Orchestrator

2023.10

false

- Introduction
- User options
- Logging in to Orchestrator
- Resetting your password
- - Robot Statuses
  - Robot Settings
- Auto Updating Client Components
- Activities Feeds
- Orchestrator Configuration Checklist
- Organization Modeling in Orchestrator
- Managing Large Deployments
- Automation Best Practices
- Optimizing Unattended Infrastructure Using Machine Templates
- Organizing Resources With Tags
- Orchestrator Read-only Replica
- Exporting grids in the background
- About the Tenant Context
- Searching for Resources in a Tenant
- Audit
- - Managing credential stores
  - Integrating credential stores
- - Types of Events
  - Managing Webhooks
- About Resource Catalog Service
- About the Folders Context
- Home
- About Automations
- About Processes
- Managing Processes
- Managing Package Requirements
- Recording
- About Jobs
- Managing Jobs
- Job States
- Working With Long-running Workflows
- Running Personal Remote Automations
- Process Data Retention Policy
- - Time triggers
  - Queue triggers
- - Creating a time trigger
  - Creating a queue trigger
- Managing Non-Working Days
- - Triggering jobs on the last day of the month
- About Logs
- Managing Logs in Orchestrator
- Logging Levels
- Orchestrator Logs
- About Monitoring
- Machines
- Processes
- Queues
- Queues SLA
- Bulk Uploading Queue Items Using a CSV File
- Managing Queues in Orchestrator
- Managing Queues in Studio
- - Editing Transactions
  - Field Descriptions for the Transactions .csv File
- Review Requests
- About Assets
- Managing Assets in Orchestrator
- Managing Assets in Studio
- Storing Assets in Azure Key Vault (read-only)
- Storing Assets in HashiCorp Vault (read-only)
- Storing Assets in AWS Secrets Manager (read Only)
- - CORS/CSP Configuration
- Managing Storage Buckets
- Moving Bucket Data Between Storage Providers
- Test Automation
- - Field Descriptions for the Test Cases Page
- - Field Descriptions for the Test Sets Page
- - Field Descriptions for the Test Executions Page
- - Field Descriptions for the Test Schedules Page
- Host Administration Portals
- Configuring System Email Notifications
- Managing System Administrators
- - Allocating Host Licenses to Tenants
  - Managing Your Licenses
- - Tenant Settings - Host Level
  - Managing Tenants
- - Re-configuring Authentication After Upgrade
- Configuring Host Security
- Host Audit Logs
- Customizing the Login Page
- Maintenance Mode
- About the UiPath Identity Server
- Configuring the Active Directory Integration
- Configuring SSO: Google
- Configuring SSO: Azure Active Directory
- SmartCard Authentication
- - Activating Your License
- - Managing external applications
  - Configuring fine-grained access for external apps
- Managing tags
- Audit Logs
- Overriding System Email Settings
- Increasing the Size Limit of Package Files
- Setting up Encryption Key Per Tenant
- GZIP Compression
- - Example of Using Input and Output Arguments
- About Troubleshooting
- Frequently Encountered Orchestrator Errors
- Cron Expressions
- Upgrade Issues

Credential Stores - Standalone 2023.10

Orchestrator User Guide

Last updated Nov 10, 2023

Credential Stores

A credential store is a named location within a secure store, such as CyberArk, from which you can store and retrieve sensitive data such as robot credentials and credential assets when needed. Orchestrator supports the use of multiple credential stores at tenant level, and provides built-in support for Azure Key Vault, CyberArk CCP, HashiCorp Vault, Thycotic Secret Server, BeyondTrust, AWS Secrets Manager, and CyberArk. It also provides the necessary architecture to add and manage third party secure stores, if desired.

The Credentials page is split in two views: Stores and Proxies.

The Stores page allows you to create new stores, view existing stores and their properties, and delete any current credential store. Note that the native Orchestrator Database store is automatically created, will always appear first in this list and be the Default store for all new tenants.
The Proxies page allows you to create new proxies for your own custom credential stores, view a list of existing proxies, edit, and remove them.

Note: The credential stores feature must be enabled for your tenant by the Orchestrator administrator. See here for details.

Credential store plugins

Beyond the secure stores with built-in support, Orchestrator architecture supports the functionality of loading third-party or developing custom plugins, enabling you to use any desired credential store.

Loading third-party plugins

Navigate to the \Orchestrator\Plugins folder in your Orchestrator installation directory.
Save the .dll files of your plugin in this folder.
Update the UiPath.Orchestrator.dll.config file with this plugin as detailed here.
Restart your Orchestrator instance and check the logs to confirm that the plugin was loaded successfully.
Your new credential store should now be available when creating a new credential store.

Developing plugins

Development documentation for creating your own secure store plugins is available in the UiPath repository.

Also available there are three samples to assist in your development:

RandomPass - a read-only store that will generate a random password;
SQLPass - a read/write store using an external SQL database other than the Orchestrator database;
Key Vault - the fully functional Key Vault plugin available with your Orchestrator instance.

On this page

Credential store plugins
Loading third-party plugins
Developing plugins

PREVIOUSAudit

NEXTManaging credential stores

Support and Services

Get The Help You Need

Learning RPA - Automation Courses

UiPath Community Forum

Trust and Security

© 2005-2023 UiPath. All rights reserved.