Setup

You must set up InsightVM and Delinea Platform to enable this integration.

Setting Up InsightVM

You must have a valid user account to set up InsightVM for integration. This user is used to access and update shared credentials. The user must have the Global Administrator role. For information about creating a user in InsightVM, see the Rapid7 Insight VM documentation.

You must also create shared credentials for each secret that you want to synchronize from Secret Server on Delinea Platform. Make sure that you select the Microsoft Windows/Samba (SMB/CIFS) authentication service for the shared credentials in InsightVM. For details of creating shared credentials, see the Insight VM documentation.

Setting Up Delinea Platform

To set up Delinea Platform for the integration, you must do the following in Delinea Platform

  • Specify a folder to store the secrets that you want to synchronize to Rapid7 Insight VM.

  • Create secrets that you want to synchronize to InsightVM.

  • Create a service user. This user is used to access the Delinea Platform APIs to retrieve secrets.

  • Create a secret for the InsightVM user. This secret is meant to store the credentials of the InsightVM user and the URL of InsightVM. Delinea Platform uses this URL and these credentials to access and authenticate with the InsightVM APIs during synchronization of secrets.

To set up Delinea Platform:

  1. In Secret Server on Delinea Platform, create a new folder to store Rapid7 secrets.

    For information about creating folders, see the Delinea Platform documentation (see "Secret Folders" on the page).

  2. In the folder, create the secrets that you want to synchronize to InsightVM.

    The secrets must use the Windows Account template. For each secret, set the fields in the Create new secret dialog as follows. To save the password, select Create secret.

    • Secret name: The name of the secret. Enter a descriptive name that help identify the secret.

    • Machine: The URL of your InsightVM instance.

    • User name: The username from the corresponding credentials in InsightVM.

    • Password: The password from the credentials in InsightVM.

    • Site: Select the site that the site belongs to.

    • (Optional) Auto Change Enabled: Select this checkbox to enable automatic remote password changing (RPC) for the secret.

    For details about creating secrets, see the Delinea Platform documentation.

  3. Create a service user in Delinea Platform.

    For information about creating a service user, see the Delinea Platform documentation.

  4. Grant the service user the View permission on the folder’s Permissions tab.

    This action grants the user access to both the folder and the secrets it stores. For information about granting permissions on folders, see the Delinea Platform documentation (see "Secret Folders" on the page)

  5. Under the same folder, create a secret for the InsightVM user.

    You must use the Web Password template for this secret. In the Create new secret dialog, provide the following information. To save the new secret, select Create secret.

    • Secret Name: The name of the secret to help identify it.

    • URL: The URL of your InsightVM instance.

    • Username: The username of the InsightVM user.

    • Password: The password of the InsightVM user.

    • Site: Select the site that the secret belongs to.

    • (Optional) Auto Changed Enabled: Select this checkbox to enable automatic remote password changing (RPC) for the secret.