Powerbroker for Windows 7.3: More Flexibility with Rules and Access Control

Jason Silva, July 11th, 2017

The latest release of BeyondTrust’s Windows endpoint privilege management solution, PowerBroker for Windows version 7.3, provides Windows IT administrators with more tools to maintain granular access control and improve operational efficiency and usability. Here’s a summary of the features included with this release.

Improve Security with User-Based Rules and Policy

PowerBroker for Windows 7.3 includes additional capabilities to help IT Admins manage rules and policy for end users, assets, and computers. Central Policy allows customers to manage their PowerBroker for Windows rule set outside of MS Group Policy.

With this release, the addition of user-based policy improves the control and security over the end-users, wherever they log in.

Control When and How Rules Are Applied

Properly controlling when and how a PowerBroker for Windows rule is executed is critical to any deployment. With PowerBroker for Windows 7.3, you can control whether or not a rule applies, based on its parent process being managed by PowerBroker for Windows.

With PowerBroker for Windows 7.3, IT admins can better control when and how to apply and a rule based on its parent process being managed by PowerBroker for Windows.

As an example, Application Control is a critical part of defense in depth security. If you apply a “deny” rule at the folder level, and a PowerBroker for Windows-managed application spawns a child app to that folder, you can suppress the deny rule. This option also allows you to enforce a rule at the start and ignore any rule it may see downstream.

Improve Efficiency by Tracking Trusted Sources

A common use case for PowerBroker for Windows is to elevate all installers or applications from a particular network share. However, when files are moved from their original folders, end users lose the ability to access privileged applications and files.

With PowerBroker for Windows 7.3, the ‘track program copies from the rule path’ option would detect the binary originated from a trusted source and a locally based hash rule would be created. This allows the elevation to occur regardless of its saved location.

Additionally, PowerBroker for Windows 7.3 includes a second option that prevents a rule from applying to application launched from an untrusted location, (e.g. Web, Removable Media). This is mostly applicable to the PowerBroker for Windows Shell or UAC rules, to prevent the elevation of unknown software an end-user downloaded from the Internet.

For a complete demonstration of these new features and even more enhancements not mentioned here, read the new features document. And if you have any questions or would like a personalized demo, contact us today.