26 October 2016
Today, I participated in a great presentation of CyberArk’s Privileged Account Security Solution. The features of this product are really impressive, in particular the consistent implementation of the Separation of Duties principle to enforce rules like ‘the administrator of the Enterprise Password Vault must not access any of the managed systems’ or ‘an auditor must not manage connections’. To enforce such rules is a tough job in many systems, but an easy task if Separation of Duties is implemented as core function.
CyberArk provides all the capabilities for the efficient management of local privileged accounts. Thus the solution is perfectly suited to mitigate Pass-the-Hash attacks without increased management effort.
Have a good day.