BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Our Newest Product Release: PowerBroker Identity Services 7.5

Posted June 26, 2013    Sarah Lieber

We are very excited for the announcement of our latest release of PowerBroker Identity Services 7.5, the industry’s most effective solution for bridging Linux, UNIX and Mac OS X assets into Active Directory. This latest update provides the strongest communications encryption to date, as well as the utmost flexibility with regards to event notification and management.

For those organizations that have made strategic investments in the Windows infrastructure, Active Directory plays the crucial role as the authenticated identity store, providing a central point of administration. For non-Windows assets, such as Linux, UNIX  and Mac OS X environments, user identities often reside in multiple locations and formats, which can add both security and compliance risk to operations. PowerBroker Identity Services enables organizations to bring those assets into the Active Directory policy, management and compliance umbrella, increasing accountability of those assets, while reducing the risk of unmanaged systems.

This newest release includes new capabilities in the following areas:

  • FIPS validation with AES 256 bit encryption, ensuring the fidelity of communications between assets and Active Directory
  • Support for Simple Network Management Protocol (SNMP), which dramatically increases the flexibility for customer-tailored notifications
  • Additional platform support for versions of CentOS,  Debian, Fedora, Mac OS X, OpenSuse, RHEL and Ubuntu

Receive a free 30 day trial of PowerBroker Identity Services Enterprise here

Tags:
, , , , , , , , , ,

Leave a Reply

Additional articles

asp-mvc

Exploiting MS14-059 because sometimes XSS is fun, sometimes…

Posted October 17, 2014    BeyondTrust Research Team

This October, Microsoft has provided a security update for System.Web.Mvc.dll which addresses a ‘Security Feature Bypass’. The vulnerability itself is in ASP.NET MVC technology and given its wide adoption we thought we would take a closer look. Referring to the bulletin we can glean a few useful pieces of information: “A cross-site scripting (XSS) vulnerability exists…

Tags:
4bestpracticesaudits-blog

Four Best Practices for Passing Privileged Account Audits

Posted October 16, 2014    Chris Burd

Like most IT organizations, your team may periodically face the “dreaded” task of being audited. Your process for delegating privileged access to desktops, servers, and infrastructure devices is a massive target for the auditor’s microscope. An audit’s findings can have significant implications on technology and business strategy, so it’s critical to make sure you’re prepared…

Tags:
, , , ,

Bad POODLE, Don’t Bite!

Posted October 16, 2014    BeyondTrust Research Team

Researchers at Google (Bodo Moller, Thai Duong, and Krzysztof Kotowicz) have discovered that the encryption schemes used by SSL 3.0 are exploitable (CVE-2014-3566). Although the majority of web servers implement Transport Layer Security (TLS), the majority of clients will downgrade to SSL 3.0 in an attempt to maintain interoperability between protocols. For example, when a…

Tags:
,