Beyondtrust

PowerBroker Identity Services for Active Directory Bridging

Extend Microsoft® Active Directory authentication and single sign-on capabilities + Group Policy configuration management to UNIX, Linux and Mac servers.

Active Directory and Group Policy for Integrating UNIX, Linux and Mac into Windows Environments

PowerBroker Identity Services centralizes authentication for UNIX, Linux and Mac environments by extending Active Directory's Kerberos authentication and single sign-on capabilities to these platforms. The solution also provides centralized configuration management across a heterogeneous environment by extending Group Policy to these non-Windows platforms. SUPPORTED PLATFORMS

  • Allow users to leverage their AD credentials to access UNIX, Linux or Mac systems
  • Attain consistent configuration by extending native group policy management tools to include settings for UNIX, Linux and Mac
  • Audit several events in real time; access results through the PowerBroker console or forward to third-party solutions
  • Transition users from desktops to remote machines or between systems, without requiring them to re-enter credentials
PowerBroker Identity Services
SC MAGAZINE 2014
“Using this console, security professionals and system administrators alike can easily find and analyze weaknesses throughout the entire enterprise infrastructure” SC MAGAZINE 2014

Server Security Lifecycle

Endpoint Security Lifecycle - Discover

Key Benefits

  • Accurate baseline for all follow-on assessment activities
  • Target identification for least-privilege or other server projects such as consolidation or virtualization
  • Creation of server-specific Smart Groups for regular assessments, risk prioritization and reporting

Key BeyondTrust Capabilities

  • Provides complete inventory of server assets (approved and rogue)
  • Cataloging of full system information (OS, device, applications, services, ports etc. )
  • Discovery of local users, groups and privilege data across distributed server environment
Endpoint Security Lifecycle - Assessment

Key Benefits

  • Proactive identification of vulnerabilities, misconfigurations and policy violations
  • Threat assessments on servers operating system, applications and configurations
  • Custom audits/assessments allow for identification of non-standard assets, software or configurations

Key BeyondTrust Capabilities

  • Accurate, actionable data helps drive proper remediation actions, accelerating risk reduction
  • Risk scoring streamlines the classification of most at-risk devices
  • Intuitive trending data for easy analysis, enabling better security strategy decisions
Enterprise Security Lifecycle - Comply

Key Benefits

  • "Operational GPS" directs IT to which actions provide the most risk-reduction benefits
  • Automated reporting on compliance efforts creates consistency and accountability, while driving down costs
  • Enterprise policy management and reporting

Key BeyondTrust Capabilities

  • Active Directory bridging across the enterprise
  • Least Privilege implementation across the enterprise
  • Robust database auditing
  • Non-Microsoft application patching
Endpoint Security Lifecycle - Optimize

Key Benefits

  • Receive an immediate ‘state of the union’ with regards to your server deployment through Risk Scoring
  • Greater efficiency via enterprise-centric capabilities such as role based access, internal auditing, ticketing, and integration with existing infrastructure investments

Key BeyondTrust Capabilities

  • Centralized management, reporting and logging
  • Role based policy, alert and reporting management
  • Virtual Vulnerability Scans on elevated commands and applications

FEATURES & BENEFITS

Directory Migration

Automatically map UIDs and GIDs to users and groups defined in active directory by importing Linux, UNIX, and Mac OS password and group files.

Manage Active Directory
from Linux or Mac OS X

No need to force your IT staff to use only Windows to manage Active Directory. We provide a pluggable framework with an interface similar to Microsoft's Management Console on Linux or Mac OS X.

Granular Reporting

Custom and standard reports are easily generated to effortlessly manage and view access privileges for users and groups.

Open Source Version Available

Try our PowerBroker Identity Services Open solution for free. With access to the product source code you can tailor your Active Directory bridging project to your specific needs.


Why BeyondTrust for Active Directory Bridging

  • We make life easier for system administrators by empowering them to use a single, often familiar tool set to manage both Windows and Unix systems
  • Reduced costs by managing heterogeneous workstations and users from a central source that frequently already exists in the organization -- Active Directory
  • Get single sign-on (SSO) for any enterprise application that supports Kerberos or LDAP, including Samba, Apache, SSH, Websphere, JBoss, Tomcat, Oracle, and MySQL
  • Enables one-to-many management of Unix, Linux, and Mac OS X configuration settings
  • Support for Remote Network file share access for Mac and Linux systems
  • Provides centralized user management for Linux, Unix, and Mac OS X
  • The only solution that does not have to modify your Active Directory schema to add Linux, Unix, & Mac OS X systems to your network
  • Full support for Apple’s Workgroup Manager application, allowing for seamless management and control of Mac system settings
Active Directory Bridging

Related Products

To learn more about our products for securing your virtual environments, select a product area below:

PowerBroker UNIX & Linux

Quickly and easily manage root access on UNIX and Linux servers, without ever disclosing the system password

PowerBroker Servers Enterprise

Combine the power of our Linux/Unix root delegation and our AD bridging for an enterprise approach to server compliance

PowerBroker Password Safe

Automate Password Management for Increased Security across your entire dynamic infrastructure

PowerBroker
Identity Services – Open Edition

Available as a free and open source version of PowerBroker Identity Services, giving you the access and flexibility to tailor your Active Directory bridging project

PRODUCT DEMOS

  • PowerBroker Identity Services Installation on Mac OS X
    PowerBroker Identity Services
    Installation on Mac OS X
  • PowerBroker Identity Services Joining a Domain on Mac OS X using the GUI
    PowerBroker Identity Services
    Joining a Domain on Mac OS X using the GUI
  • PowerBroker Identity Services Joining a Domain on Mac OS X using a CLI
    PowerBroker Identity Services
    Joining a Domain on Mac OS X using a CLI
  • PowerBroker Identity Services Logging into Active Directory with Mac OS X
    PowerBroker Identity Services
    Logging into Active Directory with Mac OS X
  • PowerBroker Identity Services Installation on Linux
    PowerBroker Identity Services
    Installation on Linux
  • PowerBroker Identity Services Joining a Linux Machine to Active Directory using the GUI
    PowerBroker Identity Services
    Joining a Linux Machine to Active Directory
    using the GUI
  • PowerBroker Identity Services Joining a Linux Machine to Active Directory using a CLI
    PowerBroker Identity Services
    Joining a Linux Machine to Active Directory
    using a CLI
  • PowerBroker Identity Services Logging on to Active Directory from Linux using the GUI
    PowerBroker Identity Services
    Logging on to Active Directory from Linux
    using the GUI
  • PowerBroker Identity Services Logging on to Active Directory from Linux using Putty
    PowerBroker Identity Services
    Logging on to Active Directory from Linux
    using Putty

SCREENSHOTS