DelineaSS
Delinea Secret Server Pack.#
This Integration is part of theSupported versions
Supported Cortex XSOAR versions: 6.5.0 and later.
Secret Server is the only fully featured Privileged Account Management (PAM) solution available both on premise and in the cloud. It empowers security and IT ops teams to secure and manage all types of privileged accounts and offers the fastest time to value of any PAM solution. This integration was integrated and tested with version 5.0 of Delinea
#
Configure Delinea in CortexParameter | Description | Required |
---|---|---|
url | Server URL (e.g. https://example.net\) | True |
credentials | Username | True |
insecure | Trust any certificate (not secure) | False |
proxy | Use system proxy settings | False |
isFetchCredentials | Fetches credentials | False |
credentialobjects | List secret name for fetch credentials (separated by commas) | False |
#
CommandsYou can execute these commands from the CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.
#
delinea-secret-password-getRetrieved password from secret
#
Base Commanddelinea-secret-password-get
#
InputArgument Name | Description | Required |
---|---|---|
secret_id | ID secret | Required |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.Secret.Password | String | Retrieved password from secret |
#
Command Example!delinea-secret-password-get secret_id=2
#
Context Example#
delinea-secret-username-getRetrieved username from secret
#
Base Commanddelinea-secret-username-get
#
InputArgument Name | Description | Required |
---|---|---|
secret_id | ID secret | Required |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.Secret.Username | String | Retrieved username from secret. |
#
Command Example!delinea-secret-username-get secret_id=2
#
Context Example#
delinea-secret-search-nameSearch ID secret by field name
#
Base Commanddelinea-secret-search-name
#
InputArgument Name | Description | Required |
---|---|---|
search_name | Search name secret. | Required |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.Secret.Id | String | Retrieved list ID for find secret by field secret name |
#
Command Example!delinea-secret-search-name search_name=xsoarSecret
#
Context Example#
delinea-secret-password-updateUpdate password for secret
#
Base Commanddelinea-secret-password-update
#
InputArgument Name | Description | Required |
---|---|---|
secret_id | ID secret for update password | Required |
newpassword | Value new password for secret | Required |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.Secret.Newpassword | String | New password changed for secret |
#
Command Example!delinea-secret-password-update secret_id=2 newpassword=12345
#
Context Example#
delinea-secret-checkoutCheck Out a secret
#
Base Commanddelinea-secret-checkout
#
InputArgument Name | Description | Required |
---|---|---|
secret_id | ID secret for check out command | Required |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.Secret.Checkout | String | Return call command Check Out |
#
Command Example!delinea-secret-checkout secret_id=2
#
Context Example#
delinea-secret-checkinCheck In a secret
#
Base Commanddelinea-secret-checkin
#
InputArgument Name | Description | Required |
---|---|---|
secret_id | Secret ID. | Required |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.Secret.Checkin | String | Secret object |
#
Command Example!delinea-secret-checkin secret_id=13
#
Context Example#
delinea-folder-createCreate a new secret folder
#
Base Commanddelinea-folder-create
#
InputArgument Name | Description | Required |
---|---|---|
foldername | Folder name | Required |
foldertypeid | Folder type ID(1=< ID =< 3 | Required |
parentfolderid | Parent folder ID | Required |
inheritPermissions | Whether the folder should inherit permissions from its parent (default: true) | Optional |
inheritSecretPolicy | Whether the folder should inherit the secret policy. Defaults to true unless creating a root folder. | Optional |
secretPolicyId | Secret policy ID | Optional |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.Folder.Create | Unknown | New object folder |
#
Command Example!delinea-folder-create foldername="xsoarFolderTest" foldertypeid="1" parentfolderid="3"
#
Context Example#
delinea-folder-searchSearch folder by name folder
#
Base Commanddelinea-folder-search
#
InputArgument Name | Description | Required |
---|---|---|
foldername | Search name folder | Required |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.Folder.Id | String | Retrieved folder ID from search query |
#
Command Example!delinea-folder-search foldername="xsoarFolderTest"
#
Context Example#
Command Example!delinea-folder-delete folder_id="18"
#
Context Example#
delinea-secret-getGet secret object by ID secret
#
Base Commanddelinea-secret-get
#
InputArgument Name | Description | Required |
---|---|---|
secret_id | ID for secret | Required |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.Secret | String | Secret object |
#
Command Example!delinea-secret-get secret_id=2
#
Context Example#
delinea-secret-searchSearch secret ID by multiply params
#
Base Commanddelinea-secret-search
#
InputArgument Name | Description | Required |
---|---|---|
filter.allowDoubleLocks | Whether to allow DoubleLocks as part of the search. True by default | Optional |
