Managing account credentials secrets for remote connections

Secret storage is implemented in Kaspersky Industrial CyberSecurity for Networks. Secrets allow you to securely store and use identification and authentication information that the application needs for automatic remote connections to devices. Secrets contain user names with passwords or certificate private keys. With the help of secrets, you can safely use this information in the application without the risk of compromising it.

Secrets are used in security audit jobs for which the Remote connection device polling method is selected.

The current version of Kaspersky Industrial CyberSecurity for Networks uses the SSH protocol for remote connections. Keep in the secrets the credentials that are required for remote connections to devices via SSH.

When using secrets, the option to strengthen the security of connections with devices by verifying the certificates of these devices is not available. Attackers can attempt to spoof these devices in the network by exploiting the lack of device certificate authentication.

Critical information of the secret, such as password or certificate private key, is available to you as plain text only once, when you enter this information when creating the secret. Once a secret is saved, critical information cannot be viewed. You can only replace critical information in the secret when you change the secret, for example, enter a new password.

You can manage secrets in the Settings → Secrets section.

Only users with the Administrator role can manage secrets.