SHARED ACCOUNT PASSWORD MANAGEMENT
Control Shared Access to Privileged Accounts
Give your authorized internal users, outsourced IT and third party vendors secure, always-on access to critical shared account passwords, while maintaining control over who has access, which account passwords they have access to and how those passwords are managed.
Secure Checkout of Account Passwords
Authorized IT, whether internal or outsourced, and third party vendors can check out passwords for accounts for a limited duration. Privilege Service provides the option to take passwords under its full control, where it automatically changes the password after the checkout expires or simply store the password for future access without changing it.
Session Establishment Without Disclosing Passwords
Authorized users can access resources using shared accounts without knowing the passwords and Privilege Service will not expose the passwords. IT admins can use shared accounts without risk of password sharing or unauthorized access.
Role-based Access Controls for Checkouts and Privileged Sessions
Privilege Service provides you with both global and granular control of permissions for account usage and password access. Secure by default, users have no access to resource configurations or passwords, unless explicitly granted.
“Break-glass” Access to Passwords From a Mobile Device
Get controlled, emergency access to privileged account passwords from your mobile device enrolled in the Centrify Identity Platform. Secured password checkout requires a PIN or fingerprint validation. Checkout automatically times out based on per-resource policy.
Secure, Encrypt and Manage Application Passwords
Prevent cyberattacks that target privileged account credentials and streamline operations by eliminating hard-coded, plain text account passwords from scripts and applications. Applications and scripts authenticate and retrieve passwords securely without human intervention, enabling organizations to meet compliance and security policies.
Secure and Encrypted Storage of Your Data
Your data is securely stored using the Centrify Identity Platform for all user, resource, account, and password information. Privilege Service also supports SafeNet KeySecure key management appliances from Gemalto as an alternative for encrypted storage of account passwords.
Best Practices for Privileged Identity Management in the Modern Enterprise
This paper explores the trends impacting data security for today’s modern enterprise — a hybrid organization with infrastructure on premises and in the cloud, and best practices on how to manage and govern privileged user access to mitigate risk.