Online Help

How to manage credentials

This guide shows you how to add, update, and rotate credentials in an Audit Service credentials pool. AlloyScan uses these credentials to authenticate to target devices during scan and audit.

Prerequisites

  • Site Administrator role.
  • An installed Audit Service registered to the site.
  • The secret values for the credential you want to add (passwords, keys, or cloud secrets).

Steps

  1. Navigate to Admin Center > Site Settings > Tasks and services > Audit services.
  2. Click the Audit Service whose pool you want to edit.
  3. In the service detail modal, switch to the Credentials tab.
  4. Under Add credentials, click the button matching the credential type you need: Windows, Linux and macOS, Hypervisor, SNMP, AWS, Azure, or Google.
  5. Fill in the credential fields. The fields differ by type — see Credential Types Reference for the full list. | Field | Description | |---|---| | Title | A descriptive name shown in the credentials grid. | | Type | Set automatically based on the button you clicked. | | Password / secret | Stored encrypted. Only Has password or Not set is shown after save. |
  6. Click Save.
  7. To rotate an existing credential after a password change at the target, open the credential record and enter the new value. The previous stored value is overwritten.

If a credential's stored secret is wrong, you cannot view it to verify — open the record and enter a fresh value.

Verify

After saving, the credential appears in the Credentials grid on the Audit Service modal with its Title, Type, and a lock icon in the Has password column. Trigger an ad-hoc audit on a single target device to confirm authentication succeeds. Failed authentication produces an entry in Admin Center > Site Settings > Logs > Security log with Service authentication failed, and the device's Last audit status column shows the failure.