chapter 13 Flashcards
what are the two types of reports in cyber ark?
(blank) reports - reports that would be of interest to vault admins
- license capacity of the system
- lists of users
- active/non-active users
- safes list
- active/non-active safes
(blank) reports - reports that would be of interest to auditors
- privileged accounts inventory
- application inventory
- privileged accounts compliance status
- entitlement report
- activity log
privateArk
PVWA
how do you generate reports?
access reports under the tools menu in the private ark client
the (blank) displays the licensed user type and objects in the vault, the maximum number of licenses for each, and the number of licenses used
license capacity report
the (blank) report lists all users (including disabled) according to location
user list
reports can be generated for both (blank) and (blank) users
active
non-active
the (blank) report lists all safes and their properties
safes list
you can also produce a report for (blank) and (blank) safes
active
non-active
pvwa reports - access to these reports can only be generated by users who belong to the group specified in the (blank) parameter, which can be found under administration > options > reports
ManageReportsGroup
by default, this is the internal cyberark PVWAMonitor group and vault admins are typically members of this group
how are PVWA reports generated
go to reports tab and click on the generate report button
select report- 5 total in 2 categories,
operational reports
- privileged accounts inventory
- applications inventory
and
audit/compliance reports
- privileged accounts compliance status
- entitlement
- activity log
when generating PVWA reports what are the filtering options
safe name
account name
device type
platform id
group
reports can be run immediately, saved or scheduled to run on a regular basis, subscribers can be added to receive notification by email when the report is generated containing a link to the report
blank
when viewing reports in the my reports screen, click (blank) to see if your report has been generated
refresh
reports can be downloaded in (blank) or (blank) format
excel
csv
the (blank) report provides information about all the accounts in the system, permissions required are list accounts and view safe members on each safe included in the report
privileged accounts inventory
the (blank) report provides information about the application IDs in the system, permission requirements are audit users in the vault
application inventory
the (blank) report provides CPM status for each account (validates compliance with policy)
permission required:
- list accounts in all safes that are included in the report
- view audit or confirm safe request in safes that are configured for dual control
- to run the report for the entire vault: membership of the auditors group
privileged accounts compliance status
the (blank) report provides a list for each user of the accounts/safes they can access in the system
permissions required: either manage users or audit users vault authorization
entitlement
the (blank) report lists all audit information in the vault
permissions required: user-related activities: audit users vault authorization
safe/account related activities: view audit for safes that will be included in the report
activity log
the (blank) (EVD) utility exports data from the vault to text or CSV files. from there, they can be imported into third party applications or databases for analysis.
- custom reports can then be created by third part tools
- the EVD utility can be deployed on any server that has access to the vault
- the usage is similar to other components
ExportVaultData
cyberark export vault data utility installation
the installation package you will receive from cyberark includes the following:
ExportVaultData.exe - the main utility that retrieves information from the vault and generated reports
vault.ini - the vault parameter file which specifies the vault where information will be taken
(blank) - the utility that is used to create the user credentials file that enables the user that will retrieve information to log on the vault
the EVD utility communications with the vault over port (blank) by default
CreateCredFile.exe
1858
cyberark export vault data utility - data
here is a sample list of the report data that can be exported. all values exported into the text file are enclosed within quotation marks
- users list report
- groups list report
- group members list report
- safes list report
- owners list report
- file list report
- user and safe activities report
- master policy report
- system log report
- requests list report
complete descriptions of all reports can be found in the (blank) guide
EVD implementation
