Vaulting Configuration

Vaulting Configuration section allows you to configure various details about vaults that are necessary for proper and efficient usage of vault users

It allows you to configure the following:

1. Password Policy

2. Active Directory (A central location for vault users)

3. Manual Generation of Passwords for Vault Users (All or Specific Users)

Password Policy

1. Cymmetri allows you to select a specific Password Policy for Vault Users, If nothing is changed it uses the default password policy of Cymmetri.

2. For Changing the Password Policy for Vault Users, Select Vaulting Configuration and then select the Password Policy that you wish to implement from the dropdown provided as shown below:

Active Directory

1. If the vault users are stored at a central location like Active Directory then we need to configure the location and access credentials of this Active Directory.

2. For configuring the Active Directory we need to provide the following information as shown below:

   1. Active Directory Domain: Here we need to provide the Active Directory LDAP URL and the root domain details. For e.g. ldaps://EC2AMAZ-2LBJU5A.cymmetri.in:636;DC=cymmetri,DC=in

   2. User Name: This is the Active Directory Administrative username. For e.g. Cymmadmin

   3. Password: This is the Active Directory Administrative password.

Generation of Passwords for Vault Users (All or Specific Users)

For Generating Password for Vault User we need to do the following configurations:

1. One or more users who will receive an email that contains the list of usernames and passwords

2. Password for opening the file which contains the list of usernames and passwords

3. Configure a scheduler to reset the password of users and send an email to the above configured use

4. Manually send the list of usernames and passwords of all or specific users

One or more users who will receive an email that contains the list of usernames and passwords:

For adding users who will receive the email containing the list of usernames and passwords we need to select one more cymmetri users here as shown below:

Password for opening the file which contains the list of usernames and passwords

For Configuring the password simply enter the password in the password box provided

Configure a scheduler to reset the password of users and send an email to the above configured use

For configuring a schedular we need to enable the scheduler and provide the following details:

• A start execution date and

• cron expression

The cron expression can also be generated using the Generate Cron Expression option as shown below:

Manually reset and send the list of usernames and passwords of all or specific users

• Password of vault users can be reset manually and sent an email for all or for specific users

• You can either reset password for all users and send a list by selecting the All users option and clicking on Generate Password button as shown below:
• Alternatively you may also send a list of only specific usernames and passwords by selecting To specific users option and then selecting the users whose details you need to reset and send.