(Formerly Cloakware Server Password Manager)
How does your organization manage the thousands of privileged passwords which your IT administrators, applications, and scripts use to access and maintain your enterprise databases, storage, mainframes, network devices and other applications and systems?
If you're like most organizations, you've adopted manual processes
for managing privileged passwords or you are not managing them at
all. As a result, your most sensitive passwords are often widely
known and shared among administrators, hard-coded into applications
and scripts, rarely--if ever--changed, and almost impossible to find
or re-certify when someone changes roles or leaves the organization.
Many compliance requirements magnify the privileged password management problem by requiring unique credentials for each administrator and application-to-application (A2A) account, minimal role entitlements, frequent password updates, and strong passwords.
Manual processes simply can't cope with the scale of the password management problem in large IT operations. Expanding, merging or downsizing your IT operations only increases the password management risks and regulatory pressure.
Cloakware Password Authority™ replaces your error-prone manual processes with robust, automated policy-driven processes, enabling you to meet your password compliance requirements and ensure the continuity and security of your IT operations.
Password Authority benefits organizations through the four "A's" of effective password management:
Cloakware Password Authority is the only privileged password management solution architected from the ground up to meet the demanding requirements of large global IT operations. Scalable, flexible and enterprise-ready, it can manage millions of credentials for applications and administrators alike across multi-site, heterogeneous environments. Password Authority’s push technology simplifies the distribution of password updates to systems and custom applications across large distributed operations.
Simplify compliance. Enhance control, security and continuity.
The server-based component architecture and extensible
connector technology allows you to integrate virtually any back-end
process. Out of the box, Password Authority supports a wide variety
of common datacenter systems such as databases, servers and routers.
Easy to use templates make it easy to add plug-and-play support for
other systems.
The Password Authority server components run on:
The Password Authority client components (for A2A processes) run on:
An administrative CLI and JAVA API enable you to integrate custom administration, workflow and deployment applications with Password Authority.
Password Authority is designed with enterprise-grade "five-nines" reliability in mind. It supports high-availability techniques such as load balancing, clustering, failover/failback, data replication and verification, multi-site deployment, multi-homed access and secure local-caching to ensure that credentials are available when they are needed.
Password Authority leverages Cloakware’s deep expertise in encryption and software protection techniques to ensure that credentials remain protected at every stage of their use. Critical information like passwords, keys and business logic are protected while on disk, in memory and on the network. Risk mitigation is all about applying the appropriate security techniques to address the threats that have been identified against your systems. Password Authority was designed to address the Insider Threat. Password Authority employs many layers of defense and many security techniques not available in competitive offerings, including data and control flow transformations to help protect against both static and dynamic analysis attacks.
>Learn more about Cloakware's encryption and software protection techniques.
On top of this secure infrastructure, Password Authority ensures that only authorized applications and administrators can access sensitive credentials through a least-privilege approach. Role-based authentication and grouping capabilities ensure that each Cloakware Password Authority administrator’s span-of-control is customizable to their job function. Separation of duties and delegation of authority are achieved as a result, with staff and contractors receiving only the access they need to perform their tasks. Identity-based authentication of unattended applications ensure that application scope-of-access can be controlled through flexible yet granular policies.
Regulatory auditors are becoming more sophisticated every year and are demanding ever more details about your operations. Password Authority gives you the detailed information you need to prove password compliance and ensure best practices. Activity logging and reporting data are at your fingertips and also available in standard syslog format. You can easily extend your analysis with third-party aggregation, correlation, monitoring, notification, and alerting tools to help prevent fraud, data breaches and misuse of corporate data.
Role-based tasks and workflows are presented in a thoughtfully-designed Web browser interface that enables even novice or occasional users of Password Authority to manage passwords efficiently and confidently. All functions are also accessible through a CLI and JAVA API to enable integration with custom scripts and applications. Detailed online documentation helps users find answers quickly.
Don't let this contractor steal your critical data. Learn how to reduce the threat of hard-coded passwords.
The market terms Privileged Password Management (PPM), Privileged User Password Management (PUPM) and Shared/Service Account Password Management (SAPM) all refer to managing the elevated privilege accounts. Learn why organizations adopt privileged password management solutions.