BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

PowerBroker for Windows Policy Through Retina CS Web Services

Posted May 29, 2013    Morey Haber

PowerBroker for Windows has traditionally relied on Active Directory Group Policy to populate assets with the latest rules and policies. The technology also contains a utility for managing off-line systems called PBDeploy and has met the challenges for many organizations when a domain is not available for authentication. With the growing number of portable Windows devices, remote users, and systems that may not even be connected to the domain, a new paradigm was needed to support policy distribution.

In PowerBroker for Windows 5.4, BeyondTrust introduced the Retina CS Threat Management Console for consolidated event management and reporting. With the introduction of PowerBroker for Windows 6.0, which will be Generally Available in a few weeks, BeyondTrust is proud to introduce the capability for Retina CS to also be a web service (non AD) host for client policies. This allows environments to host policies directly over the Internet (or internally) using certificate-based policies that can be distributed over standard HTTPS protocols. This technology can be deployed as software or as an appliance within your organization and allow you to benefit from the best of both worlds; the ability to host policies via Group Policy and/or Web Services. For existing clients, an upgrade to PowerBroker for Windows 6.0 with Retina CS will convert all your existing policies in Active Directory to the new release (completely and automatically) and allow you to export them into Retina CS Web Services for additional hosting options. There is no reason to recreate any of your rules.

Below is a screen shot of the Policy Management Editor for Retina CS using the new user interface available in version 6.0:

PBW-RCS-cricklewood

PowerBroker for Windows 6.0 is changing the way we think about privilege identity management. With new capabilities for File Integrity Monitoring, Session Monitoring, and Web Services based Policy Management, the technology can address the most complex architectures for any size environment. The solution comes with all the discovery capabilities of Retina (for free) and will help report on assets based on a discovered criteria. Therefore, privilege identity events are stored with complete details regarding a host’s processes, ports, shares, users, and even software installed. All of this is available for reviewing and reporting within Retina CS to PowerBroker for Windows clients (for free):

retinacs-dashboard

 

BeyondTrust is redefining traditional security. PowerBroker for Windows is taking a massive leap forward with its capabilities to host policies outside of the domain. It is not just about elevating applications anymore inside the corporate infrastructure; it is about managing every corporate asset for privileged use regardless of where it resides. We are confident this technology will change the way you think about user and asset management.

Launch a free evaluation today.

Tags:
, , , , ,

Additional articles

powerbroker-for-mac-diagram-small

PowerBroker for Mac: A Least-Privileged Apple a Day…

Posted July 27, 2015    Jason Silva

BeyondTrust PowerBroker for Mac reduces the risk of privilege misuse by enabling standard users on Mac OS X to perform administrative tasks successfully without entering elevated credentials.

Tags:
, ,
PrivilegedAccountManagement

On Demand Webinar – Now is the time for Privileged Account Management

Posted July 24, 2015    BeyondTrust Software

In this webinar, SANS Instructor and Founder of Voodoo Security, Dave Shackleford, will revisit several hacking and breach scenarios that involved privileged accounts, and use these as examples while discussing tools and tactics to get this problem under control once and for all.

Tags:
, ,
dave-shackleford-headshot

Privileged Account Management: The Time is Now

Posted July 22, 2015    Dave Shackleford

There’s plenty of problems we don’t have great options for in InfoSec today. Malware is a pain point that keeps evolving rapidly. 0-day exploits are tough to prepare for. Privileged account management? We got this. We know the root causes, we know how it manifests, we know how to get it under control effectively, and there are great technology solutions that are enterprise-class.

Tags:
, ,