To that end, there needs to be a better way to manage privileged passwords. If you consider guidance on zero trust architectures, a security professional quickly realizes that flaws based on lateral movement, password checkout, shared credentials, and inappropriate behavior make the traditional model incompatible with zero trust. And, the sheer fact that shared accounts are a poor security practice and the resource must have a standing or always-on account for access, makes a traditional privileged password management architecture even more irreconcilable with zero trust.
There is a much better way to architect access to sensitive resources that makes privileged password management well-matched for modern challenges. The approach to accomplish this involves using a Zero Trust Enclave Gateway model. Learn the concepts of this approach and how BeyondTrust Password Safe can help you achieve it, by downloading this paper.