The new discovery service, delivered by the CyberArk Identity Security Platform, introduces new capabilities and streamlines the scanning of environments containing *nix, Windows and MacOS target machines. The new service offers SaaS-based flexible scans, local accounts discovery based on endpoint agents, data collection and enhanced automation using Discovery rules. It also provides a new, enhanced experience, improving efficiency and scalability for scanning and onboarding unmanaged privileged accounts for policy-based, secure credential management.
The new service enhances the CyberArk IT solution and significantly accelerates time to value for privileged access management programs. Additionally, it adds functionalities, improves user experience and introduces a lightweight SaaS deployment — all to enable customers to modernize their PAM programs.
Main Benefits of the New Discovery Service
New SaaS-based Windows and *nix scans
Define and manage one-time and scheduled scans per machine list or domain with an efficient scan logic and improved automatic account onboarding experience.
Automatic discovery and review of local accounts on endpoints
Onboard local Windows and macOS accounts for secure management in CyberArk Privilege Cloud.
Learn more about account discovery on endpoints.
Connector-based network access (no scanner needed)
Scans no longer require scanners. The new Discovery service leverages the Connector Management service for scans to ensure a smaller footprint, load balancing and high availability.
Discovered account tags
Free text source-related tags can now be defined using scan definition or at the scanned machine level. Discovered accounts will be tagged during the scan to enhance analysis and onboarding purposes.
Learn more about discovered account tags.
Discovery Rules
Enhanced rules now support granular automation for all privileged account types. Customers can quickly build and apply the new discovery rules for smart and exact account onboarding. Ruleset import and export enable users to reuse rules in different environments efficiently. Discovered account activities allow users to follow indications related to automatic account onboarding and adjust them accordingly.