Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Tenable and CyberArk

Simplify Scanning, Integrate With Privileged Access Management

Tenable and CyberArk Integration

Tenable integrates with CyberArk to simplify privileged access to hosts for vulnerability and compliance scans enabling improved scan accuracy and performance.

The integration combines CyberArk’s Application Identity Manager with Tenable’s vulnerability management and continuous network monitoring solutions to enable organizations to perform credentialed scans of hosts and reduce complexity and exposure by centrally managing and storing privileged account access.

Privileged Acess to target hosts

Key Challenges

Conducting credentialed network vulnerability assessments requires privileged access to target hosts. However, maintaining privileged accounts across throughout the organization poses the following challenges:

  • Individually managing and updating privileged access across all hosts can be difficult and time-consuming
  • Privileged access needs to securely managed to avoid abuse
  • Deploying agents locally on hosts is not always possible
  • Accounting of organizational credentials is required to meet regulatory compliance
CyberArk configuration

Solution Overview

Many organizations implement password vaults to ensure that privileged accounts are regularly updated and consistent across the organization.

Integrating CyberArk Application Identity Manager with Tenable solutions allows a customer to retrieve privileged credentials from the CyberArk Secure Digital Vault for use in security and compliance scans.

This centralizes and automates the process of managing and updating privileged access to hosts. By integrating with CyberArk, customers can easily perform credentialed scans across their environment to identify vulnerabilities, misconfigurations, and non-compliance.

CyberArk integration diagram

How It Works

  • Configure the scan policy on Tenable solutions to query CyberArk for privileged access to target host
  • Tenable then requests privileged account access from CyberArk to scan target host
  • CyberArk provides privileged scan credential for security scan
  • Tenable solution uses the provided credential to log into the target machine and read configuration data to identify vulnerabilities and misconfigurations

Integration Benefits

The integration between CyberArk Application Identity Manager and Tenable allows customers to:

  • Leverage existing CyberArk Application Identity Manager to support credentialed scans without the need to store credentials within Tenable solutions
  • Simplify security scanning by centrally managing and storing privileged credentials within CyberArk Secure Digital Vault
  • Reduce the attack surface, as customers no longer need to individually manage privileged scanning accounts across all of their assets
  • Ensure full accountability and traceability of all privileged account activity and avoiding privileged account abuse
  • Enable faster and more accurate vulnerability scans with deeper analysis

Try Tenable.io

Get a 60-day trial for cloud-based vulnerability management

Try Now

Demo SecurityCenter Continuous View

See what SecurityCenter Continuous View can do for your organization

Schedule a Demo

Try for Free Buy Now

Try Tenable.io

FREE FOR 60 DAYS

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Sign up now and run your first scan within 60 seconds.

Buy Tenable.io

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

65 assets

$2,190.00

Buy Now

Try for Free Buy Now

Try Nessus Professional Free

FREE FOR 7 DAYS

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy Nessus Professional

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy a multi-year license and save

Try for Free Buy Now

Try Tenable.io Web Application Scanning

FREE FOR 60 DAYS

Enjoy full access to our latest web application scanning offering designed for modern applications as part of the Tenable.io platform. Safely scan your entire online portfolio for vulnerabilities with a high degree of accuracy without heavy manual effort or disruption to critical web applications. Sign up now and run your first scan within 60 seconds.

Buy Tenable.io Web Application Scanning

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

5 FQDNs

$3,578.00

Buy Now

Try for Free Contact Sales

Try Tenable.io Container Security

FREE FOR 60 DAYS

Enjoy full access to the only container security offering integrated into a vulnerability management platform. Monitor container images for vulnerabilities, malware and policy violations. Integrate with continuous integration and continuous deployment (CI/CD) systems to support DevOps practices, strengthen security and support enterprise policy compliance.

Buy Tenable.io Container Security

Tenable.io Container Security seamlessly and securely enables DevOps processes by providing visibility into the security of container images – including vulnerabilities, malware and policy violations – through integration with the build process.

Learn More about Industrial Security