Skip to main content
Skip table of contents

CyberArk Endpoint Privilege Manager (EPM)

What is CyberArk Endpoint Privilege Manager (EPM)?

CyberArk Endpoint Privilege Manager (EPM) enforces least privilege and enables organizations to block and contain attacks on endpoint computers. CyberArk reduces the risk of information being stolen or encrypted and held for ransom. CyberArk uses a combination of privilege security, application control, and credential protection to reduce the risk of malware infection or ransom attacks.

Why Should You Use the CyberArk Endpoint Privilege Manager Connectors?

The CyberArk Endpoint Privilege Manager (EPM) connector provides visibility into the assets in your environment. You can use this visibility to:

  • ensure assets are managed per your security policies

  • ensure the CyberArk Endpoint Privilege Manager (EPM) agent is running and up to date.

  • derive relationships between assets, users, applications, and data

How Does This Connector Work?

Lucidum executes read-only requests to the CyberArk REST API and ingests only meta-data about devices running CyberArk Endpoint Privilege Manager (EPM). Lucidum does not retrieve any data stored on your assets.

Configuring the Connector in Lucidum

Field

Description

Example

URL

The URL for the CyberArk API.

http://178.218.57.190/EPM/API/11.5.0.1

Login URL

The URL of the CyberArk Endpoint Privilege Manager dispatcher server for the EPM authentication.

https://login.epm.cyberark.com

Application ID

Source application ID that distinguishes between REST API calls from EPM and REST API calls from another application. This name must be unique in CyberArk EPM. We recommend that you specify a name, like “Lucidum”.

Lucidum

Username

User name for an account be that is an Account Administrator and has View Only scope for all sets managed by CyberArk EPM.

 justynmutts

Password

The password for the CyberArk EPM account.

 ************

Source Documentation

Creating Credentials

Contact your Lucidum Sales Representative for help with creating credentials.

https://docs.cyberark.com/EPM/Latest/en/Content/Admin/AccountAdministrator.htm#Managesetusers

Required Permissions

The user name you create for Lucidum to use to ingest data should:

  • be an Account Administrator

  • have View Only scope for all sets managed by CyberArk EPM.

  • Contact your Lucidum Sales Representative for help with permissions.

API Documentation

https://docs.cyberark.com/EPM/Latest/en/Content/WebServices/API%20Commands.htm

Notes

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.