The Credentials Manager is a central location to store secrets allowing ReflexSOAR and all it's components to authenticate to other systems.
Creating New Credentials
To create new Credentials, the following steps can be used:
- Navigate to the Credentials page
- Select the appropriate Organization
- Provide a name for the Credential
- Create a username and secret
- Add a description for the purpose of the Credential
Use a Strong Master Password
It is up to the installer of ReflexSOAR to set a strong Master Password for password encryption. It also your responsibility to prevent unauthorized access to
100,000 iterations to encrypt each secret in the database. The secret key is stored in
instance/application.conf file using the
It is recommended to monitor the activity of the users with
decrypt_credential permissions and to tightly control who has this permission.
Secrets/Passwords are decryptable via the API using for any user that has the
decrypt_credential permission. By default all ReflexSOAR agents have this permission in order to function.