NEW: Microsoft Vulnerabilities Report 2022 - Read the Findings of Our Annual Report Read Now

  • Partners
  • Support
  • Careers
  • English
    • Deutsch
    • français
    • español
    • 한국어
    • português
BeyondTrust
  • Products

    Privileged Password Management

    Discover, manage, audit, and monitor privileged accounts and credentials.

    • Password Safe
    • DevOps Secrets Safe
    • Privileged Access Discovery Application

    Endpoint Privilege Management

    Enforce least privilege across Windows, Mac, Linux, and Unix endpoints.

    • Windows and Mac
    • Unix and Linux
    • Active Directory Bridge

    Secure Remote Access

    Centrally manage remote access for service desks, vendors, and operators.

    • Remote Support
    • Privileged Remote Access
    • Privileged Access Discovery Application

    Cloud Security Management

    Automate the management of identities and assets across your multicloud footprint.

    • Cloud Privilege Broker

    BeyondInsight

    Experience the industry’s most innovative, comprehensive platform for privileged access management.

  • Solutions

    Use Cases

    • Cloud Security
    • Compliance
    • Cyber Insurance
    • Digital Transformation
    • Endpoint Security
    • Operational Technology
    • Ransomware
    • Service Desk Efficiency
    • Zero Trust

    Industry Applications

    • Financial Services
    • Government Agencies
    • Healthcare
    • Law Enforcement
    • Manufacturing
    • Schools & Universities

    Solutions

    The BeyondTrust Privileged Access Management portfolio is an integrated solution that provides visibility and control over all privileged accounts and users.

  • Resources

    Learn

    • Blog
    • Customer Stories
    • Competitor Comparisons
    • Datasheets
    • Demos
    • Glossary
    • Podcast
    • Whitepapers

    Attend

    • Events
    • Go Beyond
    • Training
    • Webinars

    Support

    • Changelog
    • Professional Services
    • Technical Documentation

    Universal Privilege Management

    Our innovative Universal Privilege Management approach secures every user, asset, and session across your entire enterprise.

  • Company
    • About
    • Leadership
    • Core Values
    • Partners
    • Careers
  • Watch Demo
  • Contact Sales

BeyondTrust Bolsters Market-Leading Endpoint Privilege Management for Windows & Mac

April 22, 2021

  • Blog
  • Archive

The latest release of Privilege Management for Windows and Mac delivers enhancements for macOS, including TouchID support, messaging, and BeyondTrust Password Safe integration. Features now available in cloud deployments include a new user interface, SIEM integration, and a compliance dashboard. We expand on the highlights in the blog below. You can also check out the What’s New documents here for more details:

  • What’s New in Privilege Management for Windows & Mac 21.2
  • What’s New in PM Cloud 21.3

New Features Available both On-premises and in the Cloud

Custom BeyondTrust Event Log

Privilege Management customers who rely on raising events to the local Windows event log can now log privilege management events to a dedicated BeyondTrust event location as an alternative, to avoid saturation of the Application event log.

Image 1: Custom Event Log

TouchID Support for Mac

Organizations that want to provide end users with a seamless and familiar experience can now do so with the introduction of TouchID support in end user messages. When users are prompted to authenticate prior to running an application, they can now use their TouchID-enabled device instead of a password to quickly authenticate themselves.

Image 2: TouchID Support for Mac - Popup Message

Message Dropdowns for Privilege Management for Mac

For organizations that require their users to provide justifications for ‘why’ certain applications are being used, this new feature lets users pick from a predefined list of reasons, as an alternative to typing out a reason. This not only gives users a more convenient way of submitting common reasons more quickly, but also helps administrators in analyzing reasons for using applications, with a consistent set of reasons from which to build reports.

Image 3: Dropdown of Predefined Reasons to Allow Applications in Privilege Management for Mac

New features available for Privilege Management Cloud

Completely New User Interface

Privilege Management Cloud 21.3 includes an all-new user interface, bringing the product up- to-date with the BeyondTrust brand and UI standards.

Within this new UI, we have added a number of smaller features and enhancements to improve the user experience:

  • Improved grid filtering
  • Customized grid column layouts are now saved between sessions
  • Improved configuration settings
  • Improved user roles layout and new permissions comparison screen
  • Improved Global Search
  • Many other enhancements

SIEM Integration for Endpoint Event Data

For customers who require the ability to import data from their Privilege Management Cloud instance into their SIEM tool, Privilege Management Cloud 21.3 introduces SIEM Integration for Endpoint Event Data.

The first release of SIEM integration allows the endpoint audit event data (considered the critical dataset for a SIEM tool) to be forwarded to an AWS S3 bucket belonging to the customer.

This allows numerous subsequent options for this data, including native integration with the majority of SIEM tools. By taking this approach, Privilege Management Cloud offers a very modern and flexible means of integrating endpoint audit event data into other tools, as S3 buckets are now a ubiquitous tool for these kinds of use cases. Connection to the S3 bucket is configured within the Privilege Management Cloud platform.

