Pull vault users and user groups from CyberArk Privilege Cloud.
Source connector — pulls identity and access data from CyberArk Privilege Cloud into ComplianceScout where it is scored against your compliance frameworks and violation rules.
After a successful sync, the following data is available in your ComplianceScout dashboard for violation detection and reporting.
These fields are collected when you add the connector in the ComplianceScout dashboard. Secrets are encrypted at rest using AES-256-GCM and are never logged.
| Field | Type | Required | Notes |
|---|---|---|---|
| Tenant subdomain | Text | Required | Your CyberArk Identity subdomain, e.g. 'acme' for acme.id.cyberark.cloud. |
| OAuth Client ID | Text | Required | OAuth service account client ID from CyberArk Identity → Apps → Add Web App → OAuth2 Client. |
| OAuth Client secret | Secret | Required | — |
Follow these steps to gather the credentials above and connect CyberArk Privilege Cloud to ComplianceScout.
In CyberArk Identity, go to Apps → Add Web App → OAuth2 Client. Name it "ComplianceScout".
Copy the Client ID and generate a Client Secret.
Assign the service account the Vault Users and Vault User Groups read permissions.
Note your CyberArk Identity subdomain from the URL.
In ComplianceScout, go to Data & Secrets → Integrations → Add Connector → CyberArk Privilege Cloud and enter the credentials.
Start a free trial — your tenant is provisioned instantly and you can wire up this integration from the connectors page.