Configuration

  1. Download the integration package and extract it on your computer.

  2. Open the appsetting.json file from the integration package and provide the following information in the configuration file.

    The appsetting.json file is located in path of Downloads folder\Rapid7SecretServer1.0.0.zip\SS_Rapid7_With_Encryption_Utility\ss_rapid7_integration.

    • SS_BaseUrl: Provide the URL of Secret Server .

    • SS_Domain: Specify the domain if the user that you use to log in to Secret Server user is a domain user. If the user is a local user, leave this attribute empty.

    • SS_FolderPath: The name of the folder for Rapid7 secrets in Secret Server that you created in Setting Up Secret Server, for example “Folder1” or “Folder1Inner_Folder1."

      If the path is not specified, the integration executable will look for secrets in the root folder.

    • InsightVM_API_User_SecretId: The ID of the secret that you created for the InsightVM user in Setting Up Secret Server. This secret stores the user credentials and the InsightVM URL that are used to access and authenticate with the InsightVM APIs during synchronization of secrets.

      To obtain the secret ID, open the secret's view page in Secret Server and look at the URL at the top of the browser window. The secret ID is the number that appears after the /secrets string in the URL. For more information on how to access the secret's view page, refer to the Secret Server documentation.

    • SkipSSLVerification: The value of this flag specifies whether SSL certificate verification needs to be performed. By default, both InsightVM and Secret Server require a valid SSL certificate. Setting the flag to True can bypass certificate verification, but this poses a security risk.

  3. Run the encryption utility, Delinea.EncryptionUtility.exe, from the downloaded integration package on your computer.

    Delinea.EncryptionUtility.exe is located in path of Downloads folder\Rapid7SecretServer1.0.0\SS_Rapid7_With_Encryption_Utility\EncryptionUtility.

  4. At the prompt, provide the path of the SS_Rapid7 integration configuration file as follows:

    path of Downloads folder\Rapid7SecretServer1.0.0.zip\SS_Rapid7_With_Encryption_Utility\ss_rapid7_integration\appsettings.json

    For example, the path of the configuration file on your PC can be C:\Users\my-username\Downloads\Rapid7SecretServer1.0.0.zip\SS_Rapid7_With_Encryption_Utility\ss_rapid7_integration\appsettings.json.

  5. Provide the URL of Secret Server and then enter the username and password of the application user for logging in to Secret Server.

    You must create an application user in Secret Server as part of the setup for the integration. For more information, see Setting Up Secret Server.

  6. Enter yes or no to specify whether the server has a valid SSL certificate.

  7. Enter yes or no to specify whether the login user is a domain user. If the login user is a domain user, provide the user's domain.

  8. Press Enter to exit the encryption utility.

The encryption utility encrypts the provided Secret Server username and password and adds a new AuthString attribute to the appsettings.json configuration file. This attribute stores an encrypted string that represents the user name and password.