Manage Credentials

When you create a credential in InsightIDR, you'll be prompted for a credential name in addition to the username and password. This credential configuration is automatically saved for reuse with other event sources and is identifiable by the display name you set.

Credential Protection

Each Collector generates and publishes a public and private key pair. The public key is stored in the Insight Platform Cloud. The private key is stored locally in your Collector in a protected manner that requires a connection to the Insight Platform Cloud in order to read it.

The cloud encrypts event source credentials with the public key of every Collector when you add a single event source. Only the Collector can decrypt those event source credentials from the cloud, and a Collector can only retrieve the credentials used by the event sources running on it.

Add a Credential

To add new credentials:

  1. In the left menu, click Settings > Credential Settings.
  2. Click Add credential.
  3. Name the credential. If you do not provide a name, the system uses the IP range for that credential by default.
  4. Enter the username for the credential.
  5. In the Type field, select the type of verification you want to use: Password, Private Key, or Token/Secret.
  6. Enter the values for the type of verification you selected.
  7. Click Deploy credential.

Update a Credential

To update a credential:

  1. In the left menu, click Settings > Credential Settings.
  2. In the Search bar, type the name of the credential you want to update.
  3. Click the Edit icon.
  4. In the Edit credential modal, enter the new values for the credential.
  5. Click Deploy credential.