filter.doNotCalculateTotal | Whether to return the total number of secrets matching the filters. False by default | Optional |
filter.doubleLockId | Only include Secrets with this DoubleLock ID assigned in the search results | Optional |
filter.extendedFields | Names of Secret Template fields to return. Only exposed fields can be returned. | Optional |
filter.extendedTypeId | Return only secrets matching a certain extended type | Optional |
filter.folderId | Return only secrets within a certain folder | Optional |
filter.heartbeatStatus | Return only secrets with a certain heartbeat status | Optional |
filter.includeActive | Whether to include active secrets in results (when excluded equals true) | Optional |
filter.includeInactive | Whether to include inactive secrets in results | Optional |
filter.includeRestricted | Whether to include restricted secrets in results | Optional |
filter.isExactMatch | Whether to do an exact match of the search text or a partial match | Optional |
filter.onlyRPCEnabled | Whether to only include secrets whose template has Remote Password Changing enabled | Optional |
filter.onlySharedWithMe | When true only Secrets where you are not the owner and the Secret was shared explicitly with your user id will be returned. | Optional |
filter.passwordTypeIds | Return only secrets matching certain password types | Optional |
filter.permissionRequired | Specify whether to filter by List, View, Edit, or Owner permission. Default is List. (List = 1, View = 2, Edit = 3, Owner = 4 | Optional |
filter.scope | Specify whether to search AllSecrets, Recent, or Favorites (All = 1, Recent = 2,Favorites = 3 | Optional |
filter.searchField | Field to search | Optional |
filter.searchFieldSlug | Field-slug to search. This will override SearchField. | Optional |
filter.searchText | Search text | Optional |
filter.secretTemplateId | Return only secrets matching a certain template | Optional |
filter.siteId | Return only secrets within a certain site | Optional |
skip | Number of records to skip before taking results | Optional |
sortBy[0].direction | Sort direction | Optional |
sortBy[0].name | Sort field name | Optional |
sortBy[0].priority | Priority index. Sorts with lower values are executed earlier | Optional |
take | Maximum number of records to include in results | Optional |
filter.includeSubFolders | Whether to include secrets in subfolders of the specified folder | Optional |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.Secret.Secret | String | Search secret object |
#
Command Example!delinea-user-search filter_searchfields="username" filter_searchtext="xsoar"
#
Context Example#
delinea-folder-updateUpdate a single secret folder by ID
#
Base Commanddelinea-folder-update
#
InputArgument Name | Description | Required |
---|---|---|
folderName | Folder name | Optional |
folderTypeId | Folder type ID | Optional |
id | Folder ID. Must match ID in path | Required |
inheritPermissions | Whether the folder inherits permissions from its parent | Optional |
inheritSecretPolicy | Whether the folder inherits the secret policy | Optional |
parentFolderId | ID parent folder | Optional |
secretPolicyId | Secret Policy ID | Optional |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.Folder.Update | String | Retrieved return operation update folder |
#
Command Example!delinea-folder-update id=4 foldername="SafexsoarTest"
#
Context Example#
delinea-secret-createCreate new object Secret
#
Base Commanddelinea-secret-create
#
InputArgument Name | Description | Required |
---|---|---|
autoChangeEnabled | AutoChangeEnabled options | Optional |
checkOutChangePasswordEnabled | CheckOutChangePasswordEnabled options | Optional |
checkOutEnabled | Whether secret checkout is enabled | Optional |
checkOutIntervalMinutes | Checkout interval, in minutes (integer) | Optional |
enableInheritPermissions | Whether the secret inherits permissions from the containing folder | Optional |
enableInheritSecretPolicy | Whether the secret policy is inherited from the containing folder | Optional |
folderId | Secret folder ID. May be null unless secrets are required to be in folders.(integer) | Optional |
launcherConnectAsSecretId | LauncherConnectAsSecretId(integer) | Optional |
name | Secret name | Required |
passwordTypeWebScriptId | passwordTypeWebScriptId options(integer) | Optional |
proxyEnabled | proxyEnabled options | Optional |
requiresCommen | requiresCommen options | Optional |
secretPolicyId | secretPolicyId options(integer) | Optional |
secretTemplateId | Secret Template ID (integer) | Required |
sessionRecordingEnabled | sessionRecordingEnabled options | Optional |
siteId | siteId options (integer) | Required |
sshKeyArgs | sshKeyArgs options(list args) | Optional |
domain_item | Item Domain for secret. If need to select template. | Optional |
machine_item | Item Machine for secret. If need to select template. | Optional |
username_item | Item Username for secret.If need to select template. | Optional |
password_item | Item Password for secret.If need to select template. | Optional |
notes_item | Item Notes for secret.IF need to select template. | Optional |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.Secret.Create | String | Secret Model |
