- Enables admins to centrally search event log records with a unified view of multiple, diverse log servers
- Stores, searches, and analyzes huge volumes of data quickly in real-time, giving answers in milliseconds
Atlanta, GA – January 31, 2022 - BeyondTrust, the worldwide leader in Privileged Access Management, today announced the release of BeyondTrust Privilege Management with Elasticsearch integration for Unix, Linux and Active Directory Bridge (AD Bridge) 22.1. Searching through vast amounts of data requires simplified searching capabilities that find precise information quickly and efficiently. Elasticsearch is an open-source search and analytics engine that has become a primary search engine and log analytics platform for IT and security teams.
Event logs maintained by multiple servers contain vast amounts of data that need to be correlated by an advanced search engine. Enabling admins to easily store and search this data gives them a clear view into their distributed technology infrastructure.
BeyondTrust Privilege Management introduces a new SIEM connection that enables admins to configure Privilege Management for Unix & Linux and AD Bridge connections to Elasticsearch and Logstash. They can route event log records to Elasticsearch/Logstash instances and conduct real-time searches across all event log records, from multiple log servers within a centralized location, using HTTP and HTTPS.
Elasticsearch stores, searches and analyzes huge volumes of data quickly and in real-time, giving admins answers in milliseconds. It achieves ultra-fast search responses by searching indexes, rather than directly searching text. Elasticsearch includes an extensive REST API for storing and searching data, and user/password authentication for secure access. Elasticsearch includes the complete Elasticsearch, Logstash, Kibana (ELK) stack, for efficient data indexing and storage for analytics.
“By integrating Privilege Management for Unix, Linux and AD Bridge with Elasticsearch, we are enabling a unified search experience where admins can quickly and easily find everything they need,” states Daniel DeRosa, Chief Product Officer at BeyondTrust. “As workloads move to the cloud, BeyondTrust Privilege Management leverages the Elasticsearch benefits to deliver a robust, yet simplified, analytics and reporting experience while improving the user experience, for storing, searching and analyzing those workloads.”
BeyondTrust Privilege Management for Unix & Linux is an enterprise-class privilege management solution that helps security and IT organizations achieve compliance, control privileged access, and prevent and contain breaches that can affect Unix and Linux systems – without impacting productivity.
BeyondTrust Active Directory Bridge (ADB) centralizes authentication for Unix and Linux environments by extending Active Directory’s Kerberos authentication and single sign-on. By extending group policy to non-Windows platforms, BeyondTrust provides centralized configuration management, reducing the risk and complexity of managing a heterogeneous environment.
BeyondTrust Privilege Management for Unix, Linux and AD Bridge with Elasticsearch includes the following new capabilities:
Expanded analytics and reporting with Elasticsearch and the ELK Stack - The primary use cases for Elasticsearch are application search, website search, enterprise search, logging and log analytics. The unified search includes IO logs, management platform access logs, file integrity monitoring reports, and more. All log files are indexed in Elasticsearch and presented to the user via the BeyondTrust Privilege Management Platform.
ELK stack - Elasticsearch is the central component of the Elastic Stack open-source tools for data ingestion, enrichment, storage, analysis and visualization. A search engine at its core, admins also use Elasticsearch to easily ingest and visualize log data. In combination with Elasticsearch, the ELK stack provides a more complete picture of log activity across the IT infrastructure in real-time.
BeyondTrust Privileged Management with Elasticsearch for Unix, Linux and AD Bridge is now available. To learn more, visit our website.
BeyondTrust is the worldwide leader in Privileged Access Management (PAM), empowering organizations to secure and manage their entire universe of privileges. Our integrated products and platform offer the industry's most advanced PAM solution, enabling organizations to quickly shrink their attack surface across traditional, cloud and hybrid environments.
The BeyondTrust Universal Privilege Management approach secures and protects privileges across passwords, endpoints, and access, giving organizations the visibility and control they need to reduce risk, achieve compliance, and boost operational performance. We are trusted by 20,000 customers, including 70 percent of the Fortune 500, and a global partner network. Learn more at www.beyondtrust.com.
Connect Marketing for BeyondTrust
P: (801) 373-7888