Application to Application Password Management
By installing a host-based agent on Windows endpoints, you can enable embedded application authentication and enforce application attributes such as:
- Full path of the calling application
- Matching SHA256 hash of the calling application
- Authorization of the calling user executing the application
With this new functionality, developers can securely embed credentials into compiled applications subject to compliance mandates for rotation. BeyondTrust Privileged Identity administrators can further lock down these applications, leveraging one or all of the attributes listed above.