecurityCenter tries to query using the IP address or IP range of the target system(s) in the CyberArk Address value. If the target system uses FQDN and can be resolved, then is contacted.
- If the target value fails, SecurityCenter looks to see if there is a domain value (for a Windows system). If a domain value is present, SecurityCenter queries CyberArk using the domain value for the address value to attempt to use domain credentials.
- If the configured target value and the domain value both fail, SecurityCenter pulls the IP address of the system. If the IP address does not match one of the IP addresses supplied in the target list, SecurityCenter then queries CyberArk using the IP address of the target itself. This is checked against the target value in the configuration to prevent querying CyberArk twice with the same value.