With reference to my previous post (link below), as @badita mentioned Orchestrator Cyberark password vault integration is done in v2017.1.6547 but we didn’t find current integration design to be useful.
Current Integration Design: Orchestrator integrates with 1 Safe in Password Vault
Problem we see in current design: In our firm, BOT passwords are owned by Process / Business Teams. We want Business teams to be able to independently manage only their own BOT password themselves. As of now, Orchestrator integrates with 1 Safe - that means all user name & password will need to be in 1 safe. This would mean that theoretically, anyone who has access to safe can retrieve any password and this is problem from Audit prospective for us.
Design Suggestion: Orchestrator should integrate with multiple safes