Following the recommendation of CyberArk to sync secrets from vault to Conjur, It works great when we have username and password combination. But it does not provide a good option for storing a generic Secret which can be synced to Conjur. I looked at the option of using the generic Web application platform but you will still need reference a account property to retrieve its value. What are the recommendations to store such secrets?
We can create secret variables directly in Conjur but I want to keep all the secrets at one location for ease of management and any secret/credentials onboarding can be done using the CORE PAS platform.
In this location you can right click the properties and add and remove which one you want. You could delete all of the properties so then it would just contain a password value.
@AndrewCopeland Thanks for your quick response. I have a similar setup where I have made all the properties optional and entered the password only while onboarding the account. I see the account onboarded is syncing to Conjur as follows
name of the vault/LOB/Safe name/name of the account/password
Is there a way that we can store secrets without putting it in account Property i.e. password in this case. so we can retrieve that in Conjur using the variable as below.
name of the vault/LOB/Safe name/name of the account
@AndrewCopeland Password property is not listed as a optional or required property in the platform. I want to change the name of the property to something else other than password. How can we go about that?
