Shared accounts with superuser privileges, or other high-level access rights and service accounts for application-to-application or application-to-database communication, can pose significant risks to all organizations. Using specialized password management tools can minimize these risks.
Los Angeles, CA (PRWEB) August 13, 2007
As the amount of applications and systems that users require access to escalates, so does the number of unique passwords that users must manage. This proliferation increases the likelihood of users forgetting their passwords and being locked out of systems, or mismanaging them and jeopardizing security. To alleviate this situation, Lieberman Software's Random Password Manager™ now allows users to store all of their passwords in an AES encrypted database and recover them when necessary.
In addition to securely storing user password information, the Password Vault can also archive passwords for IT components that administrators need to manage, such as hardware firewalls or network devices. Account information is entered into Random Password Manager's encrypted database through a secure, audited web interface. Delegated users who forget their credentials, and cannot access a system or application, can quickly retrieve their own passwords through the web interface, without interacting with the Help Desk or IT staff.
"To deal with the volume of passwords that must be managed, many organizations resort to such tactics as writing passwords on sticky notes or automatically logging users in to systems, which are both flawed security practices," said Chris Stoneff, Product Manager at Lieberman Software. "Other times administrators attempt to implement Single Sign-On solutions, but discover that these methods consume system resources and slow down network performance. Random Password Manager's new ability to centrally store all user passwords in an encrypted vault, and allow them to be retrieved on demand, is a significant security enhancement for organizations managing large, cross-platform environments."
Enterprise Security Management
The new Password Vault feature in Random Password Manager supplements the product's existing enterprise security management capabilities. Random Password Manager regularly randomizes the common account credentials that most organizations deploy on every system in the network. The danger of using common credentials is that if the local administrator password can be deciphered on just one system, an unauthorized user can gain peer-level access throughout the enterprise.
According to Gartner, "Shared accounts with superuser privileges, or other high-level access rights and service accounts for application-to-application or application-to-database communication, can pose significant risks to all organizations. Using specialized password management tools can minimize these risks." *
By automatically generating unique, complex administrator passwords for each system in the enterprise, Random Password Manager eliminates the threat of one compromised password providing unrestricted access throughout the network. Randomization is automatically conducted from a single console for all managed systems according to schedules established by the administrator. All actions performed by the product are logged and audited - providing a record of systems managed and passwords changed - helping organizations demonstrate compliance with Sarbanes-Oxley, HIPAA, PCI, and other government security mandates.
Random Password Manager is a multi-threaded application that does not require agents to be installed on clients. The product is certified for Microsoft Windows Vista, and also supports Windows Server 2003, Windows XP, Windows 2000, Windows NT, Linux, and UNIX. It runs on Windows Server 2003 and utilizes Microsoft SQL Server 2005 as its backend database. The web interface supports all standard web browsers on all platforms as well most mobile devices, such as Microsoft Pocket PC and other PDAs. Security is ensured through SSL encryption of data to the browser, AES-256 bit encryption of data in the database, and full auditing of all transactions.
Licensing and Availability
Random Password Manager is licensed by node and available now.
About Lieberman Software Corporation
Lieberman Software Corporation provides advanced security and systems management solutions that reduce the cost and complexity of administering the Windows enterprise. By automating time intensive systems maintenance tasks, Lieberman Software increases control over the Windows infrastructure, delivering improved productivity, performance, and audit-ready security. With products that simultaneously administer thousands of systems from a single console, Lieberman Software ensures that even the largest corporate, educational, and government enterprises remain managed, secure, and compliant. The company is a Microsoft Gold Certified Partner headquartered in Los Angeles, CA. For more information, please visit http://www.liebsoft.com.
*Gartner, Inc., "Toolkit: Password Management Tools for Shared Accounts and Service Accounts", Ant Allan, 11 January 2007.
Product and company names herein may be trademarks of their registered owners.
For more information, please contact:
Marketing Communications Manager
Lieberman Software Corporation