What s New in Centrify Privilege Service Centrify Identity Platform 15.4



Similar documents
Centrify Cloud Connector Deployment Guide

Centrify Server Suite Management Tools

Office 365 Single Sign-On: High Availability Without High Complexity

Centrify Suite Enterprise Edition Online Training

An Overview of Samsung KNOX Active Directory and Group Policy Features

Google Apps Deployment Guide

Centrify OS X Basic Jump Start

Centrify DirectAudit Jump Start Service

Centrify Express72 Jump Start Upgrade Service

What s New in Centrify Server Suite 2015

An Overview of Samsung KNOX Active Directory-based Single Sign-On

Speeding Office 365 Implementation Using Identity-as-a-Service

Apps. Devices. Users. Data. Deploying and managing applications across platforms is difficult.

Centrify Identity Service and Mac - Online Training

Microsoft Enterprise Mobility and Client Futures

JumpCloud is your Directory-as-a-Service. A fully managed directory to rule your infrastructure whether on-premise or in the cloud.

Secure & Unified Identity

Best Practices for Adding Macs to Microsoft Networks

The Challenges of Managing Multiple Cloud Identities and Enterprise Identity by BlackBerry

Ensuring the Security of Your Company s Data & Identities. a best practices guide

Samsung KNOX: An Overview for Business Customers

PROVIDING SINGLE SIGN-ON TO AMAZON EC2 APPLICATIONS FROM AN ON-PREMISES WINDOWS DOMAIN

Enforcing Enterprise-out Security for Cloud Servers

Windows Least Privilege Management and Beyond

Mobile device and application management. Speaker Name Date

Becoming PCI DSS Compliant

Top Six Things to Consider with an Identity-as-a-Service (IDaaS) Solution

Enterprise Mobility Services

identity as the new perimeter: securely embracing cloud, mobile and social media agility made possible

How To Make Your Computer System More Secure And Secure

Enterprise Mobility Suite (EMS) Sean Lewis Principal Partner Technology Strategist

NCSU SSO. Case Study

Identity & Access Management in the Cloud: Fewer passwords, more productivity

Unified Identity Management

Centrify Mobile Authentication Services

Centrify Mobile Authentication Services for Samsung KNOX

Agenda. Enterprise challenges. Hybrid identity. Mobile device management. Data protection. Offering details

Overview of Microsoft Enterprise Mobility Suite (EMS) Cloud University

managing SSO with shared credentials

How To Manage A Privileged Account Management

Flexible Identity Federation

Ensuring the security of your mobile business intelligence

expanding web single sign-on to cloud and mobile environments agility made possible

Citrix ShareFile Enterprise technical overview

SECURE ACCESS TO THE VIRTUAL DATA CENTER

How To Manage A Plethora Of Identities In A Cloud System (Saas)

A Practical Path to Unified Identity Across Data Center, Cloud and Mobile

Identity Governance Evolution

Who Moved My Secure Perimeter?

Direct Control for Mobile & Supporting Mac OS X in Windows Environments

Assignment # 1 (Cloud Computing Security)

Addressing the United States CIO Office s Cybersecurity Sprint Directives

Managing UNIX Generic and Service Accounts with Active Directory

Automating User Management and Single Sign-on for Salesforce.com OKTA WHITE PAPER. Okta Inc nd Street Suite 350 San Francisco CA, 94107

Stop Password Sprawl with SaaS Single Sign-On via Active Directory

Mobile Admin Architecture

EXECUTIVE VIEW. Centrify Identity Service. KuppingerCole Report. by Martin Kuppinger January 2015

3Si Managed Authentication Services Service Description

Samsung KNOX EMM Authentication Services. SDK Quick Start Guide

Workspot Configuration Guide for the Cisco Adaptive Security Appliance

Microsoft Azure Multi-Factor authentication. (Concept Overview Part 1)

A Security Overview of the Centrify Cloud

Enterprise Mobility Suite Overview. Joe Kuster Catapult Systems

Centrify Server Suite Health Check

Virtual Cabinet Document Portal User Guide

Google Identity Services for work

Best Practices for Privileged Identity Management in the Modern Enterprise

Vistara Lifecycle Management

Centrify Server Suite, Standard Edition Design Service

BOMGAR FOR VENDOR ACCESS SECURE REMOTE ACCESS FOR THIRD-PARTIES

Basic User Guide for the IAS VPN (

ShareFile Enterprise technical overview

Centrify Cloud Management Suite

Implementing Microsoft Azure Infrastructure Solutions

NEXT-GENERATION, CLOUD-BASED SERVER MONITORING AND SYSTEMS MANAGEMENT

Manage Your Mac with Active Directory Group Policies

White Paper. McAfee Cloud Single Sign On Reviewer s Guide

Deploying NetScaler Gateway in ICA Proxy Mode

Ensuring the security of your mobile business intelligence

Microsoft Enterprise Mobility Suite

Alex Wong Senior Manager - Product Management Bruce Ong Director - Product Management

