NEW: Microsoft Vulnerabilities Report 2022 - Read the Findings of Our Annual Report Read Now

  • Partners
  • Support
  • Careers
  • English
    • Deutsch
    • français
    • español
    • 한국어
    • português
BeyondTrust
  • Products

    Privileged Password Management

    Discover, manage, audit, and monitor privileged accounts and credentials.

    • Password Safe
    • DevOps Secrets Safe
    • Privileged Access Discovery Application

    Endpoint Privilege Management

    Enforce least privilege across Windows, Mac, Linux, and Unix endpoints.

    • Windows and Mac
    • Unix and Linux
    • Active Directory Bridge

    Secure Remote Access

    Centrally manage remote access for service desks, vendors, and operators.

    • Remote Support
    • Privileged Remote Access
    • Privileged Access Discovery Application

    Cloud Security Management

    Automate the management of identities and assets across your multicloud footprint.

    • Cloud Privilege Broker

    BeyondInsight

    Experience the industry’s most innovative, comprehensive platform for privileged access management.

  • Solutions

    Use Cases

    • Cloud Security
    • Compliance
    • Cyber Insurance
    • Digital Transformation
    • Endpoint Security
    • Operational Technology
    • Ransomware
    • Service Desk Efficiency
    • Zero Trust

    Industry Applications

    • Financial Services
    • Government Agencies
    • Healthcare
    • Law Enforcement
    • Manufacturing
    • Schools & Universities

    Solutions

    The BeyondTrust Privileged Access Management portfolio is an integrated solution that provides visibility and control over all privileged accounts and users.

  • Resources

    Learn

    • Blog
    • Customer Stories
    • Competitor Comparisons
    • Datasheets
    • Demos
    • Glossary
    • Podcast
    • Whitepapers

    Attend

    • Events
    • Go Beyond
    • Training
    • Webinars

    Support

    • Changelog
    • Professional Services
    • Technical Documentation

    Universal Privilege Management

    Our innovative Universal Privilege Management approach secures every user, asset, and session across your entire enterprise.

  • Company
    • About
    • Leadership
    • Core Values
    • Partners
    • Careers
  • Watch Demo
  • Contact Sales

BeyondTrust Privilege Management for Windows & Mac Introduces New Integrations with VirusTotal and MFA, & More in New Release

May 27, 2021

  • Blog
  • Archive

The latest release of Privilege Management for Windows and Mac delivers security enhancements, including MFA and VirusTotal integrations, Advanced Parent Tracking, and updates to user experience. Check out the What’s New document for more details:

What’s New in Privilege Management for Windows & Mac 21.3 + PM Cloud 21.4

New Feature Highlights – Privilege Management for Windows & Mac (all deployment options)

Multi-Factor Authentication Using Identity Providers

This feature for Windows and Mac introduces the ability to integrate End User Messages with any identity provider (IdP) that supports OpenID Connect (OIDC). As a more secure and more user-friendly alternative to using passwords, it brings the familiarity, simplicity, and flexibility usually associated with web-based identity products to Windows and Mac.

Adopting the widely used OIDC protocol means that customers can leverage their existing IdP infrastructure and apply multi-factor authentication (MFA) for users operating in higher flex roles, such as developers who need more privileges than other departments.

The MFA feature is highly configurable and can be combined with other existing types of authentications offered by BeyondTrust to ensure the usability is balanced with security. This feature is ideal as an added layer of security for privileged applications as well as sensitive and higher risk tasks, to ensure that the user is validated with an additional factor.

Privilege Management for Windows – Message Requesting MFA
Privilege Management for Windows – Message Showing Successful Authentication
Privilege Management for Mac – Message Requesting MFA
Privilege Management for Mac – Message Showing Successful Authentication

Advanced Parent Tracking

The newest version of Privilege Management for Windows includes enhancements to Trusted Application Protection and Application Control, called Advanced Parent Tracking, which tracks use of COM and WMI as a method of creating child processes.

Malware increasingly uses surrogate processes like COM and WMI to spawn processes in a way that evades detection though Windows parent and child process hierarchies, and evades traditional App control and EDR solutions. With Advanced Parent Tracking, Privilege Management for Windows detects this form of process creation and ensures that parent/child relationships are tracked through Trusted Application Protection and Pragmatic Application Control rules.

Allow Users to Check for Policy Updates

When a policy change is required to cater to the needs of one of your end users, a new feature in Privilege Management for Windows & Mac gives those users a quick and easy way to force an immediate check for new policies, rather than having to wait for the next scheduled check. Found as a new option on the EPM systray icon, a single click is all that is required to ensure users are on the latest policy, which is vital for ongoing security and productivity.

The extra information provided to the service desk, including Client Version Number, Computer Name, and Last Updated, provides valuable information for diagnosing and fixing an issue on the user's machine.

Privilege Management for Windows & Mac Cloud - New Feature Highlights

Reputation-Based Analytics

Whether you are reviewing the applications being installed and accessed by your users, handling exception requests, or performing security audits on your endpoint estate – reputation plays a vital role in establishing the risk associated with unknown apps and processes.

BeyondTrust Privilege Management for Windows and Mac Cloud 21.4 introduces reputation into Analytics and Reporting, providing a simple and convenient method of checking for and validating the reputation of any application or process that has been audited on endpoints managed with Privilege Management Cloud.

