BeyondTrust Suite for Privileged Password Management

You need to have strong security for privileged accounts too?


While good security practices dictate complex password rules that change frequently to protect the users, their accounts, and systems; we have collectively ignored the issue for our most sensitive accounts. Worse, since these accounts are frequently shared we have no forensics on who is doing what.

Why was this ignored?

• Databases, operating systems, ERP applications, etc. all have privileged or administrative accounts for “power users”.
• But these “Power Users” frequently are a group, sharing the accounts and dealing with changing responsibilities, projects, roles, locations, etc.
• Also these accounts are frequently needed for applications and they get hard coded into the application or its configuration and change management or industry certification requirements make it nearly impossible to update them.

So how do you address it?

• BeyondTrust PowerKeeper provides Automatic Password Management (APM) to any operating system, database or device via SSH/Telnet
• The solution addresses entitlements of users sharing the account with Automatic Authentication and Authorization (AAA)
• PowerKeeper is offered as a hardened physical appliance or as a secure virtual appliance
• PowerKeeper users and permissions from the enterprise’s LDAP or active Directory (AD) through group membership
• Automatically discovers and brings under management any computers found within Active Directory
• The solution prevents any direct access to the operating system and has FIPS-140-2 validated components for all encryption
• Includes support for single/two-factor authentication using LDAP, AD, Secure ID, and Safeword
• And detailed logging and reporting to directly address compliance requirements related to User/Approver/Requestor activities, Password maintenance activities, User and file entitlement (Rights), Internal diagnostics

Here is a visual to give you the idea:



To learn more check out:
www.beyondtrust.com