Enterprise Random Password Manager: Case Usage Scenarios

Home > Products > Enterprise Random Password Manager > Case Usage Scenarios   

Enterprise Random Password Manager


Enterprise Random Password Manager (ERPM) automatically discovers, strengthens, monitors and recovers the local, domain, and process account passwords in your cross-platform network. It helps you achieve full regulatory compliance with your security and operational auditor's privileged identity management and shared account password management requirements.

Here’s how ERPM can help you manage and secure your IT infrastructure:

 

 

intruderMitigate Risks from Intruders and Malware

Organizations that deploy ERPM are better protected against unauthorized personnel and malicious programs attempting to access their sensitive data. That’s because intruders are confronted with ERPM’s unique, cryptographically complex passwords for privileged accounts on computers, network appliances, and applications and therefore can’t easily spread their attacks to other systems.

ERPM helps you mitigate the risk from intruders and malware by:

  • Discovering where privileged credentials are in use – in computer operating systems, network appliances, applications, and more.
  • Replacing your static common and shared privileged passwords with cryptographically complex, frequently changed, distinct passwords to reduce the threat of one compromised password exposing numerous systems to attack.
  • Enforcing policies that prevent reuse of privileged passwords, changing them immediately after each use.
  • Auditing and reporting every request for privileged access.

 

changesProtect Your Network after Datacenter Changes

Whenever your organization deploys new hardware or software you could become more vulnerable to a security breach. That’s because new and changed systems and applications introduce common and shared privileged passwords present in:

  • Physical and virtual machines running almost every operating system including Windows, Linux, Unix, OS/390, AS/400, IOS and others.
  • Out-of-band management devices, hypervisors, middleware, databases and directory services.
  • Line-of-business applications, packaged and custom software, and others.

Adding or changing devices and applications in your datacenter can leave you vulnerable to attacks that exploit shared and common privileged passwords. Should a single privileged account password become known to a network intruder, unauthorized insider, or malicious software program the breach can quickly spread to other machines that share common credentials.

Fortunately ERPM helps you safeguard your network by:

  • Automatically discovering new and changed hardware and applications.
  • Continuously strengthening new and existing privileged account passwords on all systems.
  • Auditing and reporting every request for privileged access.


turnoverStay Secure After Personnel Turnover

When IT personnel change jobs they can take with them the password secrets that grant access to sensitive data, permission to execute programs, and the ability to change configuration settings on virtually any piece of hardware or software.

Failure to safeguard privileged access during times of IT staff turnover can result in the loss of sensitive data and failures of business-critical services.

ERPM helps you regain control by:

  • Discovering where privileged credentials are in use.
  • Changing all of these credentials frequently enough to avoid a data breach.
  • Segregating existing privileged passwords to mitigate the threat of one compromised password exposing numerous systems to attack.
  • Creating a process to prevent reuse of privileged passwords, changing them immediately after each use.
  • Auditing and reporting every request for privileged access.


auditLower the Cost and Uncertainty of Regulatory Audits

Organizations that face regulatory compliance audits for standards such as PCI DSS, HIPAA, NERC, FISMA and others need to prove that they’ve secured their privileged identities.

That’s because each of these standards requires you to:

  • Identify and track the location of privileged account passwords
  • Delegate so that only appropriate personnel can access privileged accounts
  • Enforce rules for password strength, uniqueness and change frequency
  • Audit and alert so that requesters, purpose, duration, and other facts are documented.

ERPM lowers the cost and uncertainty of compliance audits by:

  • Discovering and changing all default privileged passwords on each existing, new and changed hardware and software asset
  • Maintaining minimum complexity and change frequency standards for all privileged account passwords
  • Providing authoritative audit trails of all privileged access requests and all protected systems and applications; and proving that individuals who are terminated or change job roles no longer have access
  • Documenting a need-to-know when it comes to each privileged access


Enterprise Random Password Manager

Live chat by SightMax

 
Share  

   

     Copyright © 2003-2012 Lieberman Software Corporation. All rights reserved. Legal notices  Follow us on Twitter  Follow us on LinkedIn  Blog  Lieberman Software on YouTube