.png?sv=2019-07-07&sig=6f4qt69Myd1PyEJuyTUuFJhY0VU8%2FXI8HT3U4Pgt1Ao%3D&spr=https%2Chttp&st=2023-06-05T07%3A45%3A34Z&se=2023-06-05T07%3A55%3A34Z&srt=o&ss=b&sp=r){kind=logo}
PrivX
- 08 Mar 2022
- 2 Minutes to read
- Print
- DarkLight
- PDF
PrivX
- Updated on 08 Mar 2022
- 2 Minutes to read
- Print
- DarkLight
- PDF
Article Summary
PrivX provides privileged access to on-prem and cloud environments, including control access to servers, network devices and other critical infrastructure according to user roles and privileges.
Types of Assets Fetched
This adapter fetches the following types of assets:
- Devices
- Users
Parameters
- Host Name or IP Address (required) - The hostname or IP address of the PrivX server.
- OAuth Client ID, OAuth Client Secret, API Client ID and API Client Secret (required) - The credentials for an API client that has the Required Permissions to fetch assets.
- Verify SSL (required, default: False) - Verify the SSL certificate offered by the value supplied in Host Name or IP Address. For more details, see SSL Trust & CA Settings.
- If enabled, the SSL certificate offered by the value supplied in Host Name or IP Address will be verified against the CA database inside of Axonius. If the SSL certificate can not be validated against the CA database inside of Axonius, the connection will fail with an error.
- If disabled, the SSL certificate offered by the value supplied in Host Name or IP Address will not be verified against the CA database inside of Axonius.
- HTTPS Proxy (optional, default: empty) - A proxy to use when connecting to the value supplied in Host Name or IP Address.
- If supplied, Axonius will utilize the proxy when connecting to the value supplied in Host Name or IP Address.
- If not supplied, Axonius will connect directly to the value supplied in Host Name or IP Address.
- For details on the common adapter connection parameters and buttons, see Adding a New Adapter Connection.
APIs
Axonius uses the SSH PrivX API.
Required Ports
- HTTPS port 443
Required Permissions
The value supplied in OAuth Client ID, OAuth Client Secret, API Client ID and API Client Secret must have read access to devices and users.
To create an API client:
- Log as a system admin to the PrivX server
- Go to Settings → Deployment → Integrate with PrivX using API Clients
- Click ADD API CLIENT.
- Select the following permissions:
- users-view
- hosts-view
- Click SAVE.
The client API credential will be displayed. Use those in the adapter connection parameters.
Version Matrix
This adapter has only been tested with the versions marked as supported, but may work with other versions. Please contact Axonius Support if you have a version that is not listed and it is not functioning as expected.
| Version | Supported | Notes |
|---|---|---|
| SSH PrivX Authentication API: 1.0.1 | Yes | |
| SSH PrivX Local User Store API: 1.0.3 | Yes | |
| SSH PrivX Host Store API: 1.0.3 | Yes |