Accessing a password-protected file - Cloud - 8.0

CyberArk

Version
Cloud
8.0
Language
English (United States)
Product
Talend Big Data
Talend Big Data Platform
Talend Data Fabric
Talend Data Integration
Talend Data Management Platform
Talend Data Services Platform
Talend ESB
Talend MDM Platform
Talend Real-Time Big Data Platform
Module
Talend Studio
Content
Data Governance > Third-party systems > Vault > CyberArk components
Data Quality and Preparation > Third-party systems > Vault > CyberArk components
Design and Development > Third-party systems > Vault > CyberArk components

This scenario retrieves a password from a CyberArk vault and uses the password to access an Excel file. The password is stored as a secret object in the CyberArk vault. The tCyberarkInput component retrieves the password for the subsequent components at runtime. Because there is no need to enter the password in the Job design phase or at the time the Job is running, the security is enhanced.

For more technologies supported by Talend, see Talend components.

This Job comprises three subJobs. The tCyberarkInput component in the first subJob retrieves the password from the CyberArk vault and stores the password in its SECRET variable; the second subJob writes data to an Excel file and protects the file using the SECRET variable; the third subJob displays the data in the Excel file on the console. Because the Excel file is protected by the password, the SECRET variable is also necessary to the third subJob.

Note: Because the tCyberarkInput component requires an output link to run, it connects to a tJavaRow component through a Row > Main connection. The tJavaRow component does nothing except provides an output link for the tCyberarkInput component.
Before creating the Job in this scenario, check that you meet the following prerequisites.
  • You have a CyberArk user account.
  • Credential provider is installed on your machine and is configured properly. See Install the Credential Provider and Credential Provider Configuration for related information.
  • Check that the Windows system service CyberArk Application Password Provider is running.
  • The module required by CyberArk (for example, JavaPasswordSDK.jar or cyberark-cp-sdk-custom.jar) is installed. You can find this file in the CyberArk website or in the folder where Credential provider is installed. See Java Application Password SDK for related information.
  • An application named testAppDemo is created and your machine is added as an allowed machine. See Manage applications for related information.
  • A safe named test is created in the vault and your user account is added as a member of the safe. See Build the Environment for the Credential Provider for related information.
  • The password is stored in a secret object named myTestPW in the safe.