Thycotic Secret Server

Thycotic Secret Server is a Privileged Access Management (PAM) solution for protecting your privileged accounts, available both on premise or in the cloud.

Types of Assets Fetched

This adapter fetches the following types of assets:

• Users

Parameters

1. Thycotic Secret Server URL (required) - The full URL of the Thycotic Secret Server
   • For on-prem Thycotic Secret Server, needs to be in the following format: https://<hostname>/SecretServer (e.g. https://demo-server/SecretServer)
   • For cloud Thycotic Secret Server, needs to be in the following format: https://<tenant>.secretservercloud.com (e.g https://mycompany.secretservercloud.com)
2. User Name and Password (required) - The credentials of a local Thycotic user that has the permissions to fetch assets.
3. Port (required) - The port used for the connection.
4. Verify SSL (required, default: False) - Verify the SSL certificate offered by the value supplied in Thycotic Secret Server URL. For more details, see SSL Trust & CA Settings.
   • If enabled, the SSL certificate offered by the value supplied in Thycotic Secret Server URL will be verified against the CA database inside of Axonius. If the SSL certificate can not be validated against the CA database inside of Axonius, the connection will fail with an error.
   • If disabled, the SSL certificate offered by the value supplied in Thycotic Secret Server URL will not be verified against the CA database inside of Axonius.
5. HTTPS Proxy (optional, default: empty) - A proxy to use when connecting to the value supplied in Thycotic Secret Server URL.
   • If supplied, Axonius will utilize the proxy when connecting to the value supplied in Thycotic Secret Server URL.
   • If not supplied, Axonius will connect directly to the value supplied in Thycotic Secret Server URL.
6. HTTPS Proxy User Name (optional, default: empty) - The user name to use when connecting to the value supplied in Thycotic Secret Server URL via the value supplied in HTTPS Proxy.
   • If supplied, Axonius will authenticate with this value when connecting to the value supplied in HTTPS Proxy.
   • If not supplied, Axonius will not perform authentication when connecting to the value supplied in HTTPS Proxy.
7. HTTPS Proxy Password (optional, default: empty) - The password to use when connecting to the value supplied in Thycotic Secret Server URL via the value supplied in HTTPS Proxy.
   • If supplied, Axonius will authenticate with this value when connecting to the value supplied in HTTPS Proxy.
   • If not supplied, Axonius will not perform authentication when connecting to the value supplied in HTTPS Proxy.

• For details on the common adapter connection parameters and buttons, see Adding a New Adapter Connection.

{height="" width=""}

APIs

Axonius uses the Secret Server REST API

Version Matrix

This adapter has only been tested with the versions marked as supported, but may work with other versions. Please contact Axonius Support if you have a version that is not listed and it is not functioning as expected.