BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Network Devices Need Least Privilege Too

Posted December 21, 2010    Peter McCalister

Any security infrastructure at an organization is only effective as its weakest link.  All too often, the weakest link in today’s enterprise networks are the non-production servers and network devices not deemed mission critical.  Eliminating shared passwords and logging activities down to the keystroke level on SSH-based network devices is a critical success factor for eliminating that security “weakest link”.

Implementing least privilege with a privilege identity management solution is the only way to ensure network devices aren’t susceptible to intentional, accidental or indirect misuse of privilege.  It closes an often overlooked “back door” frequented by hackers and malware who hijack accounts with admin or excessive privilege.

As seen in this diagram there are three levels of risk mitigation available.

  1. Vaulting passwords will let you know who was using the resource and when, but not what they did.
  2. Session management gives the who and when as well as what they did by logging everything and therefore, from a forensic perspective, you will know how to “unwind” what was done.
  3. Privilege delegation does all of the above, but also eliminates the possibility of someone doing something they should not be doing, thus stopping the problem before it occurs.

Implementing a privilege identity management solution across SSH based network devices can deliver the following key benefits:

  • Transparent role-based access to non-mission critical servers and devices
  • Full keystroke logging with firecall capability and auditing
  • Agentless deployment, no performance impact
  • Instantly indexable and searchable logging

If you are interested in testing out a least privilege solution for yourself then check out the free evaluation of BeyondTrust’s PowerBroker Express today.

Leave a Reply

Additional articles

CyberResiliency

6 things I like about Gartner’s Cyber Resiliency Strategy

Posted August 27, 2015    Nigel Hedges

There were 6 key principles, or recommendations, that Gartner suggested were important drivers towards a great cyber resiliency posture. I commented more than once during the conference that many of these things were not new. They are all important recommendations that are best when placed together and given to senior management and the board – a critical element of organisations that desperately need to “get it”.

Tags:
,
powerbroker-difference-1

Why Customers Choose PowerBroker: Flexible Deployment Options

Posted August 26, 2015    Scott Lang

BeyondTrust commissioned a study of our customer base in early 2015 to determine how we are different from other alternatives in the market. What we learned was that there were six key differentiators that separate BeyondTrust from other solution providers in the market. We call it the PowerBroker difference,

Tags:
, ,
Mac-Security-Enterprise

On Demand Webinar: Security Risk of Mac OS X in the Enterprise

Posted August 20, 2015    BeyondTrust Software

In the last several years, Mac administrators have come to realize that they may be just as vulnerable to exploits and malware as most other operating systems. New malware and adware is released all the time, and there have been serious vulnerabilities patched by Apple in the past several years, some of which may afford attackers full control of your systems.

Tags:
, ,