Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

12/3/2007
07:00 AM
50%
50%

Passlogix Adds Features

Intros on-demand edition of its v-GO Sign-On Platform and a Shared Accounts Manager module for managing privileged accounts

NEW YORK -- Passlogix(r), Inc., today announced a breakthrough on-demand edition of its market-leading v-GO(r) Sign-On Platform(tm) that simplifies enterprise single sign-on (ESSO) deployments for both administrators and end users by enabling the client software to be accessed with a simple click on a link or pre-loaded on USB memory sticks. This industry-first software distribution strategy allows organizations to extend single sign-on to users with computers not managed by the enterprise, broadening ESSO's reach to users previously unable to benefit from the technology's password management capabilities.

"Our new v-GO On Demand Edition will change the landscape for enterprise single sign-on by eliminating traditional client software distribution, thereby extending ESSO to non-network computers used to access corporate applications, and providing new flexibility in ESSO use overall," said Passlogix vice president of strategy and product management Stephane Fymat. "By removing the limitations of traditional software installation, we are enabling ESSO to be deployed and used on an anytime/anywhere basis for the first time."

With the new On Demand Edition of v-GO Single Sign-On (v-GO SSO) and other modules in the v-GO suite, the v-GO client software can be downloaded and activated with a simple click on a link. This allows the v-GO client to be deployed without requiring administrators to set up installation packages or forcing end users to install software. It also enables software updates and rollbacks to be applied automatically and managed from a central location.

In a separate release:

NEW YORK -- Passlogix®, Inc., today announced v-GO® Shared Accounts Manager™ (v-GO SAM), a new module in its v-GO® Sign-On Platform™ that offers an industry-first approach to managing access to privileged accounts. v-GO SAM leverages v‑GO’s enterprise single sign-on capabilities and its interoperability with identity management and strong authentication systems to close the security gaps associated with shared credentials, offer new capabilities that aid regulatory compliance, and eliminate the need for a dedicated vault system for shared account management.

v-GO SAM enables credentials to be securely shared by multiple users such as system administrators who must access privileged accounts, workgroup members who must share a pool of generic accounts, and temporary workers or contractors who must be issued temporary generic accounts. It interacts with v-GO Single Sign-On (v-GO SSO), the core application in the v-GO product suite, to receive and respond to requests for credentials.

With v-GO SAM, a user requiring access to a privileged account makes an online request to check out a specific username and password from a central container dedicated to shared accounts, usually located in a corporate directory such as Active Directory. The request is approved or denied based on the user’s role and group membership in the corporate directory and/or an approval workflow in the enterprise’s identity management system.

The system then issues the username and password, subject to policy-based usage controls such as a two-hour credential expiration or a limited number of logins. The user never sees the password so it can never be shared with anyone else. After expiration, the username and password are automatically deleted from the user’s credential store and checked back in to v-GO SAM. Usernames and passwords cannot be checked out to multiple users simultaneously, thus establishing a single point of accountability for all activity on the target system.

Instead of buying a separate hardware or software vault system to administer shared accounts, v-GO SAM allows organizations to use their existing enterprise single sign-on (ESSO) infrastructure and identity provisioning systems to address the challenge of privileged account password management and compliance. System administrators can now manage both conventional and shared credentials with a common strategy and infrastructure.

Passlogix Inc.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
News
FluBot Malware's Rapid Spread May Soon Hit US Phones
Kelly Sheridan, Staff Editor, Dark Reading,  4/28/2021
Slideshows
7 Modern-Day Cybersecurity Realities
Steve Zurier, Contributing Writer,  4/30/2021
Commentary
How to Secure Employees' Home Wi-Fi Networks
Bert Kashyap, CEO and Co-Founder at SecureW2,  4/28/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-24259
PUBLISHED: 2021-05-05
The “Elementor Addon Elements� WordPress Plugin before 1.11.2 has several widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method.
CVE-2021-24260
PUBLISHED: 2021-05-05
The “Livemesh Addons for Elementor� WordPress Plugin before 6.8 has several widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method.
CVE-2021-24261
PUBLISHED: 2021-05-05
The “HT Mega – Absolute Addons for Elementor Page Builder� WordPress Plugin before 1.5.7 has several widgets that are vulnerable to stored Cross-Site Scripting (XSS) by ...
CVE-2021-24262
PUBLISHED: 2021-05-05
The “WooLentor – WooCommerce Elementor Addons + Builder� WordPress Plugin before 1.8.6 has a widget that is vulnerable to stored Cross-Site Scripting (XSS) by lower-priv...
CVE-2021-24263
PUBLISHED: 2021-05-05
The “Elementor Addons – PowerPack Addons for Elementor� WordPress Plugin before 2.3.2 for WordPress has several widgets that are vulnerable to stored Cross-Site Scriptin...