BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Implementing Least Privilege Around the World with PowerBroker for Windows

Posted July 17, 2014    Morey Haber

BeyondTrust recognizes that international, multilingual businesses have unique operating challenges, especially when it comes to implementing enterprise software. PowerBroker for Windows is a least-privilege solution often deployed across thousands of systems spanning multiple geographies and protecting users of diverse backgrounds.

Earlier this year, PowerBroker for Windows introduces new data privacy features for EMEA and APAC, demonstrating our commitment to global customers. This month’s release of PowerBroker for Windows 6.6 builds upon this philosophy and by introducing automated client-side localization of end-user dialogs.

While PowerBroker for Windows is usually transparent to end users, enforcing least privilege and monitoring sessions, localization comes in handy when end-user interaction is required. For instance, when users need to justify requests for elevated application privileges, or when the solution displays one-time passcodes or access denials. In all cases, PowerBroker for Windows can be configured to automatically identify the end user’s language preference and display messages in any language supported by the Windows OS:

PowerBroker for Windows can be configured to automatically identify the end user’s language preference

By default, the solution includes sample text for six languages and offers two methods for adding messages in other languages:

  1. Administrators can enter text directly into the user interface.
  2. The solution can import a spreadsheet of text, with languages specified in the columns and translations in the rows. This enables bulk import and hosting of languages when direct access to the solution for translation may not be possible.

As a result, end-user messages customized to the user’s language preference and delivered in standard PowerBroker for Windows dialog templates.

BeyondTrust is committed to helping our customers implement least-privilege best practices everywhere they operate, for all employees.

» Learn more about PowerBroker for Windows
» See what else is new in version 6.6

Tags:
, ,

Leave a Reply

Additional articles

How To Implement The Australian Signals Directorate’s Top 4 Strategies

Posted October 20, 2014    Morey Haber

The Australian Signals Directorate (ASD), also known as the Defence Signals Directorate, has developed a list of strategies to mitigate targeted cyber intrusions. The recommended strategies were developed through ASD’s extensive experience in operational cyber security, including responding to serious security intrusions and performing vulnerability assessments and penetration testing for Australian government agencies. These recommendations…

Tags:
, , , ,
asp-mvc

Exploiting MS14-059 because sometimes XSS is fun, sometimes…

Posted October 17, 2014    BeyondTrust Research Team

This October, Microsoft has provided a security update for System.Web.Mvc.dll which addresses a ‘Security Feature Bypass’. The vulnerability itself is in ASP.NET MVC technology and given its wide adoption we thought we would take a closer look. Referring to the bulletin we can glean a few useful pieces of information: “A cross-site scripting (XSS) vulnerability exists…

Tags:
4bestpracticesaudits-blog

Four Best Practices for Passing Privileged Account Audits

Posted October 16, 2014    Chris Burd

Like most IT organizations, your team may periodically face the “dreaded” task of being audited. Your process for delegating privileged access to desktops, servers, and infrastructure devices is a massive target for the auditor’s microscope. An audit’s findings can have significant implications on technology and business strategy, so it’s critical to make sure you’re prepared…

Tags:
, , , ,