Image 4: View SIEM Integration for Endpoint Event Data

Compliance Dashboard Homepage

Privilege Management Cloud 21.3 allows customers to have at-a-glance information available to help them properly respond to potential issues. Users can quickly and easily see if machines are on the wrong policy, potentially on out-of-date software, or due to deactivated accounts. The three core areas include:

1. Computer Status Summary: Easily see authorized, pending, and soon-to-be deactivated computers:

Image 5: Compliance Dashboard: Computer Status Summary

2. Computer Policy Summary: The policy summary allows rapid insight into whether or not endpoints are running the expected policy. View across all groups.

Image 6: Compliance Dashboard: Customer Policy Summary

3. Client & Adapter Summary: It can be challenging to determine whether or not endpoints are running the correct client and adapter software. Our new summary tables provide clear visibility into this information for both Windows and Mac computers.

Image 7: Compliance Dashboard: Client & Adapter Summary

Web Policy Editor – Messaging v1

In this release, we added the ability for users to customize the messages their end users will see. The first phase provides users with a list/preview page giving an at-a-glance preview for each message type.

Image 8: Web Policy Editor Messaging

New features available in Privilege Management for Mac (On-Premises)

Offline Rotation of Passwords for Privilege Management for Mac

For those Mac endpoints under Password Safe management that are not connected to the corporate network, Privilege Management for Mac introduces the ability to apply local account password rotations on behalf of Password Safe, via BeyondInsight. This use case helps organizations continue to manage credentials on endpoints for users who are working in remote locations.

Based on a configurable heartbeat, Privilege Management for Mac checks in with Password Safe to check for any account passwords that require rotation, applies the change, and verifies that the change was successful.

Image 9: Rotate Passwords for Privilege Management for Mac Offline

About BeyondTrust Endpoint Privilege Management

BeyondTrust Privilege Management for Windows & Mac (PMWM) is a preventative endpoint security solution that removes excessive admin rights, applies pragmatic application control, enables passwordless administration, and gives users just enough privileges to do their jobs and be productive. Available on-premises or in the Cloud delivered as SaaS, the solution blocks malware and ransomware and protects against both external and internal threats.

Some benefits and key differentiators for BeyondTrust Endpoint Privilege Management include:

  • QuickStart Templates: Implement least privilege policies in days, not months - working effectively for every role and across Windows and Mac systems, with flexible, out-of-the-box workstyle templates
  • Trusted Application Protection: Stop attacks involving trusted applications, catching bad scripts and infected email attachments. Immediately stop trojan horses, fileless attacks, and more with pre-built templates.
  • Pragmatic Application Control: Get control over what users can install or run back into the safe hands of IT, with automated exception handling. This helps eliminate malware and ransomware threats.
  • Passwordless Administration: Perform administrative functions on an endpoint--without the need for privileged or administrator credentials. This eliminates the biggest and most prized attack vector sought by threat actors.
  • Open Integrations Framework: Utilize PowerShell scripts with Power Rules to automate workflows, create custom behaviors, or build integrations with ITSM solutions and other tools.
  • Enterprise Auditing and Reporting: Provide a single audit trail of all user activity to streamline forensics and simplify compliance, using graphical dashboards and reports for quick access.

To learn more about Privilege Management for Windows and Mac, or view a demo, visit:

https://www.beyondtrust.com/privilege-management/windows-mac


Pete Knight & Kris Zentek, Senior Product Managers

Peter Knight has worked in a variety of product management roles since 2006 across diverse industries. He firmly believe in putting the customer at the heart of what he does, and that delivering quality solutions and products is based on a deep understanding of your customers’ world. As a senior product manager, he cares about the experience we deliver to our customers, not just the technology or functionality wrapped into a product. He always enjoy discussing issues and challenges with customers to get a clear picture of what we need to solve today, tomorrow, and into the future.

Kris Zentek is a Senior Product Manager at BeyondTrust, focusing on Endpoint Privilege Management solutions. Based in the UK, he has over 20 years of experience working in the cybersecurity industry.

Stay Up To Date

Get the latest news, ideas, and tactics from BeyondTrust. You may unsubscribe at any time.

I agree to receive product related communications from BeyondTrust as detailed in the Privacy Policy, and I may manage my preferences or withdraw my consent at any time.

You May Also Be Interested In:

Whitepapers

Microsoft Vulnerabilities Report 2022

Whitepapers

Cybersecurity Insurance Checklist

Whitepapers

Privileged Access Management: PAM Checklist

Keep up with BeyondTrust

I agree to receive product related communications from BeyondTrust as detailed in the Privacy Policy, and I may manage my preferences or withdraw my consent at any time.

Customer Support
Contact Sales

Products

  • Endpoint Privilege Management
  • Password Management
  • Privileged Remote Access
  • DevOps Secrets Safe
  • Remote Support
  • Cloud Privilege Broker

Resources

  • Blog
  • Case Studies
  • Competitor Comparisons
  • Datasheets
  • Glossary
  • Podcast
  • Videos
  • Webcasts
  • Whitepapers

About

  • Company
  • Careers
  • Contact
  • Events
  • Leadership Team
  • Partner Program
  • Press
BeyondTrust Logo
  • Facebook
  • Twitter
  • LinkedIn
  • Privacy
  • Security
  • Manage Cookies
  • WEEE Compliance

Copyright © 1999 — 2022 BeyondTrust Corporation. All rights reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust Corporation is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.