Course 20533: Implementing Microsoft Azure Infrastructure Solutions

Manage all your Office365 users and licenses

Enterprise IT is complex. Today, IT infrastructure spans the physical, the virtual and applications, and crosses public, private and hybrid clouds.

activecho Frequently Asked Questions

Sophos UTM. Remote Access via SSL Configuring Remote Client

When your users take devices outside the corporate environment, these web security policies and defenses within your network no longer work.

Symantec App Center. Mobile Application Management and Protection. Data Sheet: Mobile Security and Management

Extend and Enhance AD FS

Avoid the Hidden Costs of AD FS with Okta

The Essential Security Checklist. for Enterprise Endpoint Backup

Creating a Single Sign on Web Portal using Azure. Robert Crane Office 365

The Centrify Vision: Unified Access Management

Cisco Mobile Collaboration Management Service

Microsoft Enterprise Mobility Suite

Securing Privileges in the Cloud. A Clear View of Challenges, Solutions and Business Benefits

1. What are the System Requirements for using the MaaS360 for Exchange ActiveSync solution?

Enterprise Security with mobilecho

Deployment Guide ICA Proxy for XenApp

AVG Business Secure Sign On Active Directory Quick Start Guide

Transcription:

CENTRIFY PRIVILEGE SERVICE WHAT S NEW What s New in Centrify Privilege Service Centrify Identity Platform 15.4 Centrify Privilege Service Centrify Privilege Service is a cloud-based password and access management solution. Privilege Service combines shared account password management with the ability to securely manage and audit access by internal and outsourced IT. The net result is increased security when sharing privileged accounts, simplified compliance, and secure remote access to on-premises and cloud-based infrastructure. Privilege Service is built on the Centrify Identity Platform and delivered as Software-as-a-Service (SaaS) from the Centrify Cloud. In addition to its powerful features for password and access management, Privilege Service includes all the features and functionality of Centrify Identity Service App+ Edition. Privilege Service complements Centrify Server Suite, which combines comprehensive bridging of Linux and UNIX systems to Active Directory with powerful privilege management and session monitoring across Windows, Linux and UNIX systems. Built on the Centrify Identity Platform The foundation for Privilege Service is the Centrify Identity Platform, the industry s first cloud-based platform built from the ground up to provide secure, always-on identity management services for end users and privileged users. The Identity Platform provides core services for secure data storage, directories for users, resources and applications, authentication services (both single and multi-factor), and reporting. Privilege Service leverages the Identity Platform and adds features that enable authorized access to your infrastructure regardless of where it s deployed on-premises or in the cloud and control and management of shared accounts and passwords. Privilege Service is delivered from the Centrify Cloud through your Web browser, and is secure, simple to use, and easy to deploy. Secure Data Storage Your data is protected in the Centrify Cloud. Privilege Service uses the secure data store of the Centrify Identity Platform to protect all user, resource, account, and password information, at-rest and in-motion. Depending on your needs, you can choose from additional options for different levels of data and compute isolation in the Centrify Cloud hosted on Microsoft Azure. 2015 CENTRIFY CORPORATION. ALL RIGHTS RESERVED. NEW001578EN-04212015 1

Features and Benefits Manage Passwords for Local and Service Accounts Privilege Service can manage passwords for local and service accounts on servers and network hardware. Managed passwords are automatically changed as soon as the account is added to Privilege Service. From that time forward, only Privilege Service will know the password. Admins can t share the password, and unauthorized users can t login with that account. Complex, high-entropy passwords are created for Privilege Service at run-time by Microsoft.NET cryptography libraries. 2015 CENTRIFY CORPORATION. ALL RIGHTS RESERVED. NEW001578EN-04212015 2

Password Checkout Authorized users can checkout account passwords for a limited duration, displaying them in plain text or copying them to the system clipboard. All password checkouts are audited and associated with the user who logged into Privilege Service and performed the checkout. Automatic Password Reset For managed passwords, Privilege Service automatically generates a new password and changes the password: When the account is added to Privilege Service When the password s checkout interval expires 2015 CENTRIFY CORPORATION. ALL RIGHTS RESERVED. NEW001578EN-04212015 3

