Fortinet Document Library

Version:


Table of Contents

Thycotic Secret Server

1.0.0
Copy Link

About the connector

Thycotic Secret Server is an external vault that protects your privileged accounts with enterprise-grade privileged access management (PAM) solutions available both on-premise or in the cloud.

This document provides information about the Thycotic Secret Server connector, which facilitates automated interactions, with a Thycotic Secret Server endpoint using FortiSOAR™ playbooks. Add the Thycotic Secret Server connector as a step in FortiSOAR™ playbooks and perform automated operations, such as retrieving credentials or retrieving a list of parameter keys for a specific credential or secret from the Thycotic Secret Server endpoint.

This connector can also be used to configure other connectors using credentials that are stored in the Thycotic Secret Server vault.

FortiSOAR™ integrates with Thycotic Secret Server vault to allow users to securely store their sensitive data and credentials. Configure the Password Vault Manager in FortiSOAR™ to allow users to use the credentials stored in Thycotic Secret Server in the connector configurations. For more information, see the FortiSOAR™ product documentation, i.e., the Security Management chapter in the "Administration Guide."

Version information

Connector Version: 1.0.0

FortiSOAR™ Version Tested on: 6.0.0

Authored By: Fortinet

Certified: Yes

Installing the connector

From version 5.0.0 onwards, use the Connector Store to install the connector. For the detailed procedure to install a connector, click here.
You can also use the yum command to install connectors. Connectors provided by FortiSOAR™ are delivered using a FortiSOAR™ repository. Therefore, you must set up your FortiSOAR™ repository and run the yum command as a root user to install connectors:

yum install cyops-connector-thycotic-secret-server

Prerequisites to configuring the connector

  • You must have the URL of the Thycotic Secret Server server to which you will connect and perform automated operations and credentials (username-password pair) to access that server.
  • You must be a local user, who has API access and who has been created on the Thycotic Server instance that you will connect and perform automated operations.
  • To access the FortiSOAR™ UI, ensure that port 443 is open through the firewall for the FortiSOAR™ instance.

Configuring the connector

You need to configure the Thycotic Secret Server connector using the Password Vault Manager. For more information, see the FortiSOAR™ product documentation, i.e., the Security Management chapter in the "Administration Guide."

Configuration parameters

You need to configure the Thycotic Secret Server connector using the "Password Vault Manager" if you have appropriate permissions. You can open the "Password Vault Manager" by clicking the Settings icon on the top-right corner in FortiSOAR™, and then click Password Vault in the Security Management section. You can also open the Password Vault from the Connectors page, by selecting the Thycotic Secret Server connector row (if you are in the Grid view on the Connectors page), and clicking the Password Vault Manager link in the Configurations tab. This opens the Password Vault page, where you can select Thycotic Secret Server from the Select Vault Manager drop-down list and enter the required configuration details.

Parameter Description
Server URL URL of the Thycotic Secret Server to which you will connect and perform the automated operations.
Username Username that is used to access the Thycotic Secret Server endpoint.
Password Password that is used to access the Thycotic Secret Server endpoint.
Protocol Protocol that will be used to communicate with the Thycotic Secret Server endpoint. Choose either http and https.  

By default, this is set to https.

Verify SSL Specifies whether the SSL certificate for the server is to be verified or not.
By default, this option is set as True.

Thycotic Secret Server Usage

Once you have configured the Thycotic Secret Server connector, you can securely store their sensitive data and credentials, since the credentials (passwords, keys, tokens, etc) that you have stored in the vault are not visible to the users. However, users can use the credentials stored in the vault in connector configurations by clicking the Vault option in "Dynamic Values". For more information on the "Password Vault Manager", see the FortiSOAR™ product documentation, i.e., the Security Management chapter in the "Administration Guide."

About the connector

Thycotic Secret Server is an external vault that protects your privileged accounts with enterprise-grade privileged access management (PAM) solutions available both on-premise or in the cloud.

This document provides information about the Thycotic Secret Server connector, which facilitates automated interactions, with a Thycotic Secret Server endpoint using FortiSOAR™ playbooks. Add the Thycotic Secret Server connector as a step in FortiSOAR™ playbooks and perform automated operations, such as retrieving credentials or retrieving a list of parameter keys for a specific credential or secret from the Thycotic Secret Server endpoint.

This connector can also be used to configure other connectors using credentials that are stored in the Thycotic Secret Server vault.

FortiSOAR™ integrates with Thycotic Secret Server vault to allow users to securely store their sensitive data and credentials. Configure the Password Vault Manager in FortiSOAR™ to allow users to use the credentials stored in Thycotic Secret Server in the connector configurations. For more information, see the FortiSOAR™ product documentation, i.e., the Security Management chapter in the "Administration Guide."

Version information

Connector Version: 1.0.0

FortiSOAR™ Version Tested on: 6.0.0

Authored By: Fortinet

Certified: Yes

Installing the connector

From version 5.0.0 onwards, use the Connector Store to install the connector. For the detailed procedure to install a connector, click here.
You can also use the yum command to install connectors. Connectors provided by FortiSOAR™ are delivered using a FortiSOAR™ repository. Therefore, you must set up your FortiSOAR™ repository and run the yum command as a root user to install connectors:

yum install cyops-connector-thycotic-secret-server

Prerequisites to configuring the connector

Configuring the connector

You need to configure the Thycotic Secret Server connector using the Password Vault Manager. For more information, see the FortiSOAR™ product documentation, i.e., the Security Management chapter in the "Administration Guide."

Configuration parameters

You need to configure the Thycotic Secret Server connector using the "Password Vault Manager" if you have appropriate permissions. You can open the "Password Vault Manager" by clicking the Settings icon on the top-right corner in FortiSOAR™, and then click Password Vault in the Security Management section. You can also open the Password Vault from the Connectors page, by selecting the Thycotic Secret Server connector row (if you are in the Grid view on the Connectors page), and clicking the Password Vault Manager link in the Configurations tab. This opens the Password Vault page, where you can select Thycotic Secret Server from the Select Vault Manager drop-down list and enter the required configuration details.

Parameter Description
Server URL URL of the Thycotic Secret Server to which you will connect and perform the automated operations.
Username Username that is used to access the Thycotic Secret Server endpoint.
Password Password that is used to access the Thycotic Secret Server endpoint.
Protocol Protocol that will be used to communicate with the Thycotic Secret Server endpoint. Choose either http and https.  

By default, this is set to https.

Verify SSL Specifies whether the SSL certificate for the server is to be verified or not.
By default, this option is set as True.

Thycotic Secret Server Usage

Once you have configured the Thycotic Secret Server connector, you can securely store their sensitive data and credentials, since the credentials (passwords, keys, tokens, etc) that you have stored in the vault are not visible to the users. However, users can use the credentials stored in the vault in connector configurations by clicking the Vault option in "Dynamic Values". For more information on the "Password Vault Manager", see the FortiSOAR™ product documentation, i.e., the Security Management chapter in the "Administration Guide."