Behavioral Analytics Setup

This feature is currently in private preview. At this time, we are no longer accepting new customers into the private preview. Stay tuned for updates on future availability.

Integrating Behavioral Analytics into Secret Server

To use Behavioral Analytics on the Delinea Platform, you must integrate it into Secret Server using an integration key. The integration key contains the secret access code and other parameters for uploading data from Secret Server to Behavioral Analytics. The integration key is encrypted during transit and when it is saved and entered into Secret Server. This encryption uses standard Secret Server encryption (AES-256, plus DPAPI/HSM if that has been configured).

Generating and Copying the Integration Key

To start the Behavioral Analytics setup process, you must first get the integration key. To generate and copy the integration key:

  1. Log in to the Delinea Platform.

  2. Click Insights from the left navigation menu, then select Behavioral Analytics. The Behavioral Analytics splash screen appears, describing the next steps in the configuration process.

    Behavior Analytics Initial Page

  3. Click Copy Integration Key.

  4. In the Integration Key dialog box, click Copy to Clipboard.

    Copy Integration Key

Configuring the Integration into Secret Server

To copy the integration key to Secret Server:

  1. Click Settings from the left navigation, then select Administration below Secret Server.

  2. Under Tools & Integrations, click Privileged Behavioral Analytics.

  3. On the Privileged Behavioral Analytics Configuration page, click the PBA Configuration tab.

    PBA Configuration

  4. Click Configure PBA.

    PBA Configuration Enabled

    The page opens to enable configuration.

  5. Select the Enabled checkbox to enable the Secret Server and Behavioral Analytics integration.

  6. In PBA Integration Key, paste the integration key from your clipboard.

  7. In External PBA URL, enter the URL of your Behavioral Analytics cloud instance (for example, acme.thycoticanalytics.com). After you save your configuration, this URL will be saved and entered into fields automatically.

    You can leave the Challenge Enabled box unselected for now. Support for Secret Server Access Challenges on the Delinea Platform is not yet available.

  8. Click Save. The next dialog displays the details of your PBA configuration.

    PBA Configuration Details

  9. To confirm the configuration, click Confirm SS Key Pair with PBA.

  10. To test the connection, click Test Connection.

Importing Historical Data from Secret Server

When you first enable Privileged Behavioral Analytics, the Historical Data Import dialog box appears and asks if you would like to import the last 30 days of historical event data from Secret Server. This is a one-time opportunity to import historical data from Secret Server, which you can use to begin analyzing user behavior.

Historical Date Import

  • If you click Import, Privileged Behavioral Analytics imports data for the 30-day period immediately prior to the date when you first saved a configuration with Privileged Behavioral Analytics enabled.

  • If you select the Remind Me Later checkbox, you will see the same prompt the next time you save a configuration with Privileged Behavioral Analytics enabled. To ensure data continuity, the imported data will still be from the same 30-day period immediately prior to the first date you saved a configuration with Privileged Behavioral Analytics enabled.

  • If you click No, the query is permanently dismissed.

To begin importing the historical data from Secret Server, click Import. The Historical Data Import Progress dialog appears, displaying the total number of events to be imported, next to the number of events that have been imported so far. The import progress number is updated in real time.

Historical Date Import Progress

When the data import finishes, the Historical Data Import dialog appears, indicating the success of the data import process. The dialog also provides an estimate of the time required to convert the audit data to event data and upload it to Behavioral Analytics.

Because audit data is persisted in Secret Server but event data is not, Privileged Behavioral Analytics converts Secret Server's audit log data into event data to facilitate the analysis of user behavior.

Historical Date Import Success

For post-configuration steps to customize and tune Behavioral Analytics, see Customize Your Behavioral Analytics Settings.