Technology Partners

Privileged Access Security & InsightVM

Privileged Access Security & InsightVM Integration Brief

Enable Conditional Access of Assets

With CyberArk Privileged Access Security Solution and Rapid7 InsightVM

Integration Benefits

  • Mitigate risk by granting privileged access based on InsightVM asset data in your environment.
  • Customize your needs using criteria set in InsightVM to inform access in CyberArk (e.g. Inform access based on risk score, customized tags, presence of a particular vulnerability, and/ or PCI compliance).
  • Confidently rely on one source of truth for granting privileged access, saving yourself time to focus on other projects.

What if you could control who can access an asset in your environment based on the characteristics of the asset right now? Integrating Rapid7 InsightVM and the CyberArk Privileged Access Security Solution instantly simplifies this process. This integration grants user privileged access based on criteria you set for each asset, such as its risk score, PCI compliance status, and customized tags.

The Privileged Access Security Solution integration can prevent users from accessing compromised systems and, in turn, helps to make your organization's environment more secure. You can block access to specific systems that show high-risk vulnerability scores until those vulnerabilities are eliminated, while still allowing authorized technicians to access machines for remediation. Leverage this integration to ensure your credential management and privileged access evolves with your ever-changing environment.

How It Works

CyberArk Privileged Access Security Solution retrieves scan results from InsightVM and verifies the risk criteria of any assets prior to granting privileged user access to a specific machine. Risk criteria can include, but is not limited to, the risk score of an asset, its PCI compliance status, the presence of a specific vulnerability, and any customized tags on the asset. If CyberArk verifies that the criteria for an asset has not been met based on data from InsightVM, it will remove access to the asset. Once the vulnerability is remediated (or the characteristics of the asset otherwise change), access to the asset is automatically restored.

Overview of the Integration Process

  • Step 1: In CyberArk, create an InsightVM API credential to be stored.
  • Step 2: In CyberArk, create a ticketing system and assign it to the target account platforms.
  • Step 3: In CyberArk, configure the ticketing system to define criteria for InsightVM conditional access. For example, set criteria for risk levels that should trigger restrictions.
  • Step 4: In InsightVM, perform a vulnerability assessment and optionally tag assets to be used with conditional access.

Note: Rapid7 Professional Services can be engaged to help set up this integration.

What You Need

  • Rapid7 InsightVM or Rapid7 Nexpose 6
  • CyberArk Privileged Access Security Solution Version 9.3.0

*All mentions of Rapid7 InsightVM associated with the CyberArk Privileged Access Security Solution also apply to Rapid7 Nexpose.

Integration Overview

Download this Integration Overview

Download Now
Free 30-Day Trial

Take this integration for a spin and experience the full functionality of InsightVM for 30 days

Explore InsightVM
Need help with an integration?

Please contact Rapid7 for support or assistance at +1.866.380.8113, or view all of our support options.

Get Support

Start Free Trial

No credit card required. All fields are mandatory.

    Sorry your request cannot be completed at this time. Please reach out to sales at +1-866-7RAPID7 or at