Cyberark Pas: Install and Configure

Download as docx, pdf, or txt
Download as docx, pdf, or txt
You are on page 1of 3
At a glance
Powered by AI
The key takeaways are that the course covers installing and configuring the CyberArk Privileged Account Security solution including the Enterprise Password Vault, Privileged Session Manager, Central Policy Manager and Password Vault Web Access. It also covers integrating with external services, configuring authentication mechanisms and securing the CyberArk platform.

The main components covered are the Enterprise Password Vault, Privileged Session Manager, Central Policy Manager, Password Vault Web Access, Disaster Recovery and PSM SSH Proxy.

Some of the advanced designs covered include Vault HA, Component Load Balancing, Distributed Models and PSM Farms.

CYBERARK PAS

Install and Configure

Description:

The Privileged Account Security (PAS) Install and Configure course covers
CyberArk’s Enterprise Password Vault (EPV) and Privileged Session Manager
(PSM) solutions, including components Central Policy Manager, Password Vault
Web Access, Disaster Recovery, PSM SSH Proxy and Backup and Restore.

Objectives

Upon completion of this course the participant will be able to:

 Learn to install and configure the CyberArk Privileged Account Security


solution securely following Best Practices.
 Be able to define and describe the CyberArk Privileged Account Security
system architecture, requirements, and workflow processes.
 Understand how to secure and install Password Vault Web Access
(PVWA) Central Policy Manager (CPM) and Privileged Session Manager
(PSM) in a distributed or Load Balanced configuration.
 Learn how to integrate with external services, e.g., LDAP/S, NTP, SMTP,
SYSLOG.
 Configure authentication mechanisms including multi-factor authentication
using CyberArk, RADIUS, LDAP/S, PKI, Windows.

Topics

The course includes the following topics:

 Overview of the PAS Architecture


 Enterprise Password Vault Security
 Enterprise Password Vault Standalone and High Availability Installation
 CPM, PVWA, PSM and PSMP Component Installations including Standalone and Fault Tolerant
options
 System Integrations e.g., SMTP, NTP, SNMP, LDAP/S
 Authentication Methods e.g., RADIUS, PKI, LDAP/S and Multi-Factor
 Reporting
 Troubleshooting
Day 1 Agenda:
Privileged Account Security Architecture

 Review of the components of the PAS solution.


 Advanced designs including Vault HA,
Component Load Balancing, Distributed Models
and PSM Farms.

Enterprise Password Vault OS Configuration


 HA Architecture and Requirements
 Installation walk-through

Multiple Components:

 CPM, PVWA
 Redundancies
 Functionality
 Installation
 Security and Hardening
 Architecture
 Vault environment
 Load Distribution and Load Balancing

Day 2 Agenda:

Privileged Session Manager

 Functionality
 Architecture
 Installation
 Security and Hardening
 Configuration
 Monitoring

PSM SSH Proxy (PSMP) and ADB

 Functionality
 Architecture
 Installation
 Security and Hardening
 Configuration
 Monitoring
Day 3 Agenda:

Advanced Authentication
 Vault-Level Authentication
 PVWA-Level Authentication
 Two-Factor Authentication

System Integrations
 SMTP
 NTP
 SNMP
 LDAP
 SIEM/SYSLOG

Security Fundamentals
 Securing the CyberArk Platform
 Using CyberArk to Secure CyberArk Accounts
 Best Practices

Day 4 Agenda

Troubleshooting Basics

 Troubleshooting Flow
 Understanding the Logs
 Documentation and Knowledge Base
 Basic Troubleshooting Examples

Troubleshooting Common Issues

 PSM-RDP
 PSM-[Component]
 CPM Windows Targets
 CPM Unix based Targets

You might also like