cloakware (CA PAM) is integrated with TDM
FastDataMasker:
Support for Cloakware in FastDataMasker is governed by the env variable TDM_ENABLE_PASSMGR.
Before launching FastDataMasker, the variable TDM_ENABLE_PASSMGR must be set in the environment with one of the following values:
yes -> this lets you create either normal profiles or profiles using external password manager.
no -> this lets you only create normal profiles.
exclusive -> this lets you only create profiles that use external password manager.
To sum up this way we can control UI behavior of FastDataMasker integration with Cloakware.
the FastDataMasker engine doesn't need to be configured with environment variables.
In order for FastDataMasker to work with Cloakware you should copy Cloakware jar files: cspmclient.jar and cwjcafips.jar from the Cloakware installed location to the lib folder of the installed FastDataMasker location, for example C:\Program Files\Grid-Tools\FastDataMasker\lib.
Also, in installed FastDataMasker location there is a file GTMAPPER.l4j.ini.
you should open it with a text editor and check the path for java properties java.library.path and cspm_client_config_file. Where java.library.path is the path to the Cloakware native dlls and cspm_client_config_file is the path to the Cloakware configuration xml.
In order to use Cloakware integration aliases in FastDataMasker one should use the following format:
ext:cspm:<cloakware_alias> where < cloakware_alias> is the alias in Cloakware.
Javelin:
For database activities you should enter the cloakware alias in username\login field in the following form:
ext:cspm:<alias>
Prefix "ext:cspm:" is used to determine that we use cloakware.
The cloakware client should be installed.
GTSUBSET:
Before running GTSubset please check the content of file GTSubset.l4j.ini.
Java properties JAVA_LIBRARY_PATH and CSPM_CLIENT_CONFIG_XML should point to cloakware native dlls and to cloakware configuration file respectively.
As usual, in order to use cloakware authentication aliases please use the following form of login:
ext:cspm:<alias>
where <alias> is the cloakware alias.
DATAMAKER:
Original Message:
Sent: 07-27-2020 12:19 PM
From: David Munoz
Subject: Store TDM Credentials in Password Vault.
Hello Community
We have a use case to integrate
Is there an TDM integrations to Broadcom Password Management Solutions or Security Software like Cloakware, or CA PAM (Privileged Access Manager)?
If so, appreciate to point out some documentation.
Thanks