The Rise of Web-based Admin Consoles...and Why That's Terrifying

At some point along our journey in IT, many technologies in the data center began employing web-based admin consoles. Why not, right? These are easier to deploy, they don't require a client on admin workstations, and are more flexible for technology providers to update and provision. However, there's a dark side to this; web-based consoles often lack a wide variety of security controls and capabilities, and browsers can be highly insecure. Couple this with the fact that most consoles are accessed by privileged users, and the problem gets even worse. Fast forward a bit, and we see this same issue for access to cloud service environments, which could potentially open up access to the entire software-defined data center. Have I terrified you yet?

In this on-demand webinar, cybersecurity expert Dave Shackleford, explores a wide variety of issues and scenarios that could befall our web-based admin consoles, both on-premises and in the cloud. He also covers how privileged access management can be implemented in an adaptive manner that works effectively with these technologies.

Meet the Presenters

Dave Shackleford, Cybersecurity Expert and Founder of Voodoo Security

Dave Shackleford is the owner and principal consultant of Voodoo Security and a SANS analyst, senior instructor, and course author. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, and network architecture and engineering, and is a VMware vExpert with extensive experience designing and configuring secure virtualized infrastructures. He has previously worked as CSO for Configuresoft, CTO for the Center for Internet Security, and as a security architect, analyst, and manager for several Fortune 500 companies.

Duane Simms, Senior Product Manager