- BeyondTrust introduces new solution capabilities to protect against an expanding identity attack surface
- New innovations focus on protecting the most sensitive and exploited targets within a network: identities and their privileges
Atlanta, GA – August 1, 2023 – BeyondTrust, the leader in intelligent identity and access security, delivered multiple product innovations in Q2 of 2023 to make it easier to manage and provide advanced protection of identities, privileges, and access.
The focus of these latest product developments and integrations coincide with key research featured in the recent PAM Buyer’s Guide showing identities and privileges continue to dominate the threat landscape and offer numerous opportunities for threat actors to gain and exploit access into an organization’s most sensitive targets:
Q2 BeyondTrust Product Innovations
Privilege Management for Windows and Mac 23.3 & 23.4 – BeyondTrust released two updates to Privilege Management for Windows and Mac in Q2 of 2023. Versions 23.3 and 23.4 introduced a suite of new features and enhancements that make it easier for organizations to monitor their user behavior data, and then leverage that data to refine policies, remediate threats, and eliminate risk:
- Analytics v2 enhancements – Provide users with an applications view that intuitively aggregates user data, an “add-to-policy” workflow, and a VirusTotal integration that allows “one-click-to-remediate” capabilities. These new features provide a simplified process for accessing user data insights to inform and expediate the creation of critical policies that eliminate risk and remediate identified threats.
- Role-Based Access for APIs – This least privilege enhancement provides organizations with granular control over access and permissions of each of the APIs they utilize, ensuring each API only has the access and permissions it requires.
- DLL Control – This ease-of-use enhancement helps to mitigate specific application security risks by making it easy to block DLLs from Microsoft’s recommended block list with one click. This helps customers enhance their security posture in accordance with the Australian Cyber Security Centre (ACSC)’s Essential Eight security strategies.
Remote Support 23.2 – BeyondTrust released a significant update to Remote Support in Q2 to introduce more expanded integrations and bolster authentication efficiency and security:
- Support for FIDO2 / YubiKey in Passwordless Authentication – This addition gives service desk and support workers the option to utilize a more secure, passwordless method of authentication, resulting in an easier, faster, and more secure login process.
- API Cookbooks for Enhanced Jump Item Management and Automation – This improves the onboarding process by enabling automations via existing configuration APIs. Prebuilt scripts specifically tailored to automation use cases improve Jump Item management and integration with AWS, AD, and Azure.
Privileged Remote Access 23.2
– BeyondTrust’s Q2 updates to Privileged Remote Access emphasized streamlined authentication and enhanced cloud access to promote greater security for local users and vendors:
- FIDO2 / YubiKey Support – This update offers additional of authentication choice, extending support for FIDO2 / UbiKey passwordless authentication to remote local users and vendor users. Our commitment to providing a seamless and secure access flow across all systems remains, and now comes with the added benefit of mitigating the risks associated with traditional password management for these user categories.
- Streamlined Vendor Onboarding with Automation – Multiple feature enhancements and the introduction of automation significantly enhance vendor onboarding and management. Group onboarding, admin notifications throughout the workflow, and account reactivation can be managed within the admin dashboard for improved visibility and security.
- Optimized Jump Clients for Cloud Assets – Easier and more secure installation of Jump Clients for cloud assets enables speedy and reliable secure access for the cloud environment. Ephemeral assets can be accessed just by activating the switch on your existing jump clients.
Password Safe 23.1 – BeyondTrust delivered a major update to Password Safe, improving support for DevOps cloud developers, audit and compliance, and efficiency of search and accessibility for all users:
- Terraform Integration – Allows users to secure their Terraform-associated tokens while executing CI/CD workflows, improving user and system security, compliance, and productivity.
- Azure DevOps Extension – Rapid and secure retrieval of Azure secrets enables consumers to secure the Azure Pipeline credentials and secrets they use daily for CI/CD workflows, improving user efficiency and security.
- Easy, Secure Authentication with OAuth 2.0 - Password Safe now enforces centralized identities through the OAuth 2.0 standard, providing authentication to third party applications without sharing sensitive credentials like usernames and passwords. The new workflows generate access tokens, which can grant defined access to resources for defined time periods, helping organizations meet compliance requirements and reduce their attack surface.
- Accessibility Improvements – New usability enhancements via the web portal refresh bring Password Safe into compliance with the Voluntary Product Accessibility Template (VPAT) and the Web Content Accessibility Guidelines (WCAG) 2.0 standard. Navigation enhancements further improve search results, providing greater workflow efficiency and accessibility for all users.
- Enhanced Audit and Compliance Reporting - Three new reports and one updated report facilitate greater adherence to audit and compliance requirements, ensuring security teams have the information they need for session monitoring, application auditing, user auditing, and password activity reports.
Q2 Technology Alliance Program Highlights
- Password Safe - ServiceNow Integration – Our new enterprise integration deepens the connection between BeyondTrust's Password Safe and ServiceNow, enabling users to effortlessly request and approve access to managed systems and accounts. A ServiceNow user can now request to check-out credentials or privileged accounts managed by Password Safe within approved ITSM access flows. Once approved, users can initiate RDP or SSH sessions directly from ServiceNow.
- Privileged Remote Access - Ping DaVinci integration – In Q2, BeyondTrust and Ping Identity partnered to deliver an integration between BeyondTrust Privileged Remote Access and PingOne DaVinci no-code orchestration. This integration allows organizations to define permissions, manage least privilege access for employees and vendors, and respond quickly to security incidents, decreasing the risk of users becoming entry points for attacks and preventing opportunities for lateral movement.
About BeyondTrust
BeyondTrust is the worldwide leader in intelligent identity and access security, enabling organizations to protect identities, stop threats, and deliver dynamic access. We offer the only platform with both intelligent identity threat detection and a privilege control plane that delivers zero-trust based least privilege to shrink your attack surface and eliminate security blind spots.
BeyondTrust protects identities, access, and endpoints across your organization, while creating a superior customer experience and operational efficiencies. We are leading the charge in innovating identity-first security and are trusted by 20,000 customers, including 75 of the Fortune 100, plus a global ecosystem of partners. Learn more at www.beyondtrust.com.
Follow BeyondTrust:
Twitter: https://twitter.com/beyondtrust
Blog: https://www.beyondtrust.com/blog
LinkedIn: https://www.linkedin.com/company/beyondtrust
Facebook: https://www.facebook.com/beyondtrust
###
For BeyondTrust:
Mike Bradshaw
Connect Marketing for BeyondTrust
P: (801) 373-7888
E: mikeb@connectmarketing.com
