Indeed Access ManagerIndeed Access Manager Indeed Privileged Access Manager Indeed Certificate Manager
Access controlfor privileged users
Control the use of privileged accounts and saved administrative passwords in secret, leed a video archive and text entries sessions
Two-factor authentication of administrators
The Privileged Access Management class solutions allow to leave out an explicit usage of passwords for privileged accounts and to grant the rights to use such passwords to administrators at certain resources granularly. Another problem to be solved in the aspect of granting the privileged access is reliable authentication of administrators. The administrator must be authenticated unambiguously before he or she gains access to a session with elevated rights. The task can be solved with two-factor authentication of PAM users. Generally, the task of authentication in PAM can be stated as follows. It is necessary to provide for an opportunity of multi-factor user authentication before a user gains privileged access to the system.
Password management for administrative accounts
Privileged accounts essentially involve significant information security risks: compromising of privileged access to the system might lead to severe financial and reputational loss of the company. However, the administrative accounts are routinely protected with password authentication, which is obviously disadvantageous: passwords can be mined or passed to another person without proper authorization. Also, passwords have to be changed promptly when an employee is dismissed. Such problems with administrative access pose a significant threat to the company security. It is necessary to use special Privileged Access Management class solutions to eliminate this risk.
Recording of administrator actions
Privileged accounts essentially involve significant information security risks: compromising or abuse of privileged access to the system might lead to severe financial and reputational loss of the company. The Privileged Access Management class solutions allow for organizing of password management for administrative accounts and hide these passwords from the employees. But the password management itself is not sufficient, since it does not solve the problem of privileged access abuse. It is required that every session leaves a digital “trace” that facilitates incident investigation and helps to find the problem root cause. Session recording could be such a “trace”. Record archive makes it possible to find out, where and what actions have been performed and by whom.