New Discovery Service Boosts Security and Efficiency for IT Admins in the CyberArk Identity Security Platform

October 28, 2024 Lilach Faerman Koren

CyberArk Privilege Cloud 13.1 Release

The new discovery service, delivered by the CyberArk Identity Security Platform, introduces new capabilities and streamlines the scanning of environments containing *nix, Windows and MacOS target machines. The new service offers SaaS-based flexible scans, local accounts discovery based on endpoint agents, data collection and enhanced automation using Discovery rules. It also provides a new, enhanced experience, improving efficiency and scalability for scanning and onboarding unmanaged privileged accounts for policy-based, secure credential management. 

The new service enhances the CyberArk IT solution and significantly accelerates time to value for privileged access management programs. Additionally, it adds functionalities, improves user experience and introduces a lightweight SaaS deployment — all to enable customers to modernize their PAM programs.

Main Benefits of the New Discovery Service

New SaaS-based Windows and *nix scans
Define and manage one-time and scheduled scans per machine list or domain with an efficient scan logic and improved automatic account onboarding experience.

Automatic discovery and review of local accounts on endpoints 
Onboard local Windows and macOS accounts for secure management in CyberArk Privilege Cloud

Learn more about account discovery on endpoints.

Connector-based network access (no scanner needed) 
Scans no longer require scanners. The new Discovery service leverages the Connector Management service for scans to ensure a smaller footprint, load balancing and high availability. 

Discovered account tags
Free text source-related tags can now be defined using scan definition or at the scanned machine level. Discovered accounts will be tagged during the scan to enhance analysis and onboarding purposes.

Learn more about discovered account tags

Discovery Rules
Enhanced rules now support granular automation for all privileged account types. Customers can quickly build and apply the new discovery rules for smart and exact account onboarding. Ruleset import and export enable users to reuse rules in different environments efficiently. Discovered account activities allow users to follow indications related to automatic account onboarding and adjust them accordingly.

CyberArk recommends reviewing the following resources:

The new Discovery service in the CyberArk documentation

Previous Article
Intelligent Privilege Controls™: A Quick Guide to Secure Every Identity
Intelligent Privilege Controls™: A Quick Guide to Secure Every Identity

Security used to be simpler. Employees, servers and applications were on site. IT admins were the only priv...

Next Article
Who’s Responsible for Your Security?
Who’s Responsible for Your Security?

Antivirus, malware protection, email security, EDR, XDR, next-generation firewalls, AI-enabled analytics – ...