Skip to content

Commit

Permalink
Databricks AWS and Salesforce Clean Up
Browse files Browse the repository at this point in the history
  • Loading branch information
@Delinea-RickRoca
Delinea-RickRoca committed Jan 30, 2024
1 parent fa0ff0a commit d24033b
Show file tree
Hide file tree
Showing 10 changed files with 685 additions and 404 deletions.
35 changes: 2 additions & 33 deletions Scripts/SecretServer/AWS/AWS-IAM Users/Remote Password Changer/readme.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,7 +12,7 @@
- Password Type to use: Select the Amazon IAM Console Password Privileged Account
- Click on Save

## Associate scripting account to Azure AD secret
## Associate AWS Service account to AWS secret
To be able to correctly use the password changer, the AWS Service account must be associated with the AWS IAM User secret. This can be done by following the steps below:
- Log in to the Delinea Secret Server
- Navigate to Secrets
Expand All @@ -25,36 +25,5 @@ To be able to correctly use the password changer, the AWS Service account must b
- Search for the earlier created [AWS Service Account secret](../Instructions.md#create-secret-in-secret-server-for-the-aws-service-account) for the application registration and select that
- Click on Save

This can also be done using a Secret Policy assigned to the Parent Folder
This can also be done using a Secret Policy assigned to the Parent Folder or Directly to The Secret

## Testing the configuration
If all went well, you now should have:
- A secret template for the application registration
- An application registration in Azure AD / Entra ID
- A secret in Secret Server for the application registration
- The password changer script in Secret Server
- The password changer configured in Secret Server to use the script
- The password changer associated with the Azure AD Account template
- An Azure AD Account secret (not covered in this guide)
- The application registration secret associated with the Azure AD Account secret

To test the configuration, you can first start by performing a Heartbeat on the Azure AD Account secret. This can be done by following the steps below:
- Log in to the Delinea Secret Server
- Navigate to Secrets
- Locate your secret(s) based on the Azure AD Account template
- Click on the secret
- Click on Heartbeat
After a few moments, the heartbeat should complete successfully.

To test the configuration, you can now change the password of the Azure AD Account secret. This can be done by following the steps below:
- Log in to the Delinea Secret Server
- Navigate to Secrets
- Locate your secret(s) based on the Azure AD Account template
- Click on the secret
- Click on Change Password Now
- Select Randomly Generated or Manual (and enter a password)
- Click on Change Password

If there are any issues, please check the following:

- SSDE.log on the Distributed Engine
Loading

0 comments on commit d24033b

Please sign in to comment.