PowerBroker Identity Services

Active Directory (AD) Bridging

Extend Microsoft® Active Directory authentication, single sign-on capabilities and Group Policy configuration management to Unix, Linux and Mac systems, to improve efficiency, simplify compliance and reduce risk.

Active Directory and Group Policy for Integrating Unix, Linux and Mac into Windows Environments

PowerBroker Identity Services centralizes authentication for Unix, Linux and Mac environments by extending Active Directory’s Kerberos authentication and single sign-on capabilities to these platforms. By extending Group Policy to non-Windows platforms, PowerBroker provides centralized configuration management, reducing the risk and complexity of managing a heterogeneous environment.

  • Allow users to leverage their AD credentials to access Unix, Linux or Mac systems
  • Attain consistent configuration by extending native group policy management tools to include settings for Unix, Linux and Mac
  • Audit several events in real time; access results through the PowerBroker console or forward to third-party solutions
  • Transition users from desktops to remote machines or between systems, without requiring them to re-enter credentials
  • Consolidate directories to simplify management of complex environments
Consolidate Credentials, Increase Efficiency

Consolidate Credentials, Increase Efficiency

Allows users to log onto Unix, Linux, or Mac systems using their Active Directory (AD) usernames and passwords, without requiring additional infrastructure or password synchronization. Enables IT to leverage AD group membership to centrally control server and workstation access. Provides a single password policy set in AD to all joined systems, including Kerberos SSO for SAP, Siebel, and other key enterprise applications.

Simplify Administration via Directory Consolidation

Simplify Administration via Directory Consolidation

Facilitates migration from multiple authentication mechanisms, identities, and directories to a single Active Directory-based infrastructure for all systems and users. This centralizes control and speeds user onboarding and off boarding.

Extend Group Policy to Achieve Compliance

Extend Group Policy to Achieve Compliance

Enables consistent configuration enterprise-wide by extending native Group Policy management tools to include specific group policy settings for Unix, Linux and Mac. Supports compliance with SOX, PCI, HIPAA, and other regulations across all systems by replacing NIS with an Active Directory infrastructure.

Secure Remote Smart Card Authentication

Secure Remote Smart Card Authentication

Allows for a remote system running the PowerBroker Identity Services agent along with a new client smartcard hook to establish a secure tunnel between the user’s workstation and the target server. The user’s smart card reader can then be connected to the target host via this secure tunnel so that the remote system acts as though the smart card reader has been physically connected directly to the machine itself.

Comprehensive Platform Support

Comprehensive Platform Support

Supports a wide range of Unix, Linux and Mac platforms including CentOS, Debian, Fedora, FreeBSD, HP-UX, IBM AIX, Oracle Enterprise Linux, Suse, RedHat, Solaris, Ubuntu, and others, running on VMs to connect them with Active Directory.

Single Console for Management, Policy

Single Console for Management, Policy

Deployments, upgrades and policies for PowerBroker for Unix & Linux, PowerBroker Identity Services and PowerBroker for Sudo are unified in the PowerBroker Servers Management Console, an HTML5-based web interface that simplifies management of your Unix and Linux solutions.


Empower administrators: Provide a single familiar toolset to manage both Windows and Unix systems. Perform account maintenance and password updates through a single directory administration tool (Active Directory Users and Computers).

Configuration: Enables one-to-many management of Unix, Linux, and Mac OS X configuration settings.

Reduce costs: Leverage existing Active Directory deployments to centrally manage heterogeneous workstations and users.

Manage Active Directory from Linux or Mac OS X: Provides a pluggable framework with an interface similar to Microsoft’s Management Console on Linux or Mac OS X.

User management: Allow users to use their Active Directory credentials (Username and Password) to gain access to Unix, Linux and Mac, consolidating various password files, NIS and LDAP repositories into Active Directory and removing the need to manage user accounts separately on Mac workstations and server platforms.

Extend Mac OS X: Full support for Apple’s Workgroup Manager application, allowing for seamless management and control of Mac system settings.

Open Source Version Available: Try PowerBroker Identity Services Open for free. With access to the product source code, you can tailor your Active Directory bridging project to your specific needs.


Extend Active Directory: PowerBroker Identity Services is the only solution that does not have to modify your Active Directory schema to add Linux, Unix, & Mac OS X systems to your network.

Granular Reporting: Effortlessly manage and view access privileges for users and groups through customizable reports. Provide audit details to audit and compliance teams via enterprise-spanning access and authorization reports.

Extend Group Policy: Extend the capabilities of native group policy management tools to include specific group policy settings for Unix, Linux and Mac – achieving a consistent configuration across the enterprise.


SSO: Get single sign-on for any enterprise application that supports Kerberos or LDAP, including Samba, Apache, SSH, Websphere, JBoss, Tomcat, Oracle, and MySQL.

File sharing: Support for Remote Network file share access for Mac and Linux systems.

Access control: Centrally control access to non-Windows systems by defining which users are permitted to log onto which systems via Active Directory.