NEW: Microsoft Vulnerabilities Report 2022 - Read the Findings of Our Annual Report Read Now

  • Partners
  • Support
  • Careers
  • English
    • Deutsch
    • français
    • español
    • 한국어
    • português
BeyondTrust
  • Products

    Privileged Password Management

    Discover, manage, audit, and monitor privileged accounts and credentials.

    • Password Safe
    • DevOps Secrets Safe
    • Privileged Access Discovery Application

    Endpoint Privilege Management

    Enforce least privilege across Windows, Mac, Linux, and Unix endpoints.

    • Windows and Mac
    • Unix and Linux
    • Active Directory Bridge

    Secure Remote Access

    Centrally manage remote access for service desks, vendors, and operators.

    • Remote Support
    • Privileged Remote Access
    • Privileged Access Discovery Application

    Cloud Security Management

    Automate the management of identities and assets across your multicloud footprint.

    • Cloud Privilege Broker

    BeyondInsight

    Experience the industry’s most innovative, comprehensive platform for privileged access management.

  • Solutions

    Use Cases

    • Cloud Security
    • Compliance
    • Cyber Insurance
    • Digital Transformation
    • Endpoint Security
    • Operational Technology
    • Ransomware
    • Service Desk Efficiency
    • Zero Trust

    Industry Applications

    • Financial Services
    • Government Agencies
    • Healthcare
    • Law Enforcement
    • Manufacturing
    • Schools & Universities

    Solutions

    The BeyondTrust Privileged Access Management portfolio is an integrated solution that provides visibility and control over all privileged accounts and users.

  • Resources

    Learn

    • Blog
    • Customer Stories
    • Competitor Comparisons
    • Datasheets
    • Demos
    • Glossary
    • Podcast
    • Whitepapers

    Attend

    • Events
    • Go Beyond
    • Training
    • Webinars

    Support

    • Changelog
    • Professional Services
    • Technical Documentation

    Universal Privilege Management

    Our innovative Universal Privilege Management approach secures every user, asset, and session across your entire enterprise.

  • Company
    • About
    • Leadership
    • Core Values
    • Partners
    • Careers
  • Watch Demo
  • Contact Sales

BeyondTrust Extends Support for Securely Managing Cloud Infrastructure with Latest Release of DevOps Secrets Safe

December 8, 2020

  • Blog
  • Archive

With the release of v20.4, DevOps Secrets Safe builds on its secrets management capabilities by dynamically generating accounts to access APIs and enable DevOps engineers an automated way of managing cloud infrastructure. By brokering access to cloud environments through DevOps Secrets Safe, organizations can drastically reduce the security footprint of their automated workflows.

Every cloud service provider offers an extensive API that enables DevOps engineers with an automated way of managing their entire infrastructure. The accounts used to access these APIs are considered highly privileged, are primary targets for attackers, and, therefore, should be protected. Industry analysts have recommended securing these accounts with a centralized secrets management solution that can store these sensitive API keys used for access. In v20.4, DevOps Secrets Safe builds on its secrets management capabilities by dynamically generating these API accounts with a just-in-time model for privileged access.

Automated DevOps workflows typically need only a short window of access to accomplish a specific task. The persistence of a privileged account outside of this window represents a vulnerability for your infrastructure and introduces unnecessary risk. Now, your organization can leverage DevOps Secrets Safe to reduce your windows of vulnerability by eliminating persistent privileged access (i.e. standing privileges).

Other exciting new features in this release include:

Native 2FA Support

DevOps Secrets Safe already offered the protection of multi-factor authentication through 3rd-party integrations. In v20.4, we have introduced a built-in, time-based, one-time password (TOTP) 2FA workflow for all DevOps Secrets Safe users. This native 2FA capability ensures that every account can be protected, regardless of type or availability of other external dependencies.

Kubernetes Sidecar

The DevOps Secrets Safe integration with Kubernetes enables service accounts as identities for access to secrets. It also provides a simple init container for interacting directly with DevOps Secrets Safe on behalf of the application container at startup.

In some situations, the secrets provided to an application may need to be updated during the lifecycle of the applications container. For these instances, the BeyondTrust secrets agent container can be defined as a sidecar, retrieving secrets on a defined interval. This keeps your application up-to-date with the latest available secret.

Building on our Enterprise-level Secrets Management Solution

BeyondTrust continues to evolve the capabilities of DevOps Secrets Safe to meet a challenging privileged access management landscape and help customers advance their digital transformation projects.

DevOps Secrets Safe enables centralized secrets administration (create, store, access, and audit) designed for the high-volume and dynamic workloads found in DevOps environments. DevOps Secrets Safe helps organizations to secure credentials and other secrets (passwords, API keys, certificates, etc.) used by applications, automated processes, and other non-human identities in their continuous integration and continuous delivery (CI/CD) tool chain, runtime environments, and other automated processes.

DevOps Secrets Safe is designed for enterprise teams committed to DevOps security best practices and dedicated to applying secure solutions at every step of the process. The solution’s architecture leverages the full stack of Kubernetes as the DevOps deployment platform of choice. This allows our customers flexibility in deployment to meet their business needs (e.g., their preferred cloud provider or on-prem) and to cost-effectively meet enterprise security and compliance requirements.

Learn more here:

DevOps Secrets Safe Product Page

Putting the SECrets in DevSecOps Webcast

What’s New Doc

DevOps Secrets Safe v20.4 Release Notes

Photograph of Alex Leemon

Alex Leemon, Sr. Product Marketing Manager

Alex Leemon is a Sr. Product Marketing Manager at BeyondTrust, focusing on Privileged Password & Session Management and PAM for Cloud security solutions. She has over fifteen years of experience working with enterprise-level and Critical Infrastructure organizations solving safety and security challenges. Before joining BeyondTrust, Alex served in various roles related to the development of operational technology (OT) products and the Industrial Internet of Things (IIoT).

Stay Up To Date

Get the latest news, ideas, and tactics from BeyondTrust. You may unsubscribe at any time.

I agree to receive product related communications from BeyondTrust as detailed in the Privacy Policy, and I may manage my preferences or withdraw my consent at any time.

You May Also Be Interested In:

Whitepapers

Cybersecurity Insurance Checklist

Whitepapers

Azure PIM vs. BeyondTrust PAM

Whitepapers

The Guide to Multicloud Privilege Management

Keep up with BeyondTrust

I agree to receive product related communications from BeyondTrust as detailed in the Privacy Policy, and I may manage my preferences or withdraw my consent at any time.

Customer Support
Contact Sales

Products

  • Endpoint Privilege Management
  • Password Management
  • Privileged Remote Access
  • DevOps Secrets Safe
  • Remote Support
  • Cloud Privilege Broker

Resources

  • Blog
  • Case Studies
  • Competitor Comparisons
  • Datasheets
  • Glossary
  • Podcast
  • Videos
  • Webcasts
  • Whitepapers

About

  • Company
  • Careers
  • Contact
  • Events
  • Leadership Team
  • Partner Program
  • Press
BeyondTrust Logo
  • Facebook
  • Twitter
  • LinkedIn
  • Privacy
  • Security
  • Manage Cookies
  • WEEE Compliance

Copyright © 1999 — 2022 BeyondTrust Corporation. All rights reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust Corporation is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.