Cerby

With Cerby, you can securely back up your account information from Cerby to an external credential management provider, such as CyberArk. This Cerby capability enables you to build redundancy and meet risk management practices without adding complexity to your day-to-day work.

The following are the ways in which Cerby backs up your vault to an external workspace:

One-way sync: Account data flows from Cerby to your backup provider only, preventing accidental overwrites or changes in the main vault.

Backup redundancy: Your organization is protected against data loss or corruption.

Event-driven updates: When accounts are created or updated in Cerby, the backup is done automatically in the backup provider.

MFA handling: Multi-factor authentication (MFA) settings are also backed up to ensure consistent security.

- One-way sync: Account data flows from Cerby to your backup provider only, preventing accidental overwrites or changes in the main vault.
- Backup redundancy: Your organization is protected against data loss or corruption.
- Event-driven updates: When accounts are created or updated in Cerby, the backup is done automatically in the backup provider.
- MFA handling: Multi-factor authentication (MFA) settings are also backed up to ensure consistent security.

Secure by design: Data is encrypted in transit to protect sensitive credentials, ensuring your privacy is maintained.

Secure by design: Data is encrypted in transit to protect sensitive credentials, maintaining your privacy.

- Cerby only supports vault backup with CyberArk for workspace cloud vaults.
- Vault backup is a one-way sync from Cerby to CyberArk. Changes in CyberArk do not sync back to Cerby, and any updates in Cerby overwrite changes made directly in CyberArk. Cerby remains the primary source of truth for your vault data.

___________________________________________________________

How backing up your Cerby vault to an external provider works

The following environments comprise the Cerby vault backup scheme with an external provider:

Cerby: The primary vault, where all accounts and credentials live.

CyberArk: The backup provider where login credentials are stored.

- Cerby: The primary vault, where all accounts and credentials live.
- CyberArk: The backup provider where login credentials are stored.

The following is the complete flow of how both environments interact:

A workspace Owner, Super Admin, or Admin sets up the vault backup capability with CyberArk in their Cerby workspace only once.

An account Owner adds or updates an account. The Cerby vault backup capability is triggered for each event.

New and updated login credentials are backed up in CyberArk.

1. A workspace Owner, Super Admin, or Admin sets up the vault backup capability with CyberArk in their Cerby workspace only once.
2. An account Owner adds or updates an account. The Cerby vault backup capability is triggered for each event.
3. New and updated login credentials are backed up in CyberArk.

The Vault Backup capability supports the following main flows:

Discover vault: Identify your Cerby cloud vault to include in your backup plan.

Verify accounts: Check that login credentials in CyberArk match what you have in Cerby.

Handle MFA: MFA settings stay consistent across both vaults.

- Discover vault: Identify your Cerby cloud vault to include in your backup plan.
- Verify accounts: Check that login credentials in CyberArk match what you have in Cerby.
- Handle MFA: MFA settings stay consistent across both vaults.

Security is built into every part of vault backup to keep your credentials secure while providing added redundancy.

All data is encrypted at rest and in transit.

Backing up MFA settings prevents data loss, preserves strong authentication, and keeps the restored vault secure.

A one-way sync ensures the primary vault remains the sole source of truth, protecting against corruption, tampering, and upstream attacks from a compromised replica.

Even if the recovery vault is breached, the primary stays isolated and secure, simplifying disaster recovery with a clean, reliable state to restore.

- All data is encrypted at rest and in transit.
- Backing up MFA settings prevents data loss, preserves strong authentication, and keeps the restored vault secure.
- A one-way sync ensures the primary vault remains the sole source of truth, protecting against corruption, tampering, and upstream attacks from a compromised replica.
- Even if the recovery vault is breached, the primary stays isolated and secure, simplifying disaster recovery with a clean, reliable state to restore.

The following articles contain more information about the Vault Backup capability:

<a href="https://help.cerby.com/en/articles/12431284-add-a-vault-backup">Add a vault backup</a>

<a href="https://help.cerby.com/en/articles/12431348-view-the-details-of-a-vault-backup">View the details of a vault backup</a>

<a href="https://help.cerby.com/en/articles/12431376-edit-the-vault-backup-details">Edit the vault backup information</a>

<a href="https://help.cerby.com/en/articles/12455148-disable-vault-backup-in-your-workspace">Disable vault backup in your workspace</a>

<a href="https://help.cerby.com/en/articles/12597970-manually-back-up-all-accounts-from-cerby-to-cyberark">Manually back up all accounts from Cerby to CyberArk</a>

- <a href="https://help.cerby.com/en/articles/12431284-add-a-vault-backup">Add a vault backup</a>
- <a href="https://help.cerby.com/en/articles/12431348-view-the-details-of-a-vault-backup">View the details of a vault backup</a>
- <a href="https://help.cerby.com/en/articles/12431376-edit-the-vault-backup-details">Edit the vault backup information</a>
- <a href="https://help.cerby.com/en/articles/12455148-disable-vault-backup-in-your-workspace">Disable vault backup in your workspace</a>
- <a href="https://help.cerby.com/en/articles/12597970-manually-back-up-all-accounts-from-cerby-to-cyberark">Manually back up all accounts from Cerby to CyberArk</a>

This article describes the benefits of backing up your vault to an external provider of your choice, ensuring it remains safe, redundant, and recoverable.

Back up your Cerby vault to an external provider

Developer portal

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

Advertising cookies are set by our advertising partners to collect information about your use of the site, our communications, and other online services over time and with different browsers and devices. They use this information to show you ads online that they think will interest you and measure the ads' performance. Social media cookies are set by social media platforms to enable you to share content on those platforms, and are capable of tracking information about your activity across other online services for use as described in their privacy policies.

These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.

These cookies are necessary for the website to function and cannot be switched off in our systems.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Back up your Cerby vault to an external provider

How backing up your Cerby vault to an external provider works

What you can do with vault backup

Keeping your data secure

Related articles