Configure Idira PAM for Arctic Wolf monitoring
You can configure CyberArk Privileged Access Manager(PAM)® to send the necessary logs to Arctic Wolf® for security monitoring.
These resources are required:
- An activated Arctic Wolf Sensor or 仮想ログ収集ツール(vLC)
- Access to the CyberArk Vault Server as the local administrator
- Access to the CyberArk Privileged Threat Analytics(PTA) server as the root user
Configure the Vault Server to send syslog records
Configure the PTA server to send syslog records
Configuring the CyberArk PTA to send syslog records is not required. Arctic Wolf recommends completing this step to get the best security value from this integration.