API is Ideal for DevOps Use Cases
The PowerBroker Password Safe API is available to BeyondTrust Technology Alliance Program partners. Become a partner by registering here.This offering is designed to provide better security for all applications that require a user or application to enter static credentials for normal operations. Instead, developers can call the PowerBroker Password Safe API and retrieve the latest credentials for the user, application, infrastructure, cloud solution, or database to authenticate and release the credentials upon termination of the session. This can trigger automatic randomized cycling of the password or other automated processes to meet business objectives. The end user is never exposed to the username or password and all authentication is performed silently behind the scenes with complete activity auditing if desired. Management of the credentials, API, and assets is all provided from within BeyondInsight, PowerBroker’s centralized management, reporting, and analytics console. If you are a commercial application developer, or create custom applications for your business, consider how beneficial it would be to the end user, or other applications, to never require the entry of a username and password for connectivity. End users, like database administrators, never need administrator rights to access a database if the tools retrieve stored credentials automatically. Management tools for services, remote access, and infrastructure automatically recognize the logged on user, the asset they are on, and seamlessly request and pass credentials for the application. This approach far better than any Single Sign On (SSO) solution since credentials can be passed within the application itself, directly from the Password Safe, to secure runtime and avoid hacking techniques like Pass-the-Hash.
How to Access the APIThe PowerBroker Password Safe API is available to BeyondTrust Technology Alliance Program partners. Become a partner by registering here. Once you register, you will gain access to our partner program, the public PowerBroker Password Safe API, and sample code to help start your development and make your applications more secure by eliminating the need for end users to ever enter credentials. If you have any questios.
Morey J. Haber, Chief Technology Officer and Chief Information Security Officer at BeyondTrust
Morey J. Haber is Chief Technology Officer and Chief Information Security Officer at BeyondTrust. He has more than 25 years of IT industry experience and has authored four Apress books: Privileged Attack Vectors (2 Editions), Asset Attack Vectors, and Identity Attack Vectors. In 2018, Bomgar acquired BeyondTrust and retained the BeyondTrust name. He originally joined BeyondTrust in 2012 as a part of the eEye Digital Security acquisition. Morey currently oversees BeyondTrust strategy for privileged access management and remote access solutions. In 2004, he joined eEye as Director of Security Engineering and was responsible for strategic business discussions and vulnerability management architectures in Fortune 500 clients. Prior to eEye, he was Development Manager for Computer Associates, Inc. (CA), responsible for new product beta cycles and named customer accounts. He began his career as Reliability and Maintainability Engineer for a government contractor building flight and training simulators. He earned a Bachelor of Science degree in Electrical Engineering from the State University of New York at Stony Brook.