Leveraging the powerful VirusTotal database, this feature removes the burden of having to run manual checks on apps. Using your own VirusTotal Premium subscription, scores are pulled directly into the Endpoint Privilege Management Analytics platform, persisted alongside other application and environment metadata. This provides additional, valuable data points for faster and more secure decisions around whether to allow – or block – unknown apps, or exceptions that fall outside of your corporate policies.

The integration with VirusTotal brings new insights and information about application risk directly into Privilege Management Cloud analytics.

View vendors that are flagged as malicious.
Cancel Lists the current running tasks in Windows Event Details.

Web Policy Updates

We are also delivering several updates with this release of Privilege Management for Windows and Mac Cloud to enhance user experience, including:

  • The ability to create and add/delete your own messaging, allowing further personalization for end users
  • Updated Challenge/Response key configuration for easier setup and management
  • Added applications via template, making it easier to add new rules to policies
Allow messaging for authentication and reason.
Application Templates

Export to CSV

It is important for administrators to be able to view, manage, and share data in a number of ways. Following the launch of the SIEM integration, we have added CSV export capabilities within the Privilege Management Cloud console, making export of all data for subsequent manipulation and sharing easier than ever across Computers, Groups, Policies, Users, and Audit Activity.

About Privilege Management for Windows & Mac

BeyondTrust Privilege Management for Windows & Mac (PMWM) is a preventative endpoint security solution that removes excessive admin rights, applies pragmatic application control, enables passwordless administration, and gives users just enough privileges to do their jobs and be productive. Available on-premises or in the Cloud delivered as SaaS, the solution blocks malware and ransomware and protects against both external and internal threats.

Some benefits and key differentiators for BeyondTrust Endpoint Privilege Management include:

  • QuickStart Templates: Implement least privilege policies in days, not months - working effectively for every role and across Windows and Mac systems, with flexible, out-of-the-box workstyle templates
  • Trusted Application Protection: Stop attacks involving trusted applications, catching bad scripts and infected email attachments. Immediately stop trojan horses, fileless attacks, and more with pre-built templates.
  • Pragmatic Application Control: Get control over what users can install or run back into the safe hands of IT, with automated exception handling. This helps eliminate malware and ransomware threats.
  • Passwordless Administration: Perform administrative functions on an endpoint—without the need for privileged or administrator credentials. This eliminates the biggest and most prized attack vector sought by threat actors.
  • Open Integrations Framework: Utilize PowerShell scripts with Power Rules to automate workflows, create custom behaviors, or build integrations with ITSM solutions and other tools.
  • Enterprise Auditing and Reporting: Provide a single audit trail of all user activity to streamline forensics and simplify compliance, using graphical dashboards and reports for quick access.

To learn more about Privilege Management for Windows and Mac, or view a demo, visit:

https://www.beyondtrust.com/privilege-management/windows-mac


Pete Knight & Kris Zentek, Senior Product Managers

Peter Knight has worked in a variety of product management roles since 2006 across diverse industries. He firmly believe in putting the customer at the heart of what he does, and that delivering quality solutions and products is based on a deep understanding of your customers’ world. As a senior product manager, he cares about the experience we deliver to our customers, not just the technology or functionality wrapped into a product. He always enjoy discussing issues and challenges with customers to get a clear picture of what we need to solve today, tomorrow, and into the future.

Kris Zentek is a Senior Product Manager at BeyondTrust, focusing on Endpoint Privilege Management solutions. Based in the UK, he has over 20 years of experience working in the cybersecurity industry.

Stay Up To Date

Get the latest news, ideas, and tactics from BeyondTrust. You may unsubscribe at any time.

I agree to receive product related communications from BeyondTrust as detailed in the Privacy Policy, and I may manage my preferences or withdraw my consent at any time.

Up next

From May 21, 2021:
Dispatches from Anywhere: Securing the Next Wave of Work
From May 28, 2021:
SCADA and IoT Security: What is Broken, & Can it Be Fixed?

You May Also Be Interested In:

Whitepapers

Microsoft Vulnerabilities Report 2022

Whitepapers

Cybersecurity Insurance Checklist

Whitepapers

Privileged Access Management: PAM Checklist

Keep up with BeyondTrust

I agree to receive product related communications from BeyondTrust as detailed in the Privacy Policy, and I may manage my preferences or withdraw my consent at any time.

Customer Support
Contact Sales

Products

  • Endpoint Privilege Management
  • Password Management
  • Privileged Remote Access
  • DevOps Secrets Safe
  • Remote Support
  • Cloud Privilege Broker

Resources

  • Blog
  • Case Studies
  • Competitor Comparisons
  • Datasheets
  • Glossary
  • Podcast
  • Videos
  • Webcasts
  • Whitepapers

About

  • Company
  • Careers
  • Contact
  • Events
  • Leadership Team
  • Partner Program
  • Press
BeyondTrust Logo
  • Facebook
  • Twitter
  • LinkedIn
  • Privacy
  • Security
  • Manage Cookies
  • WEEE Compliance

Copyright © 1999 — 2022 BeyondTrust Corporation. All rights reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust Corporation is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.