Cloudflare

Before You Begin

Prerequisites

Prerequisites for Managing Cloudflare devices on AppViewX are:
  • IP Address/FQDN: Account name
  • User Privilege: NA
  • Credential List: AppViewX, CyberArk, HashiCorp, Thycotic, and BeyondTrust
  • Enable Password: No
  • License Check: Yes
  • Services and Ports for AppViewX Communication: Not applicable
  • Internet Access/Proxy if Required: Not required
  • Location from which Certificates are discovered if managed: Not applicable

Adding Cloudflare Device

  1. Go to (Menu) > ADC+ > ASSET MANAGEMENT > Device Inventory.
    By default, the ADC tab opens.
  2. Click the WAF tab.
  3. Click the (Add) icon.
    The Device details page is displayed.
  4. Select Cloudflare from the Vendors list.
  5. In the General Information section, select/enter the details as follows.
    Fields Description
    *Account name A user defined unique name to identify the server. No special characters other than '-' , '_' , '.' , '*' , '|' , '!' and spaces are not allowed.
    Data center Enter the data center routing. It holds all the SSL related information that is to be retrieved from the Cloudflare device.
    Cert Sync Choose from any of the following:
    • Managed - AppViewX performs the config fetch operations and the certificates are discovered and managed in the inventory. CLM actions (push & bind, rollback etc.) can be performed on them.
    • Monitored - AppViewX performs the config fetch operations and the certificates are downloaded in the inventory in the read-only state. CLM actions cannot be performed on them.
    • Ignored - AppViewX only performs the config fetch operations for the devices. There is no certificate discovery performed.
    *: Mandatory fields
  6. In the Credentials section, select/enter the details as indicated below. The credentials entered in this section are used to authenticate the session between the AppViewX node and the WAF device.
    Fields Description
    *Credential Type Select the credential type from the dropdown.
    • Manual entry (default) - to directly add the credentials in the username and password text box.
    • Credential List - Appviewx - to use any credentials from the saved AppViewX Credential List.
    • Credential List - CyberArk - to use any credentials from the saved AppViewX CyberArk List.
    *Access type Select the method to access the Cloudflare.
    *Token based Authentication Select the checkbox to enable the token based authentication.
    API Token Enter the API token if the token based authentication is enabled.
    *Username This field will be visible if the Credential Type is selected as Manual entry and token based authentication is disabled .

    Enter the designated username for Cloudflare.
    *Password This field will be visible if the Credential Type is selected as Manual entry and token based authentication is disabled .

    Enter the designated password to access Cloudflare.
    *Credential list This field will be visible only if the Credential type is selected as Credential List - AppViewX or Credential List - CyberArk

    The dropdown contains a list of credentials stored in AppViewX.
    *: Mandatory fields
  7. Click Save.
    The device is onboarded successfully.