BeyondTrust has released version 5.7 of PowerBroker Password Safe, our solution for automating privileged password and privileged session management. This new release features some exciting enhancements – especially around session management and password management, giving users unmatched levels of security, accountability and control. Read on for more.
Achieve Compliance with Session Audit Capabilities
Organizations often times need the capability to review privileged sessions, whether live or forensically. This review capability is especially important in large environments or in highly regulated organizations – such as in the financial services industry – where there are specific compliance requirements for access monitoring.
With Password Safe v5.7, designated viewers can access the session review capability, watch a session recording, indicate they have reviewed the session, and acknowledge that the session was authorized. Once that acknowledgement has been made and the system owner signs off on the activity, the approval is logged for auditing purposes.
These session monitoring and review enhancements serve to speed session review times, lower the administrative burden of auditing review activity, and simplify compliance.
Simplify Bulk System Administration
In larger or complex environments where many system updates must frequently be made to systems requiring privileged credentials, administrators need a more efficient process to perform those updates. Rather than requiring administrators to submit multiple requests to check out the same account for different systems, Password Safe version 5.7 introduces a new multi-system checkout capability.
This enhancement enables administrators to check out the account with a multi-system parameter and rapidly launch sessions to linked systems with a few clicks. This new capability improves the efficiency of multi-system requests and simplifies bulk system administration.
Improve Control over SSH Session Activity
To improve the security of critical systems and sensitive data, many organizations have implemented host-based controls that limit what commands can be executed once a privileged session has started. Password Safe version 5.7 extends this control, by providing better automation around the ability to run specific commands when an SSH proxy session is opened. With Password Safe, administrators can leverage a Unix or Linux Jumphost to run a specific command or script after the session connects. Use cases include menus, backup scripts, command delegation, and remote command execution (when used in conjunction with PowerBroker Unix/Linux). This new capability enables a greater level of control over user activity in an SSH session.
There are several more enhancements and new features in this release of PowerBroker Password Safe – including API and service account enhancements which improve usability. Check out the new features document for a complete rundown, and if you would like to learn more about PowerBroker Password Safe, let us know!
Martin Cannard,
Martin has been helping organizations solve challenges in the privileged account management and identity and access management space for over 24 years. At Dell Software, Martin managed a team of Solution Architects, focused on designing and implementing solutions in the Privileged Account Management (PAM) space. Prior to joining Dell, Martin was Sr. Product Manager for Novell Privileged User Manager, a privilege management application acquired from Fortefi, an organization where he served as Vice President, Corporate Development. Prior to this, he was Program Manager of Client Technologies at Symantec where he was responsible for many ground-breaking field and channel enablement applications. Additionally, Martin managed the European QA group at Axent Technologies and has held various management positions in consulting, systems development, and operations. Martin is a regular speaker for security events, and webinars.
