UiPath has a vision to deliver the Fully Automated Enterprise™, one where companies use automation to unlock their greatest potential. UiPath offers an end-to-end platform for automation, combining the leading Robotic Process Automation (RPA) solution with a full suite of capabilities that enable every organization to rapidly scale digital business operations.
UiPath integrates with Thales TCT’s Luna Credential System to provide hardware-protected PKI credentials for the software robots in its enterprise RPA solution.
In the Windows Logon use case, the LCS Luna Credential Hardware Security Module (HSM) provides the hardware storage device for PKI credentials for a Robot. As smart cards are not a viable solution within an unattended Robots environment, the Luna Credential HSM is used to satisfy the multi-factor authentication requirement of the U.S. Federal Government. The highly sensitive private key used to digitally authenticate the identity of the unattended Robot is stored in an LCS Credential Bin on the HSM and never leaves the secure confines of the HSM. In this use case, the LCS Luna Credential Client needs to be installed on the Robot machine to facilitate secure communications with the HSM.
The Luna Vault capability of LCS can be used in conjunction with the LCS Windows Logon feature or as a stand-alone feature. In this use case, the Luna Credential Client is required to be installed on the Orchestrator machine with the Luna Vault Plugin option. Once the client is installed and the Luna Vault Plugin configured, an Orchestrator Credential Store can be created that utilizes the HSM for secure hardware-based storage. When used in conjunction with LCS Windows Logon, which already stores the Robot PKI credentials on the HSM, the Luna Vault can be used to also store the Robot’s Credential Bin password and sensitive workflow Assets. When used as a standalone feature, Luna Vault can be used to store the workflow Assets and the password-based Robot login credentials, thus providing hardware-based security in a non-PKI login environment.