Often times, organizations require the capability to review privileged sessions, whether live or forensically. This review capability is especially important in large environments or in highly-regulated organizations – such as in the financial services industry – where there are specific compliance requirements for access monitoring. PowerBroker Password Safe 5.7 has added several new capabilities enabling the review and approval of sessions.
With Password Safe, designated viewers can:
- Access the session review capability
- Watch a session recording
- Indicate they have reviewed the session
- Acknowledge that the session was authorized
Once the acknowledgement has been made and the system owner signs off on the activity, the approval is logged for auditing purposes. As an added layer, Password Safe 5.7 includes embedded playback controls, and enables administrators to make notes in the session as they sign off on the activity. The session monitoring and review enhancements serve to speed session review times, lower the administrative burden of auditing review activity, and simplify compliance.
“The PowerBroker Password Safe solution is all about providing greater insight and visibility for our end users to help stop internal threats and the use of privileged credentials, whether actions are malicious in nature or occur accidentally,” said Brad Hibbert, CTO, BeyondTrust. “The added capability of session review and monitoring that’s incorporated into the latest version of the solution gives IT admins very easy and clean review capabilities when suspicious activity is detected.”
PowerBroker Password Safe 5.7 also includes the following enhancements to further improve ease of use.
· New capability to improve the efficiency of multi-system requests and simplify bulk system administration
· Real-time email notification of user access, filtered by day/date/time and location
· Inclusion of API enhancements adding full CRUD administrative capabilities and SSH key handling
· Service account enhancements to improve logging and emailing
