BeyondTrust

Security In Context

Bringing you news and commentary on solutions and strategies for protecting your critical IT infrastructure.

Austin Powder uses PowerBroker to Implement Least Privilege

Post by Peter McCalister November 18, 2011

Austin Powder, a manufacturing firm based in Ohio, faced an interesting challenge of taking their company to a least privilege model. They also needed to reduce malware threats within the organization.

austinlogo[1]

At the start of the project, the company knew little about the least privilege model. They began to develop an in-house solution, a wrapped RunAs command created with an administrator account, to help mitigate the problem. Their homegrown solution helped control malware, but it presented a challenge with uesrs because it was confusing and difficult for them to understand. It also resulted in an increase of expensive help desk calls every time settings needed to be changed or applications needed to be installed. With their solution not yielding the desired results, Austin Powder ultimately needed a solution that could solve the least privilege problem, cut down on malware in the enterprise, as well as decrease the number of calls to the help desk.

This is where BeyondTrust came in. PowerBroker Desktops, Windows Edition allows enterprises the ability to lock down users’ access while still allowing applications to run as necessary. Since malware targets accounts with administrative rights, locking down users significantly reduces these threats. It also solves the least privilege problem, as users are given only the amount of credentials as they need for their jobs. In addition, it decreases the amount of help desk calls as users are already given what they need instead of being forced to request it.

Leave a Reply

Additional articles

April VEF Participant Wins a Apple iPad mini

Every month we host our Vulnerability Expert Forum (VEF) webinar. This is a time where our experts share valuable insight regarding new vulnerabilities that are discovered and the actions that need to be taken as a result. It’s a quick way to get up to speed on current potential risks to your organization and a way to…

Post by Qui Cao April 24, 2014
smart rules manager for vulnerabilities - v2

A New Way of Looking at Vulnerabilities in Your Environment

Assets, users, vulnerabilities and exploits; all are common themes in my posts on BeyondInsight. With BeyondInsight v5.1, we unveiled a new way to view exploitable assets. Sure, most vulnerability management solutions link vulnerability data to exploit information, allowing tools like NeXpose and QualysGuard to list an asset, its vulnerabilities, and any related exploits. BeyondInsight does…

Post by Morey Haber April 23, 2014
Tags:
, , , , ,
smart rules manager for vulnerabilities

Staying on Top of the Latest Vulnerabilities with BeyondInsight v5.1

It’s no secret that dozens of new OS and application vulnerabilities are revealed every day. Staying on top of these new exposures normally requires paying for services or subscribing to multiple RSS feeds. BeyondInsight 5.1 provides customers with another option: a built-in, customizable vulnerability alerting system that delivers up-to-date information on the latest vulnerabilities in…

Post by Morey Haber April 21, 2014
Tags:
, , , , , ,