BeyondTrust's Privileged Remote Access integration to Thycotic Secret Server enables automatic password injection to authorized systems through the encrypted Bomgar connection, and removes the need to share and expose credentials to privileged accounts.
BeyondTrust + Thycotic enables:
- One-click password injection and session spawning
- Credentials never exposed to authorized users of BeyondTrust
- Access to systems on or off the network with no pre-configured VPN or other routing in place
- Passwords are always stored safe and secure in Thycotic Secret Server
The Bomgar Endpoint Credential Manager (ECM), enables the communication between Thycotic Secret Server and Bomgar Privileged Access Management. ECM is deployed to a hardened Windows Server inside the firewall, typically in the same network as Secret Server. Once deployed, Bomgar users see a list of administrator defined credentials for the endpoints they are authorized to access. A set of these credentials can be selected when challenged with a login screen during a remote session, and the user is automatically logged in having never seen the username/password combination.
Thycotic Secret Server handles all elements of securing and managing the passwords, so polices that require the password to be rotated after use are supported. Bomgar Privileged Access Management handles creating and managing the access to the endpoint and then recording, and controlling the level of access granted to the user, including what the user can see and do on that endpoint.