Our organization is using PAM self-hosted and I'm currently looking at this provider as an option to writing secrets to CyberArk safes via terraform. The support for PAM self-hosted looks promising, but the only resources I see so far as far as account creation goes looks to be specific to aws, db etc..where as our organization supports multiple platform ids etc.
Our workflow is basically provisioning Confluent Cloud resources such as API Keys and Secrets via terraform and we need those secrets written to the CyberArk safe for future retrieval.
We would like a way (a resource) that just creates a basic account where I can set a username and password. Using @infamousjoeg example https://github.com/infamousjoeg/cyberark-examples/blob/master/python_example.py would be a good baseline as we've been able to replicate this in Postman for writing secrets successfully.
As this terraform project seems to be the only terraform support for what we need, we've also considered using example https://github.com/infamousjoeg/cyberark-examples/blob/master/python_example.py and figuring out how to get the secrets created via terraform into this script to write to CyberArk, which seems like a burden. It would be much easier to write the secrets via this provider to keep the state files up to date.
szh
commented
1 hour ago
Our organization is using PAM self-hosted and I'm currently looking at this provider as an option to writing secrets to CyberArk safes via terraform. The support for PAM self-hosted looks promising, but the only resources I see so far as far as account creation goes looks to be specific to aws, db etc..where as our organization supports multiple platform ids etc.
Our workflow is basically provisioning Confluent Cloud resources such as API Keys and Secrets via terraform and we need those secrets written to the CyberArk safe for future retrieval.
We would like a way (a resource) that just creates a basic account where I can set a username and password. Using @infamousjoeg example https://github.com/infamousjoeg/cyberark-examples/blob/master/python_example.py would be a good baseline as we've been able to replicate this in Postman for writing secrets successfully.
As this terraform project seems to be the only terraform support for what we need, we've also considered using example https://github.com/infamousjoeg/cyberark-examples/blob/master/python_example.py and figuring out how to get the secrets created via terraform into this script to write to CyberArk, which seems like a burden. It would be much easier to write the secrets via this provider to keep the state files up to date.
@infamousjoeg @szh