Removing CyberArk Integration

FlexNet Manager Suite 2023 R1 (On-Premises)
It may become necessary to remove CyberArk integration from one or more inventory beacons as organizational structures evolve.
Tip: To disable the CyberArk integration only temporarily, so that it is easy subsequently to resume integrated operations, open the FlexNet Beacon interface, select the Password management page, and clear the Use CyberArk Credential Provider on this inventory beacon check box. This disables the use of all credentials stored in CyberArk from this inventory beacon, until you re-enable it by selecting this check box again.
Within the Password Manager interface, the option to select CyberArk option for the Vault setting remains available as long as either of the following is true:
  • CyberArk integration is detected on this inventory beacon (through the files installed on the same device as part of the CyberArk Credential Provider)
  • Any credential is saved in Password Manager for which the Vault setting is currently CyberArk.
This suggests the following best practice for removing CyberArk integration from an inventory beacon. This process must be repeated separately on each affected inventory beacon.

To remove CyberArk integration from an inventory beacon:

  1. Log into the FlexNet Beacon interface (administrator privileges required), select the Password management page, and click Launch Password Manager.
  2. Look at the credentials in the Current credentials group (on the left side).
    Every credential with a blank value in the Account column is either a Password for Oracle listener (which requires no account name, regardless of where the credential is stored), or is a credential saved in the CyberArk Vault.
  3. Select each of these credentials in turn so that its properties are displayed in the Editor group, and check the Vault setting for each one.
  4. When the Vault setting is CyberArk, choose either of the following paths, depending on the strategic requirements:
    • If this inventory beacon must still conduct the same remote execution task against the same target device, and therefore still requires a credential, switch the Vault setting to FlexNet Beacon, and update the remainder of the (newly displayed) fields with values that are now to be saved locally on this inventory beacon. Click Save when you have finished editing the credential.
    • Where the selected credential is no longer required in any form, in the Current credentials group click Delete... to remove the selected reference to CyberArk from the FlexNet Beacon vault, and confirm.
    Tip: If the case is that every credential for this inventory beacon is stored in CyberArk, and none of these is required in future, use Delete All....
  5. When all affected credentials are either removed or updated, exit Password Manager.
  6. If these credentials were for use solely from this inventory beacon, notify your CyberArk administrator that these credentials may now be removed from CyberArk. (However, be alert for credentials still needed by other inventory beacons.)
  7. The appropriate person may now uninstall the CyberArk Credential Provider from this inventory beacon.
Since the CyberArk installed files have been removed from the inventory beacon, and there are no credentials remaining in Password Manager that reference CyberArk in the Vault setting, the user interface of the Password Manager is different when you open it hereafter. The Vault setting no longer appears, and all interactions are with credentials stored locally in the FlexNet Beacon vault.

FlexNet Manager Suite (On-Premises)

2023 R1