Implement external password vault (Cyberark) for UCMDB internal DB application connection

Idea ID 2759974

Implement external password vault (Cyberark) for UCMDB internal DB application connection

UCMDB Hardening guide is quite extensive on explaining how to implement MSSQL TLS or Oracle ASO to improve the connection security from UCDMB Application to the Database. However the application db password is still retained in cmdb.conf file. 

The newest security concepts  and compliance guidance recommend not storing any passwords, even encrypted, in the file system of the OS. For this many business applications implement the use of CyberArk Credentials Provider to enable the use of automatically changed application passwords:

https://docs.cyberark.com/Product-Doc/OnlineHelp/AAM-CP/Latest/en/Content/CCP/Controlling-Application-Passwords-Change-Processes.htm

Our wish is to have similar functionality in UCMDB - to obtain the DB password from  CyberArk Credentials Provider instead of cmdb.conf. 

Tags (1)
8 Comments
Micro Focus Expert
Micro Focus Expert
Thank you for sharing your idea! It’s open for comments and kudos, and we’re looking forward to input from the community. Once there is enough community traction, it will be further reviewed by the product team
Micro Focus Expert
Micro Focus Expert
Status changed to: Waiting for Votes
 
Micro Focus Expert
Micro Focus Expert
Thank you for sharing your idea! It’s open for comments and kudos, and we’re looking forward to input from the community. Once there is enough community traction, it will be further reviewed by the product team
Micro Focus Expert
Micro Focus Expert
Status changed to: Waiting for Votes
 
Micro Focus Expert
Micro Focus Expert
Thank you for sharing your idea! It’s open for comments and kudos, and we’re looking forward to input from the community. Once there is enough community traction, it will be further reviewed by the product team
Micro Focus Expert
Micro Focus Expert
Status changed to: Waiting for Votes
 
Micro Focus Expert
Micro Focus Expert
Thank you for sharing your idea! It’s open for comments and kudos, and we’re looking forward to input from the community. Once there is enough community traction, it will be further reviewed by the product team
Micro Focus Expert
Micro Focus Expert
Status changed to: Waiting for Votes
 
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.