Search <book_title>...

Veritas Appliance Guide for CyberArk Plugin Configuration

Last Published: 2025-03-20

Product(s): Appliances (6.0, 5.5.0.1, 5.3, 5.1.1, 5.1, 5.0, 4.2, 4.1, 4.0, 3.3.0.1, 3.3, 3.2, 3.1, 3.0)

Platform: NetBackup Appliance OS,Flex Appliance OS

Introduction
1. Overview
CyberArk plugin configurations for Flex Appliance
CyberArk plugin configuration for NetBackup Appliance
1. Veritas NetBackup Appliance CPM CyberArk Plugin
CyberArk plugin for Remote Management interface
1. Veritas Remote Management Interface via API CyberArk Plugin
CyberArk plugin configurations for Flex Scale and Access Appliances
1. Veritas NetBackup Flex Scale and Access Appliance API CyberArk CPM plug-in
2. Configuration for CyberArk Privileged Session Manager (PSM) for SSH

Veritas Flex Appliance WORM Instance CPM

[Updated plugin; version 1.1]

The Veritas Flex Appliance WORM Instance CPM is a CyberArk plugin component. It supports password verification and change for the built-in msdpadm and MSDP user (non-msdpadm) login accounts configured on a WORM instance.

Requirements and prerequisites

The following describes the requirements and tasks that you must perform before you can configure the plugin:

A configured WORM instance on a compatible version. See the following article for the list of supported versions:
CyberArk Support for Veritas Appliances
A CyberArk PAM (Privileged Access Manager) solution.
Download the Veritas Flex Appliance WORM Instance CPM plugin from the following CyberArk Marketplace site and install it:
https://cyberark-customers.force.com/mplace/s/#a35Ht000000rlwZIAQ-a39Ht000003SejFIAS
Limitations:
- Although the Reconcile option is available with this plugin, this functionality is not supported. Password change restrictions for the msdpadm and MSDP user accounts on a WORM instance prevent reconciliation. Any attempt to use the Reconcile option fails and displays an error message.
- To change the passwords for MSDP user accounts, you must associate the built-in msdpadm account as the Instance Administrator Account for each of the configured MSDP user accounts in CyberArk. The "Association" section describes the procedure.

Configuration

After you have downloaded and installed the plugin, perform the following configuration steps in the application on the CyberArk site.

Note:

You can use this procedure to configure either msdpadm or MSDP users that are configured on WORM instances.

To configure the plugin for a Flex Appliance WORM Instance to manage msdpadm or MSDP users

Log in to the CyberArk PVWA.
On the Account View page, click Add account and do the following:
- For Select system type, click Imported platforms.
- For Assign to platform, click Veritas Flex Appliance WORM Instance via SSH.
- For Store in safe, select where you want to store the configuration. You can also click Create Safe to create a new one.
- For Define properties, enter the following:
  - Address: Enter the Flex Appliance fully qualified domain name.
  - Username: Enter the msdpadm or MSDP username.
  - Password: Enter the associated password for the entered msdpadm or MSDP username.

Association

After you have added any MSDP user accounts, you must associate each one with the built-in msdpadm account as the Instance Administrator Account. This task is required as it enables you to verify and change the passwords for MSDP user accounts.

To associate the built-in msdpadm account as the Instance Administrator Account for a configured MSDP user account

On the Accounts View page:
- On the left side of the page, select the appropriate msdp user account.
- On the upper right side of the page, click Select Additional details & actions in classic interface.
On the Account Details page, on the upper right side of the page, click Associate for the Instance Administrator Account.