Enterprise Password Vault
Cyber-Ark's Enterprise Password Vault enables organizations to secure, manage, automatically change and log all activities associated with all types of Privileged Passwords such as administrator on a Windows server, Root on a UNIX server, Cisco Enable on a Cisco device, as well as embedded passwords found in applications and scripts.
Cyber-Ark Case Study
Our requirement for sharing third party data seemed unobtainable until GSS introduced us to CyberArk we now have the central point of entry and exit for secure data for Virgin Money
Eddy Deegan
IT Security Manager
Virgin Money
What are Privileged Passwords?
Privileged passwords are the non-personal passwords that exist in virtually every device or software application in an enterprise, such as root on a UNIX server, Administrator on a Windows workstation, and Cisco Enable on a Cisco device.
Ever logged into a workstation and seen your own login name (such as "John_Doe") and wondered why there is also login option for "Administrator?" The answer: "Administrator" is a Privileged User, a powerful, pre-built account that can only be accessed by Privileged Passwords which in turn are:
- Found on virtually every piece of hardware and software in an organization
- Numerous; the average enterprise has tens of thousands of Privileged Passwords
- Extremely powerful, allowing a user to logon on anonymously and have complete control of the target system and full access to all of the information on that system
- Nearly impossible to disable, unlike a personal identity such as JDoe
- Shared, which means that the system does not track WHO logged in as an Administrator, merely that a login occurred. (maybe separate the following as it's own bullet/highlight - this is a a key point
- Time-consuming and costly to manually update
Privileged Password Management is the process through which an organization secures, manages and tracks all activities associated with the most powerful passwords within their organization. These Privileged Password accounts include Windows local and domain admins, UNIX root, Oracle system, SQL SA, Cisco enable, Help desk firecall IDS, Process and application IDS, and so on.
The Enterprise Password Vault
Enterprise Password Vault enables organizations to easily protect, manage and update Privileged Passwords of all kinds, from routers and servers to databases and hard-coded scripts. How? The software creates a central point for storing, accessing, and maintaining administrative passwords of all kinds, while also creating a detailed audit trail of all privileged password activities including requests, accesses, retrievals, policy applications and even password reset processes.
Features
From streamlining password maintenance to delivering the rock-solid security of a digital vault, the many benefits of Enterprise Password Vault are powered by a robust set of system capabilities, such as:
- A fully featured web client providing a single console for requesting, accessing and managing privileged passwords throughout the enterprise.
- Central Password Manager, a key module that automates and manages privileged password resets on all types of target systems.
- A wide array of features for enhancing security and streamlining workflow.
- Built-in audit reports: prove that you have rock-solid control over your most critical systems and passwords.
- Easy integration with existing infrastructure.
