Royal TSX integrates with some password stores, but none of the current ones are really enterprise-ready password storage. It would be nice to offer integration to one (my employer uses Pleasant Password.), or ideally an API to enable shims to be written between the API of the password storage and Royal TSX.
I'm posting this in Mac as I'm a Mac user, but I know both pieces of software exist on other platforms, so really this should be considered a general feature request.
just wanted to let you know that we're working on a generic way to integrate with external data sources for the next major version.
How exactly this will work I can't yet say since we're still in the prototyping phase but it should allow you to use most kinds of centralized credential management systems.
Yes, there will be some kind of API.
It's quite a challenge to make this as powerful as possible while still maintaining basic usability for non-programmers/scripters so we're playing around with different ideas right now.
Checking if there is any update on the development of the API for connectivity that could be used to connect to other privileged management vaults. Appreciate any update you might have on estimated availability.
we're in the middle of the implementation phase. We already have prototypes running that can connect to and retrieve credentials from Secret Server and Pleasant Password. So it's looking pretty good. We still can't provide an ETA for the first public beta though.
Thanks! Would integration with other tools such as CyberArk or BeyondTrust also be possible with the API?
Yes, this will be generic and work for all kinds of external data sources.
The first beta with support for Dynamic Folders and Dynamic Credentials is now available!
You can get the beta here: https://www.royalapplications.com/ts/mac/features-beta
Documentation for the feature is available here: https://www.royalapplications.com/go/kb-all-royaljson
In the coming weeks we will post a couple sample scripts to make getting started easier.
Looks good - I'll play with them as I have a chance, see if I can get it working in my situation. (I may wait until the example scripts get released.)
Where do I specify the script to be executed to generate the credential object ? I have a curl script that will fetch the credential from the the password manager.
to specify the script, you need to create a "Dynamic Folder" object and populate the "Dynamic Folder Script" section.
Please see the "Dynamic Folders" section of our RoyalJSON documentation for details.
Hope that helps!
Can you please provide sample scripts
we're currently in the process of developing an import/export system for dynamic folders.
When that's complete, we'll be able to share some samples.
our Dynamic Folder Samples for Thycotic Secret Server and Pleasant Password Server are now available in our Toolbox repository on Github.
Please let us know if everything works as expected or if you're having issues!