BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

PowerBroker for Windows Policy Through Retina CS Web Services

Posted May 29, 2013    Morey Haber

PowerBroker for Windows has traditionally relied on Active Directory Group Policy to populate assets with the latest rules and policies. The technology also contains a utility for managing off-line systems called PBDeploy and has met the challenges for many organizations when a domain is not available for authentication. With the growing number of portable Windows devices, remote users, and systems that may not even be connected to the domain, a new paradigm was needed to support policy distribution.

In PowerBroker for Windows 5.4, BeyondTrust introduced the Retina CS Threat Management Console for consolidated event management and reporting. With the introduction of PowerBroker for Windows 6.0, which will be Generally Available in a few weeks, BeyondTrust is proud to introduce the capability for Retina CS to also be a web service (non AD) host for client policies. This allows environments to host policies directly over the Internet (or internally) using certificate-based policies that can be distributed over standard HTTPS protocols. This technology can be deployed as software or as an appliance within your organization and allow you to benefit from the best of both worlds; the ability to host policies via Group Policy and/or Web Services. For existing clients, an upgrade to PowerBroker for Windows 6.0 with Retina CS will convert all your existing policies in Active Directory to the new release (completely and automatically) and allow you to export them into Retina CS Web Services for additional hosting options. There is no reason to recreate any of your rules.

Below is a screen shot of the Policy Management Editor for Retina CS using the new user interface available in version 6.0:

PBW-RCS-cricklewood

PowerBroker for Windows 6.0 is changing the way we think about privilege identity management. With new capabilities for File Integrity Monitoring, Session Monitoring, and Web Services based Policy Management, the technology can address the most complex architectures for any size environment. The solution comes with all the discovery capabilities of Retina (for free) and will help report on assets based on a discovered criteria. Therefore, privilege identity events are stored with complete details regarding a host’s processes, ports, shares, users, and even software installed. All of this is available for reviewing and reporting within Retina CS to PowerBroker for Windows clients (for free):

retinacs-dashboard

 

BeyondTrust is redefining traditional security. PowerBroker for Windows is taking a massive leap forward with its capabilities to host policies outside of the domain. It is not just about elevating applications anymore inside the corporate infrastructure; it is about managing every corporate asset for privileged use regardless of where it resides. We are confident this technology will change the way you think about user and asset management.

Launch a free evaluation today.

Tags:
, , , , ,

Additional articles

ovum-research

New Analyst SWOT Assessment Identifies Key Strengths of PowerBroker

Posted November 24, 2014    Scott Lang

Following on the heels of the Gartner PAM market guide and Frost & Sullivan review of Password Safe comes a new analyst review of our BeyondInsight and PowerBroker platforms, a SWOT assessment of BeyondTrust written by Ovum. Ovum’s honest and thorough review of BeyondTrust indicates that we are delivering, “…an integrated, one-stop approach to PAM….

Tags:
, , ,

Patented Windows privilege management brings you unmatched benefits

Posted November 24, 2014    Scott Lang

We are pleased to announce that BeyondTrust has been granted a new U.S. Patent (No. 8,850,549) for privilege management, validating our approach to helping our customers achieve least privilege in Windows environments. The methods and systems that we employ for controlling access to resources and privileges per process are unique to BeyondTrust PowerBroker for Windows….

Tags:
6

A Quick Look at MS14-068

Posted November 20, 2014    BeyondTrust Research Team

Microsoft recently released an out of band patch for Kerberos.  Taking a look at the Microsoft security bulletin, it seems like there is some kind of issue with Kerberos signatures related to tickets. Further information is available in the Microsoft SRD Blogpost So it looks like there is an issue with PAC signatures.  But what…

Tags:
, , , ,