Dockerfile for building Python 3.9.2 and Openssl for FIPS
Introduction In previous posts, we saw how to build FIPS enabled Openssl, and…
Cyberark Rest API Certificate based Authentication - Curl Command to Fetch Credentials
January 30, 2022
Introduction
Cyberark kind of tools are a must for security in your infrastructure and app deployments. Cyberark helps storing credentials in their system, and provide some parameters like safe/app/obj, and some form of authentication so that caller can fetch the credentials. It eliminates the need to put credentials in files or in envirnoment.
When I started using Cyberark, they provided some AIM agent, which gets installed in the host, and they whitelisted the IPs of the machines.
Now, they have also introduced the REST APIs to fetch the credentials, and they have certificate based authentication. The setup I use, takes serial number of the certificate and IPs of the machines from where I want to fetch the credentials.
Curl Command to fetch the Credentials from Cyberark
curl -v --cert '<path to certificate.cer file' --key 'path to private key file' --url 'https://YOUR_HOST/AIMWebService/api/Accounts?AppID=<AppID>&Safe=<Safe_Name>&object=<Cyberark-Object-Name>'Thanks for reading.
Similar Posts
Microsoft Azure Just-In-Time access control
According to Microsoft, Therefore, they recently posted about a feature in beta…
Python Docker Build - How to Install Private Artifactory Modules Securely and Not Exposing Secrets in Docker Layers
Introduction I was having a private artifactory, and has my custom modules…
Explaining issue: response to preflight request doesn't pass access control check
You are developing a nodejs web application having some UI and backend APIs…
Lets Encrypt SSL Error: The client lacks sufficient authorization 403 Forbidden
This is due to our web server are configured to deny accessing this directory…
Understanding Zero-day Exploit of Log4j Security Vulnerability and Solution (CVE-2021-44228, CVE-2021-45046)
Introduction On 9th December 2021, an industry-wide vulnerability was discovered…
Latest Posts
Python SMTP Email Code - How to Send HTML Email from Python Code with Authentication at SMTP Server
Introduction This post has the complete code to send email through smtp server…
Python SMTP Email Code - Sender Address Rejected - Not Owned By User
Introduction In a normal email sending code from python, I’m getting following…
Nodejs with MongoDB - Number of Opened Connections Keep on Increasing with Mongoose Library
Introduction In one of my app, I was using to talk to . I have used some event…
Django Python - How to Build Docker Image and Run Web-service on Apache with Python 3.9
Introduction So you have a Django project, and want to run it using docker image…
Python - How to Maintain Quality Build Process Using Pylint and Unittest Coverage With Minimum Threshold Values
Introduction It is very important to introduce few process so that your code and…
Example Jenkin Groovy Pipeline Script for Building Python Projects with Git Events and Push to Artifactory
Introduction In this post, we will see a sample Jenkin Pipeline Groovy script…