How to add credentials

This guide shows you how to add a credential to an Audit Service so that it can authenticate against the systems it audits. Credentials are added per Audit Service; each service maintains its own pool.

Prerequisites

• You are signed in as a Site Administrator.
• At least one Audit Service is registered in the Site (Admin Center > Site Settings > Tasks and services > Audit services).
• You have the secret material on hand — Windows password, SSH key, SNMP community string, cloud access key — captured from the source system.

Steps

1. Navigate to Admin Center > Site Settings > Tasks and services > Audit services.
2. Click the row of the Audit Service you want to add the credential to. The detail modal opens.
3. Switch to the Credentials tab.
4. Click the button for the credential type you want to add. The form opens.
   • Windows — for WMI / WinRM audits of Windows endpoints.
   • Linux and macOS — for SSH-based audits of Linux servers and macOS workstations (one type covers both OS families).
   • Hypervisor — for VMware ESXi (other hypervisors may vary by deployment).
   • SNMP — for SNMP v1, v2c, or v3 of network devices and printers.
   • AWS — for cloud audits of AWS accounts.
   • Azure — for cloud audits of Azure subscriptions.
   • Google — for cloud audits of Google Cloud projects.
5. Fill in the required fields. The exact field set depends on the type — see Credentials Reference for the per-type schema.
6. Click Save.

Verify

The new credential appears in the Credentials grid of the Audit Service detail with its Title, Type, and a lock icon in the Has password column.

To verify that the credential actually works, trigger an ad-hoc audit against one device that the credential should be able to reach (Inventory > Devices > (device) > Audit now) and check the Audit log for a successful run.

Important: AlloyScan does not currently provide a per-credential Test button. The first authoritative signal that a credential is wrong is an audit failure for the affected target.

Rotating an existing credential

The Admin Center does not display stored secrets, so rotation means editing the existing entry with the new secret rather than reading the old one back. Open the credential row in the Credentials tab, replace the password / key, and save. Subsequent audits will use the new secret.

Related

• About Credentials — concept, scope, encryption.
• Credentials Reference — fields and constraints for each of the seven types.
• About Audit Services — where credentials live.
• Troubleshooting: Scan and Audit — symptoms of credential failures during audit.