Enterprise Recon 2.0.31

Download ER 2.0.31 User Guide (PDF)

Target Credential Manager

The Target Credential Manager manages the credentials for Target locations that require user authentication for access.

The section covers the following topics:

Credential Permissions

Resource Permissions and Global Permissions that are assigned to a user grants access to perform specific operations for Target credentials.

Operation Definition Users with Access
View credentials Access to view credentials when setting up a scan or via the Resource Permissions Manager.
  1. Global Admin.
  2. Permissions Manager.
  3. Users that have Use or Edit Credential privileges assigned through Resource Permissions.
Add credentials User can add credentials when setting up a Scan for a Target.
  1. Global Admin.
  2. Users that have Scan privileges assigned through Resource Permissions.
Add credentials (Global) User can add credentials for all Target platforms via Target Credential Manager.
  1. Global Admin.
Use credentials Access to use credentials when scanning a Target.
  1. Global Admin.
  2. Users that have Use Credential privileges assigned through Resource Permissions.
Edit credentials User can edit credentials.
  1. Global Admin.
  2. Users that have Edit Credential privileges assigned through Resource Permissions.

Global Admin users have full access to all credentials. A Permissions Manager user can view all existing credentials and assign users permissions to use or edit these credentials via the Resource Permissions Manager.

All users can Add Target Credentials, but can only use or edit the credential sets to which they have been explicitly assigned permissions to.

See Resource Permissions for more information.

Using Credentials

Credential sets that are saved in the Target Credential Manager appear in the Stored Credentials field when adding Targets to scan.

List of credentials that a user has permissions to listed in the Store Credentials dropdown box.

You can use a new credential set when you enter a value in the Credential Label, Username and Password fields.

Once the Target is added to ER2, the Credential Details that were provided are automatically saved to the Target Credential Manager under the specified Credential Label.

Add Target Credentials

A user can add new credentials to the Target Credential Manager in two ways:

  • When you Start a Scan, the credentials used for that scan are saved in the Target Credential Manager.
  • Add a credential set through the Target Credential Manager.

Example of adding a Server Target credential set with the label set to "Server Credentials" in the Target Credential Manager.

Add a Credential Set Through the Target Credential Manager

  1. Expand the navigation menu, ENTERPRISE RECON er2-hamburger.png.

  2. Go to SCANNING > TARGET CREDENTIAL MANAGER.
  3. On the top-right of page, click + Add.
  4. In the New Credentials page, enter a descriptive label in the Credential Label field.
  5. Select the Target Type:
    Target Type Description
    Cloud

    From the Storage Provider list, select your cloud storage provider.

    Each cloud storage provider requires different credential formats. See Add Targets.

    Example of adding an Amazon S3 credential set with the label set to "Cloud Credentials" in the Target Credential Manager.
    Server

    In the New Credentials page, enter your:

    • User name.
    • Password.
    • (Optional) Click Browse to upload a P12 key or SSL certificate.

    Example of adding a Server Target credential set with the label set to "Server Credentials" in the Target Credential Manager.

Edit Target Credentials

You can edit previously saved credentials through the Target Credential Manager:

  1. Hover over the Target credential set that you want to edit on the Target Credential Manager.
  2. Click Edit to edit the credentials.