REDUCE RISK, INCREASE VISIBILITY AND AUDITABILITY
Privileged User Management is the monitoring and protection of privileged accounts, also known as super accounts or administrator accounts, in an organization’s IT environment.
These accounts, such as those for database administrators (DBAs), Directory Administrators, Unix and Linux Admins are often loosely governed. Typically, Identity management software often leaves super user accounts unmonitored while granting advanced privileges on an organization’s network. Even when there is no ill will intended, the owners of those accounts often have no formal training in managing them.
Privilege User Management Solution Highlights:
Lifecycle Management – Handle Access and Permissions.
Privilege accounts are often not managed by traditional Identity Management solutions. Some privilege accounts are created automatically or manually; all need to be managed throughout the organization.
User Access – Empower but Control.
Control what access a super user is given on a per system basis. Balance between two designs: the principle of least privilege and a desire to minimize the need to develop and maintain complex access control rules.
Authentication and Authorization – Who and What
Control authentication into the privileged accounts, by regularly changing passwords. Control authentication into a privileged system, from which a user or application may “check out” access to a privileged account.
Session Recording and Isolation – When and Where
The ability to record access to privileged accounts from a security and compliance perspective. Controlling access to privileged accounts using session proxy technology can prevent or dissuade potential issues.