Integrate Thycotic Secret Server with Bomgar Privileged Access

Security organizations using Thycotic Secret Server can now integrate BeyondTrust Privileged Remote Access to better control, monitor, and manage access to critical systems by privileged users. BeyondTrust’s integration with Thycotic allows organizations to further improve security and compliance by integrating controlled access to sensitive and critical endpoints with secure access to privileged accounts.

Thycotic Secret Server allows security organizations to control access to critical passwords in one centralized, web-based repository. BeyondTrust Privileged Remote Access enables these same organizations to securely manage remote access to sensitive systems. When integrated, the combined solutions empower users with the access they need to be productive, while enabling security professionals to manage which systems users can connect to and when, monitor all access activity, and eliminate exposure of secure credentials.

Inject credentials from Thycotic Secret Server to log in automatically without exposing username or password credentials

Secure Password Management + Access Control

BeyondTrust's Privileged Remote Access integration to Thycotic Secret Server enables automatic password injection to authorized systems through the encrypted Bomgar connection, and removes the need to share and expose credentials to privileged accounts.

BeyondTrust + Thycotic enables:

  • One-click password injection and session spawning
  • Credentials never exposed to authorized users of BeyondTrust
  • Access to systems on or off the network with no pre-configured VPN or other routing in place
  • Passwords are always stored safe and secure in Thycotic Secret Server

The Bomgar Endpoint Credential Manager (ECM), enables the communication between Thycotic Secret Server and Bomgar Privileged Access Management. ECM is deployed to a hardened Windows Server inside the firewall, typically in the same network as Secret Server. Once deployed, Bomgar users see a list of administrator defined credentials for the endpoints they are authorized to access. A set of these credentials can be selected when challenged with a login screen during a remote session, and the user is automatically logged in having never seen the username/password combination.

Thycotic Secret Server handles all elements of securing and managing the passwords, so polices that require the password to be rotated after use are supported. Bomgar Privileged Access Management handles creating and managing the access to the endpoint and then recording, and controlling the level of access granted to the user, including what the user can see and do on that endpoint.

Bomgar + Thycotic Benefits

Thycotic Secret Server offers a comprehensive Privileged and Shared Account Password Management solution that allows enterprises to store, distribute, change, and audit passwords in a secure environment. BeyondTrust Privileged Remote Access builds on this by enabling granular controls of access to endpoints, authorized access windows, and monitoring and recording of sessions. This allows security organization to go beyond password management to enforce time-based access, restrict certain actions, be alerted to session activity, and record actions for later analysis.

The combined solution give enterprises the ability to grant employees and third parties the access they need to run the business, while securing privileged accounts and sensitive systems.