Bomgar has introduced the new Bomgar Vault, which helps companies secure, manage, and administer shared credentials for privileged users and IT vendors. Bomgar Vault improves security, compliance, and productivity by enabling security organisations to quickly find and gain control of privileged credentials, manage and rotate passwords, and directly inject credentials into servers and other network infrastructure via Bomgar’s Privileged Access Management solution.
“If a system administrator or vendor accesses an account on a regular basis, they may remember the password. But many times these accounts are shared and used infrequently, resulting in passwords written down on sticky notes or stored in unencrypted spreadsheets. These are exactly the kind of credentials cybercriminals target because they are the keys to your most critical systems,” said Sam Elliott, director of security product management, Bomgar. “Bomgar Vault makes it easy to uncover all of the privileged credentials within your environment and place them behind a secure wall where credentials are controlled and rotated. System administrators can access those credentials quickly and securely to log into privileged systems while reducing the business’s exposure to malicious attacks or nefarious parties.”
Bomgar Vault helps security professionals quickly scan their network to find privileged credentials, check if they’re active, and determine the age of each password. Security organisations can also import credentials in bulk to quickly build a list of accounts that need to be managed. Once privileged credentials are within the secure Bomgar Vault, all use of those credentials are managed, restricted, and logged. Credentials can be rotated automatically, based on defined rules or when the system detects plain text passwords have been exposed. Email alerts and approvals can be set up to keep responsible parties informed of critical credential use.
Integrating Bomgar Vault with Bomgar Privileged Access Management takes protection even further by enabling direct credential injection into servers and other network infrastructure without the system administrator or vendor ever seeing the credential. Integrating the solutions not only increases security, it also improves productivity by allowing administrators to access servers and systems quickly and seamlessly without having to find or check out credentials.
“Implementing Privileged Access and Account Management together allows organisations to immediately protect access to their critical systems while they’re identifying and securing their privileged accounts,” continued Elliott. “This not only speeds time to building a more secure environment, but ultimately makes it exponentially more difficult for attackers to reach privileged systems.”
Organisations can also integrate Bomgar Vault with multifactor authentication (MFA) to further improve security for critical accounts by ensuring that the authenticated user is the actual user who should be granted access to the systems.
