April 18, 2024
Share:
What is CyberArk?
CyberArk is a cybersecurity platform that provides a suite of solutions to protect organizations from cyber threats by securing privileged accounts and credentials. Despite not having a dedicated CyberArk OIDC profile, you can still configure it using the Custom option, and this guide will show you how.
Set up
- In the CyberArk's admin panel, select Add Web Apps, find OpenID Connect in the custom tab and add it
Adding OIDC to CyberArk
- Once added, you will see a new OpenID Connect panel that includes all the information regarding the identity provider configuration. If the widow did not show up, open the app and navigate to the trust section.
OIDC panel in CyberArk
- In Buddy, navigate to Workspace Settings -> Single Sign-On and in the Open ID Connect select the Custom provider
OIDC setup in Buddy
- Copy over the contents of CyberArk's OICD panel to the corresponding fields in Buddy:
- OpenID Connect client ID -> Client ID
- OpenID Connect client secret -> Client secret
- OpenID Connect issuer URL -> Issuer URL
In the CyberArk's panel select the Login initiated by the relying party (RP) oprtion, and add Buddy's Callback URL (READ-ONLY) to CyberArk's Authorized redirect URl's and save.
In CyberArk, navigate to Roles and select the role you want to assign the application to, for example, 'Everybody'.
In the CyberArk's navigate to Assigned Applications, click Add and select the application you have created
CyberArk's assigned applications
Back in Buddy click the Test configuration and enable SSO on success button. If everything is configured correctly the OICD will be enabled.
All that's left is integrating Buddy with CyberArk. Upon log-in, select the "Sign in with SSO" option and provide your workspace handle; you will be redirected to CyberArk to complete the integration process.
SSO login
Jarek Dylewski
Customer Support
With Buddy even the most complicated CI/CD workflows take minutes to create
Sign up for Buddy CI/CD
Start a free trial