Lucidum’s cyber beard is thriving! A Rising in Cyber 2025 Honoree! See the wisdom behind the whiskers → [Learn More!]

Lucidum’s cyber beard is thriving! A Rising in Cyber 2025 Honoree! See the wisdom behind the whiskers → [Learn More!]
View Categories

CyberArk Identity Security Platform Shared Services (ISPSS)

Estimated Reading Time: 1 min read

What is CyberArk Identity Security Platform Shared Services (ISPSS)? #

CyberArk Identity Security Platform Shared Services (ISPSS) helps organizations solve identity and access management (IAM) security challenges with minimal setup and fast time to value. Focused on privilege, ISPSS helps secure access for any user across any type of application or system, from anywhere, using any device.

Why Should You Use the CyberArk Identity Security Platform Shared Services Connectors? #

The CyberArk Identity Security Platform Shared Services (ISPSS) connector provides visibility into the users in your environment. You can use this visibility to:

  • ensure users are managed per your security policies
  • derive relationships between assets, users, applications, and data

How Does This Connector Work? #

Lucidum executes read-only requests to the CyberArk REST API and ingests only meta-data about devices running CyberArk Identity Security Platform Shared Services (ISPSS). Lucidum does not retrieve any data stored on your assets.

Configuring the Connector in Lucidum #

Field Description Example
URL URL for the CyberArk Identity Security Platform Shared Services https://<identity-tenant-id>.id.cyberark.cloud/where:

<identity-tenant-id> is unique to your instance of CyberArk ISPSS. For details, see: https://docs.cyberark.com/ispss-access/latest/en/content/ispss/ispss-api-authentication.htm#Overview:
Username Login name for a dedicated API Service User with least privilege access.For details, see:

https://api-docs-identity.cyberark.com/docs/ispss-api-auth/2c297daca8a97-api-token-authentication-for-cyber-ark-identity-security-platform-shared-services#step-1-create-an-ispss-service-account

or

https://docs.cyberark.com/identity-administration/latest/en/content/ispss/ispss-add-service-user.htm

 JamonGordon
Password Password for the dedicated API Service User.For details, see:

https://api-docs-identity.cyberark.com/docs/ispss-api-auth/2c297daca8a97-api-token-authentication-for-cyber-ark-identity-security-platform-shared-services#step-1-create-an-ispss-service-account

or

https://docs.cyberark.com/identity-administration/latest/en/content/ispss/ispss-add-service-user.htm

 BigLeap1!

Source Documentation #

Creating Credentials #

For details on creating an API Service User see:

https://api-docs-identity.cyberark.com/docs/ispss-api-auth/2c297daca8a97-api-token-authentication-for-cyber-ark-identity-security-platform-shared-services#step-1-create-an-ispss-service-account

or

https://docs.cyberark.com/identity-administration/latest/en/content/ispss/ispss-add-service-user.htm

Required Permissions #

The API service user that allows Lucidum to ingest data should have the following settings:

  • Is Service User
  • Is OAuth confidential client
  • Has access to the Secure Infrastructre Access APIs.

Contact your Lucidum Sales Representative for help with permissions.

For details, see https://api-docs-identity.cyberark.com/docs/ispss-api-auth/2c297daca8a97-api-token-authentication-for-cyber-ark-identity-security-platform-shared-services#step-1-create-an-ispss-service-account

and

https://docs.cyberark.com/identity-administration/latest/en/content/coreservices/getstarted/ispss-user-roles.htm

API Documentation #

https://docs.cyberark.com/EPM/Latest/en/Content/WebServices/API%20Commands.htm

What are your Feelings

Solutions

COMPANY

Resource Library