How many software solutions do you use that have not changed in years? Probably quite a few. Some have added incremental features, some have become more cloud-friendly, and some look and behave the exact same way since they day they were created.
PowerBroker for Windows is different. Since it was created as a Microsoft Windows least privilege solution, we have added Vulnerability Based Application Management (VBAM), Windows Event Log Monitoring, Session Monitoring, Application Quarantine, and File Integrity Monitoring.
Now, with version 7.7, an entirely new capability is available: native Asset Discovery and Inventory. This technology is built directly into the client and leverages the best features of the Retina Discovery engine directly in PowerBroker for Windows. This allows an individual client to enumerate:
- Hardware – inventory such as memory, hard disk size, network adapters, processors, manufacturer, and video card
- Ports – local open, closed, and filtered ports
- Processes – running process. PID, and referenceable command line if applicable
- Scheduled Tasks – enumerate of task name, task to run, last results statistics, run as, and any comments
- Services – enumeration of the name, description, log on account, startup type, and dependencies
- Shares – all local shares
- Software – installed software registered in programs and features including publisher and version
- Groups / Users – all local users and groups enumerating name, full name, description, privileges, password age, user type, last login, group membership, password expiration, and whether or not the account is disabled
This data can be collected by the PowerBroker for Windows client on-demand, or using a predefined schedule. The information is automatically transmitted into the PowerBroker Privileged Access Management Platform (BeyondInsight) for asset inventory, reporting, smart group creation, least privilege rule creation, and the automatic onboarding of accounts and services when linked with BeyondTrust’s award winning PowerBroker Password Safe.
In addition, this data can be used for a variety of other use cases, including asset inventory management, application licensing reporting, hardware management, and even rogue software identification.
It is not often a solution evolves to include such powerful new capabilities. This year, PowerBroker for Windows now includes native Agent Discovery capabilities.
BeyondTrust has some additional game-changing features coming to our endpoint privilege management solutions that can help streamline your account and privilege problems across your organization.
For more information on PowerBroker for Windows or BeyondInsight, download our new features document.
Morey J. Haber, Chief Technology Officer and Chief Information Security Officer at BeyondTrust
Morey J. Haber is Chief Technology Officer and Chief Information Security Officer at BeyondTrust. He has more than 25 years of IT industry experience and has authored four Apress books: Privileged Attack Vectors (2 Editions), Asset Attack Vectors, and Identity Attack Vectors. In 2018, Bomgar acquired BeyondTrust and retained the BeyondTrust name. He originally joined BeyondTrust in 2012 as a part of the eEye Digital Security acquisition. Morey currently oversees BeyondTrust strategy for privileged access management and remote access solutions. In 2004, he joined eEye as Director of Security Engineering and was responsible for strategic business discussions and vulnerability management architectures in Fortune 500 clients. Prior to eEye, he was Development Manager for Computer Associates, Inc. (CA), responsible for new product beta cycles and named customer accounts. He began his career as Reliability and Maintainability Engineer for a government contractor building flight and training simulators. He earned a Bachelor of Science degree in Electrical Engineering from the State University of New York at Stony Brook.