BeyondTrust
Enterprise Password APICalling all vendors, end users, and application developers! BeyondTrust is now offering a free method to make all of your solutions more secure if you require a user or application to provide credentials for connectivity or authentication. BeyondTrust’s PowerBroker Password Safe – the overall leader in Forrester’s 2016 Privileged Identity Management (PIM) Wave – is the only solution to make password storage available for application developers and users for free through a new public API.

API is Ideal for DevOps Use Cases

The PowerBroker Password Safe API is available to BeyondTrust Technology Alliance Program partners. Become a partner by registering here.
This offering is designed to provide better security for all applications that require a user or application to enter static credentials for normal operations. Instead, developers can call the PowerBroker Password Safe API and retrieve the latest credentials for the user, application, infrastructure, cloud solution, or database to authenticate and release the credentials upon termination of the session. This can trigger automatic randomized cycling of the password or other automated processes to meet business objectives. The end user is never exposed to the username or password and all authentication is performed silently behind the scenes with complete activity auditing if desired. Management of the credentials, API, and assets is all provided from within BeyondInsight, PowerBroker’s centralized management, reporting, and analytics console. If you are a commercial application developer, or create custom applications for your business, consider how beneficial it would be to the end user, or other applications, to never require the entry of a username and password for connectivity. End users, like database administrators, never need administrator rights to access a database if the tools retrieve stored credentials automatically. Management tools for services, remote access, and infrastructure automatically recognize the logged on user, the asset they are on, and seamlessly request and pass credentials for the application. This approach far better than any Single Sign On (SSO) solution since credentials can be passed within the application itself, directly from the Password Safe, to secure runtime and avoid hacking techniques like Pass-the-Hash.

How to Access the API

The PowerBroker Password Safe API is available to BeyondTrust Technology Alliance Program partners. Become a partner by registering here. Once you register, you will gain access to our partner program, the public PowerBroker Password Safe API, and sample code to help start your development and make your applications more secure by eliminating the need for end users to ever enter credentials. If you have any questios.
Profile photo of Morey Haber

Morey Haber

Chief Technology Officer & Chief Information Security Officer, BeyondTrust

With more than 20 years of IT industry experience and author of Privileged Attack Vectors, Mr. Haber joined BeyondTrust in 2012 as a part of the eEye Digital Security acquisition. He currently oversees BeyondTrust technology for both vulnerability and privileged access management solutions. In 2004, Mr. Haber joined eEye as the Director of Security Engineering and was responsible for strategic business discussions and vulnerability management architectures in Fortune 500 clients. Prior to eEye, he was a Development Manager for Computer Associates, Inc. (CA), responsible for new product beta cycles and named customer accounts. Mr. Haber began his career as a Reliability and Maintainability Engineer for a government contractor building flight and training simulators. He earned a Bachelor of Science in Electrical Engineering from the State University of New York at Stony Brook.

Recommended Reading