#
Command Example!delinea-secret-create name="xsoarSecret" secrettemplateid="6003" siteid="1" checkoutenabled=true folderid=3 machine_item="my-machine" username_item="my-username" password_item="XXXXXX@@@@@####"
#
Context Example#
delinea-secret-deleteDelete secret
#
Base Commanddelinea-secret-delete
#
InputArgument Name | Description | Required |
---|---|---|
id | ID secret for delete | Required |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.Secret.Delete | String | Information about an object that was deleted |
#
Command Example!delinea-secret-delete id=2
#
Context Example#
delinea-user-createCreate a new user
#
Base Commanddelinea-user-create
#
InputArgument Name | Description | Required |
---|---|---|
displayName | User display name | Required |
password | Password for new user | Required |
userName | Username | Required |
adGuid | Active Directory unique identifier | Optional |
domainId | Active Directory domain ID | Optional |
duoTwoFactor | Whether Duo two-factor authentication is enabled | Optional |
emailAddress | User email address | Optional |
enabled | Whether the user account is enabled | Optional |
fido2TwoFactor | Whether Duo two-factor authentication is enabled | Optional |
isApplicationAccount | IsApplicationAccount | Optional |
oathTwoFactor | Whether OATH two-factor authentication is enabled | Optional |
radiusTwoFactor | Whether RADIUS two-factor authentication is enabled | Optional |
radiusUserName | RADIUS username | Optional |
twoFactor | Whether two-factor authentication is enabled | Optional |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.User.Create | String | User Model |
#
Command Example!delinea-user-create displayname="UserOne" password="12345" username="UserOne"
#
Context Example#
delinea-user-searchSearch, filter, sort, and page users
#
Base Commanddelinea-user-search
#
InputArgument Name | Description | Required |
---|---|---|
filter.domainId | Filter users by Active Directory domain (integer) | Optional |
filter.includeInactive | Whether to include inactive users in the results | Optional |
filter.searchFields | Fields to search | Optional |
filter.searchText | Search text | Optional |
skip | Number of records to skip before taking results | Optional |
sortBy[0].direction | Sort direction | Optional |
sortBy[0].name | Sort field name | Optional |
sortBy[0].priority | Priority index. Sorts with lower values are executed earlier (integer) | Optional |
take | Maximum number of records to include in results(integer) | Optional |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.User.Search | String | Specify paging and sorting options for querying records and returning results |
#
Command Example!delinea-user-search filter_searchfields="userName" filter_searchtext="xsoarUser"
#
Context Example#
delinea-user-updateUpdate a single user by ID
#
Base Commanddelinea-user-update
#
InputArgument Name | Description | Required |
---|---|---|
id | User ID | Required |
dateOptionId | DateOptionId(integer) | Optional |
displayName | Display name | Optional |
duoTwoFactor | Whether Duo two-factor authentication is enabled | Optional |
emailAddress | Optional | |
enabled | Whether the user account is enabled | Optional |
fido2TwoFactor | Whether FIDO2 two-factor authentication is enabled | Optional |
groupOwners | GroupOwners(integer) | Optional |
isApplicationAccount | IsApplicationAccount | Optional |
isGroupOwnerUpdate | isGroupOwnerUpdate | Optional |
isLockedOut | Whether the user is locked out | Optional |
loginFailures | Number of login failures | Optional |
oathTwoFactor | Whether OATH two-factor authentication is enabled | Optional |
password | Password | Optional |
radiusTwoFactor | Whether RADIUS two-factor authentication is enabled | Optional |
radiusUserName | RADIUS username | Optional |
timeOptionId | timeOptionId (integer) | Optional |
twoFactor | Whether two-factor authentication is enabled | Optional |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.User.Update | String | User Model |
#
Command Example!delinea-user-update id=28 displayname="myTestUser"
#
Context Example#
delinea-user-deleteDelete a user by ID
#
Base Commanddelinea-user-delete
#
InputArgument Name | Description | Required |
---|---|---|
id | User ID | Required |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.User.Delete | String | Information about an object that was deleted |
#
Command Example!delinea-user-delete id=5
#
Context Example#
delinea-secret-rpc-changepasswordChange a secret's password
#
Base Commanddelinea-secret-rpc-changepassword
#
InputArgument Name | Description | Required |
---|---|---|
secret_id | Secret ID | Required |
newPassword | New secret password | Required |
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.Secret.ChangePassword | String | Secret summary object |
#
Command Example!delinea-secret-rpc-changepassword secret_id=4 newPassword="Test000"
#
Context Example#
delinea-fetch-usersFetch credentials from secret
#
Base Commanddelinea-fetch-users
#
InputNO input argumets
#
Context OutputPath | Type | Description |
---|---|---|
Delinea.User.Credentials | String | Secret credential objects |
#
Command Example!delinea-fetch-users