BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

PowerBroker for Windows Policy Through Retina CS Web Services

Posted May 29, 2013    Morey Haber

PowerBroker for Windows has traditionally relied on Active Directory Group Policy to populate assets with the latest rules and policies. The technology also contains a utility for managing off-line systems called PBDeploy and has met the challenges for many organizations when a domain is not available for authentication. With the growing number of portable Windows devices, remote users, and systems that may not even be connected to the domain, a new paradigm was needed to support policy distribution.

In PowerBroker for Windows 5.4, BeyondTrust introduced the Retina CS Threat Management Console for consolidated event management and reporting. With the introduction of PowerBroker for Windows 6.0, which will be Generally Available in a few weeks, BeyondTrust is proud to introduce the capability for Retina CS to also be a web service (non AD) host for client policies. This allows environments to host policies directly over the Internet (or internally) using certificate-based policies that can be distributed over standard HTTPS protocols. This technology can be deployed as software or as an appliance within your organization and allow you to benefit from the best of both worlds; the ability to host policies via Group Policy and/or Web Services. For existing clients, an upgrade to PowerBroker for Windows 6.0 with Retina CS will convert all your existing policies in Active Directory to the new release (completely and automatically) and allow you to export them into Retina CS Web Services for additional hosting options. There is no reason to recreate any of your rules.

Below is a screen shot of the Policy Management Editor for Retina CS using the new user interface available in version 6.0:

PBW-RCS-cricklewood

PowerBroker for Windows 6.0 is changing the way we think about privilege identity management. With new capabilities for File Integrity Monitoring, Session Monitoring, and Web Services based Policy Management, the technology can address the most complex architectures for any size environment. The solution comes with all the discovery capabilities of Retina (for free) and will help report on assets based on a discovered criteria. Therefore, privilege identity events are stored with complete details regarding a host’s processes, ports, shares, users, and even software installed. All of this is available for reviewing and reporting within Retina CS to PowerBroker for Windows clients (for free):

retinacs-dashboard

 

BeyondTrust is redefining traditional security. PowerBroker for Windows is taking a massive leap forward with its capabilities to host policies outside of the domain. It is not just about elevating applications anymore inside the corporate infrastructure; it is about managing every corporate asset for privileged use regardless of where it resides. We are confident this technology will change the way you think about user and asset management.

Launch a free evaluation today.

Tags:
, , , , ,

Additional articles

webinar_chalk

Webinar March 4th: Recreating the Carbanak Breach & Techniques for Mitigating Similar Attacks

Posted March 3, 2015    Lindsay Marsh

Join BeyondTrust Research and Development team for an in-depth live webinar that will explore the attack vectors used in the Carbanak Bank Breach and share successful mitigation techniques needed to prevent this type of attack.

Tags:
, ,
VMware Hardening Guidelines-img3

How to Audit VMware ESX and ESXi Servers Against the VMware Hardening Guidelines with Retina CS

Posted February 27, 2015    BeyondTrust Research Team

Retina CS Enterprise Vulnerability Management has included advanced VMware auditing capabilities for some time, including virtual machine discovery and scanning through a cloud connection, plus the ability to scan ESX and ESXi hosts using SSH. However, in response to recent security concerns associated with SSH, VMware has disabled SSH by default in its more recent…

Tags:
, , , ,
dave-shackleford-headshot

Privileged Passwords: The Bane of Security Professionals Everywhere

Posted February 19, 2015    Dave Shackleford

Passwords have been with us since ancient times. Known as “watchwords”, ancient Roman military guards would pass a wooden tablet with a daily secret word engraved from one shift to the next, with each guard position marking the tablet to indicate it had been received. The military has been using passwords, counter-passwords, and even sound…

Tags:
, , ,