BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

PowerBroker for Windows Policy Through Retina CS Web Services

Posted May 29, 2013    Morey Haber

PowerBroker for Windows has traditionally relied on Active Directory Group Policy to populate assets with the latest rules and policies. The technology also contains a utility for managing off-line systems called PBDeploy and has met the challenges for many organizations when a domain is not available for authentication. With the growing number of portable Windows devices, remote users, and systems that may not even be connected to the domain, a new paradigm was needed to support policy distribution.

In PowerBroker for Windows 5.4, BeyondTrust introduced the Retina CS Threat Management Console for consolidated event management and reporting. With the introduction of PowerBroker for Windows 6.0, which will be Generally Available in a few weeks, BeyondTrust is proud to introduce the capability for Retina CS to also be a web service (non AD) host for client policies. This allows environments to host policies directly over the Internet (or internally) using certificate-based policies that can be distributed over standard HTTPS protocols. This technology can be deployed as software or as an appliance within your organization and allow you to benefit from the best of both worlds; the ability to host policies via Group Policy and/or Web Services. For existing clients, an upgrade to PowerBroker for Windows 6.0 with Retina CS will convert all your existing policies in Active Directory to the new release (completely and automatically) and allow you to export them into Retina CS Web Services for additional hosting options. There is no reason to recreate any of your rules.

Below is a screen shot of the Policy Management Editor for Retina CS using the new user interface available in version 6.0:

PBW-RCS-cricklewood

PowerBroker for Windows 6.0 is changing the way we think about privilege identity management. With new capabilities for File Integrity Monitoring, Session Monitoring, and Web Services based Policy Management, the technology can address the most complex architectures for any size environment. The solution comes with all the discovery capabilities of Retina (for free) and will help report on assets based on a discovered criteria. Therefore, privilege identity events are stored with complete details regarding a host’s processes, ports, shares, users, and even software installed. All of this is available for reviewing and reporting within Retina CS to PowerBroker for Windows clients (for free):

retinacs-dashboard

 

BeyondTrust is redefining traditional security. PowerBroker for Windows is taking a massive leap forward with its capabilities to host policies outside of the domain. It is not just about elevating applications anymore inside the corporate infrastructure; it is about managing every corporate asset for privileged use regardless of where it resides. We are confident this technology will change the way you think about user and asset management.

Launch a free evaluation today.

Tags:
, , , , ,

Additional articles

How To Implement The Australian Signals Directorate’s Top 4 Strategies

Posted October 20, 2014    Morey Haber

The Australian Signals Directorate (ASD), also known as the Defence Signals Directorate, has developed a list of strategies to mitigate targeted cyber intrusions. The recommended strategies were developed through ASD’s extensive experience in operational cyber security, including responding to serious security intrusions and performing vulnerability assessments and penetration testing for Australian government agencies. These recommendations…

Tags:
, , , ,
asp-mvc

Exploiting MS14-059 because sometimes XSS is fun, sometimes…

Posted October 17, 2014    BeyondTrust Research Team

This October, Microsoft has provided a security update for System.Web.Mvc.dll which addresses a ‘Security Feature Bypass’. The vulnerability itself is in ASP.NET MVC technology and given its wide adoption we thought we would take a closer look. Referring to the bulletin we can glean a few useful pieces of information: “A cross-site scripting (XSS) vulnerability exists…

Tags:
4bestpracticesaudits-blog

Four Best Practices for Passing Privileged Account Audits

Posted October 16, 2014    Chris Burd

Like most IT organizations, your team may periodically face the “dreaded” task of being audited. Your process for delegating privileged access to desktops, servers, and infrastructure devices is a massive target for the auditor’s microscope. An audit’s findings can have significant implications on technology and business strategy, so it’s critical to make sure you’re prepared…

Tags:
, , , ,