CyberArk Endpoint Privilege Manager (EPM)

What is CyberArk Endpoint Privilege Manager (EPM)? #

CyberArk Endpoint Privilege Manager (EPM) enforces least privilege and enables organizations to block and contain attacks on endpoint computers. CyberArk reduces the risk of information being stolen or encrypted and held for ransom. CyberArk uses a combination of privilege security, application control, and credential protection to reduce the risk of malware infection or ransom attacks.

Why Should You Use the CyberArk Endpoint Privilege Manager Connectors? #

The CyberArk Endpoint Privilege Manager (EPM) connector provides visibility into the assets in your environment. You can use this visibility to:

• ensure assets are managed per your security policies

• ensure the CyberArk Endpoint Privilege Manager (EPM) agent is running and up to date.

• derive relationships between assets, users, applications, and data

How Does This Connector Work? #

Lucidum executes read-only requests to the CyberArk REST API and ingests only meta-data about devices running CyberArk Endpoint Privilege Manager (EPM). Lucidum does not retrieve any data stored on your assets.

Configuring the Connector in Lucidum #

Source Documentation #

Creating Credentials #

Contact your Lucidum Sales Representative for help with creating credentials.

https://docs.cyberark.com/EPM/Latest/en/Content/Admin/AccountAdministrator.htm#Managesetusers

Required Permissions #

The user name you create for Lucidum to use to ingest data should:

• be an Account Administrator

• have View Only scope for all sets managed by CyberArk EPM.

• Contact your Lucidum Sales Representative for help with permissions.

API Documentation #

https://docs.cyberark.com/EPM/Latest/en/Content/WebServices/API%20Commands.htm