Remote Management Sessions Privilege Service enables authorized users to launch management sessions for resources directly from the Privilege Service portal within the user s browser. Sessions use standard HTTPS, SSH and RDP protocols to connect to resources, and are always protected end-to-end. 2015 CENTRIFY CORPORATION. ALL RIGHTS RESERVED. NEW001578EN-04212015 4

Use Shared Accounts without Disclosing Passwords Authorized users can login to resources using shared accounts without knowing the passwords, and without Privilege Service disclosing the passwords to them. This enables IT admins to use accounts that must be shared for routine management, while stopping password sharing and unauthorized access. Limit Access to Resources Unlike a VPN that gives users visibility to the entire network, Privilege Service enables you to grant access to resources on a per-resource basis. This means that you can easily give your most privileged internal IT admins access to as much of your infrastructure as necessary, while limiting access by an outsourced team to only the servers and network hardware their business role requires. Access from any Location Privilege Service is delivered as Software-as-a-Service (SaaS) to the user s browser. Authorized users can log in from any location that can reach the Centrify Cloud, and user login is context aware. For example, when users log in from outside the corporate network, you can require Centrify s multi-factor authentication for security stronger than a user name and password. Audit and Report User Activity Privilege Service automatically audits and keeps a record of all user and administrative activity in the portal. Password checkouts and remote management sessions are always associated with the user account that logged into Privilege Service and performed the activity. Simple reporting is provided through the user interface, and users can create and share their own custom reports for more complex queries. Optional Gateway-based Session Monitoring Privilege Service can optionally capture screen activity for remote management sessions, giving supervisors and auditors a record of the actions taken by a user on a server or network device. Session monitoring is integrated with the DirectAudit feature set of Centrify Server Suite, Enterprise Edition. You can use a Centrify audit installation independently with Privilege Service, or leverage an existing Server Suite, Enterprise Edition installation and combine both Privilege Service and Server Suite session monitoring in one database, leveraging a single set of query and management tools. Centrify Mobile Authenticator lets you do multi-factor authentication from any device. Securely Store Static Passwords Privilege Service can optionally store an account password without managing it. The password will be securely stored and can be checked out or used for remote management sessions, but will not be changed automatically by Privilege Service. 2015 CENTRIFY CORPORATION. ALL RIGHTS RESERVED. NEW001578EN-04212015 5

SSH Proxy A common scenario for Privilege Service is management of the UNIX or Linux root account. If the computer is configured to prevent the root user from opening a Secure Shell (SSH) session, you can tell Privilege Service to use a proxy account on that computer to open the SSH sessions necessary for password and remote management. Platform Support Privilege Service supports local and service password management on the same set of Windows, UNIX and Linux server operating systems as Centrify Server Suite 2015. In addition, Privilege Server supports five network hardware operating systems for secure storage and use of account passwords for checkout and remote management sessions. Cisco IOS Cisco NX-OS Juniper JUNOS HP ProCurve HP Comware 2015 CENTRIFY CORPORATION. ALL RIGHTS RESERVED. NEW001578EN-04212015 6

Contact Centrify Centrify delivers secure and unified identity management for end users and privileged users across cloud, mobile and data center environments. Centrify's unified identity management software and cloud-based Identity-as-a-Service (IDaaS) solutions leverage an organization's existing identity infrastructure to enable single sign-on, multi-factor authentication, privileged identity management, shared account password management, auditing for compliance and enterprise mobility management. Centrify customers can typically reduce their total cost of identity management and compliance by more than 50 percent, while improving business agility and overall security. Centrify is used by more than 5,000 customers worldwide, including nearly half of the Fortune 50 and more than 60 Federal agencies. Centrify is a registered trademark and Centrify Server Suite and Centrify Identity Service are trademarks of Centrify Corporation in the United States and other countries. All other trademarks are the property of their respective owners. SANTA CLARA, CALIFORNIA: +1 (669) 444-5200 EMAIL: sales@centrify.com EMEA: +44 (0) 1344 317950 WEB: www.centrify.com ASIA PACIFIC: +61 1300 795 789 BRAZIL: +55 11 3958 4876 LATIN AMERICA: +1 305 900 5354 2015 CENTRIFY CORPORATION. ALL RIGHTS RESERVED. NEW001578EN-04212015 7

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information