Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Analytics

4/23/2013
12:17 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

ManageEngine Launches Privileged Password Management Software For Managed Service Providers

Password Manager Pro MSP Edition allows MSPs to centrally manage the privileged passwords of their clients

INFOSECURITY EUROPE, LONDON, UK-- April 23, 2013 -- ManageEngine, the real-time IT management company, today announced the immediate Beta availability of MSP Edition of its Privileged Password Management Software Password Manager Pro. The company offers an advanced look of the industry-first solution, developed specifically to address the unique privileged identity management challenges faced by Managed Service Providers (MSPs), at stand #C40 at Infosecurity Europe, at Earls Court, London, UK between April 23-25, 2013.

Password Manager Pro MSP Edition allows MSPs to centrally manage the privileged passwords of their clients through a fully automated and policy-driven approach. This ensures MSPs are able to offer critical data protection above and beyond the client's best practice security guidelines for sensitive information and also helps MSPs demonstrate to their customers that sensitive data is being securely handled.

MSPs, in particular those managing the IT and Network infrastructure of their clients are swamped by the ever-increasing number of privileged passwords. Without appropriate management tools this can lead to a haphazard style of password management where the administrative passwords, which grant unlimited access privileges on the IT assets are stored in plain-text in volatile sources like excel sheets, print-outs and text documents; insecurely shared among technicians without relevant protection, leaving the client organisations open to security attacks.

"Identity theft often lies at the root of modern-day cyber-attacks. Cyber-criminals are increasingly targeting login credentials of employees and administrative passwords of IT resources through various techniques. Since MSPs manage the IT infrastructure for many clients, the risk level is very high and they are looking for a secure and reliable solution for privileged password management." said Rajesh Ganesan, director of product management at ManageEngine.

"While there are many good enterprise-class privileged password management solutions on the market, they do not cater to the specific needs of MSPs. The ManageEngine Password Manager Pro MSP Edition bridges this crucial gap by offering an easy to implement yet affordable password management solution that provides effective security protection to both the service provider and all its customers."

The new edition enables MSPs to manage the passwords of each of their clients separately from a single management console. Passwords can be securely shared between MSP administrators and their respective customers, making sure that users only get access to the passwords they own or are shared with. The solution offers the flexibility to entrust the control of the password vault to the MSP administrator, the end user or both as desired. The IT policy of the respective organisation can be enforced through automated password resets.

In addition, users requiring access to passwords can be enforced to go through password request-release workflow resulting in tighter access controls. All activities with respect to password access are audited and reports can be generated on 'who' accessed 'what' passwords 'when'. When a technician at the MSP-end leaves the organisation, all passwords accessed by the technician can be automatically changed on remote resources, easily eliminating the chances of potential misuse in future.

The MSP edition also features all the security measures of the existing ManageEngine Password Manager Pro Premium Edition.

Other Highlights

Mobile Access - Secure retrieval of privileged passwords and approval of access requests on the go from mobile phones

AD/LDAP Integration - Users or user groups can be imported from Windows Active Directory or LDAP from the customer network and the authentication mechanism leveraged

First-in-class remote login - MSPs can launch highly secure, reliable and completely emulated Windows RDP, SSH and Telnet sessions from browser without any plug-in or agent software

Privileged Session Recording - Privileged sessions launched from the product can be video recorded, archived and played back for forensic audits

Real-time Alerts - Real-time alerts on the occurrence of various password events enabling integration with Security Information and Event Management (SIEM) solutions

High Availability Architecture - Uninterrupted access to enterprise passwords through the deployment of redundant server and database instances.

Pricing and Availability

The ManageEngine Password Manager Pro MSP Edition (Beta) is available immediately for a 30-day trial and can be downloaded via: http://www.manageengine.com/products/passwordmanagerpro/download.html

The production version will soon be generally available with pricing details.

About ManageEngine Password Manager Pro

Password Manager Pro is a secure vault for storing and managing shared sensitive information such as passwords, documents and digital identities of enterprises. The benefits of deploying Password Manager Pro include eliminating password fatigue and security lapses by deploying a secure, centralised vault for password storage and access; improving IT productivity many times by automating frequent password changes required in critical systems; providing preventive and detective security controls through approval workflows and real-time alerts on password access; and meeting security audits and regulatory compliance such as SOX, HIPAA and PCI. For more information on Password Manager Pro, visit http://www.manageengine.com/passwordmanagerpro/

About ManageEngine

ManageEngine delivers the real-time IT management tools that empower an IT team to meet an organisation's need for real-time services and support. Worldwide, more than 72,000 established and emerging enterprises - including more than 60% of the Fortune 500 - rely on ManageEngine products to ensure the optimal performance of their critical IT infrastructure, including networks, servers, applications, desktops and more. ManageEngine is a division of Zoho Corp. with offices worldwide, including the United States, India, Japan and China. For more information, please visit http://www.manageengine.com/; follow the company blog at http://blogs.manageengine.com/, on Facebook at http://www.facebook.com/ManageEngine and on Twitter at @ManageEngine.

ManageEngine is a trademark of Zoho Corp. All other brand names and product names are trademarks or registered trademarks of their respective companies.

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 8/3/2020
Pen Testers Who Got Arrested Doing Their Jobs Tell All
Kelly Jackson Higgins, Executive Editor at Dark Reading,  8/5/2020
New 'Nanodegree' Program Provides Hands-On Cybersecurity Training
Nicole Ferraro, Contributing Writer,  8/3/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Special Report: Computing's New Normal, a Dark Reading Perspective
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
The Changing Face of Threat Intelligence
The Changing Face of Threat Intelligence
This special report takes a look at how enterprises are using threat intelligence, as well as emerging best practices for integrating threat intel into security operations and incident response. Download it today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-15820
PUBLISHED: 2020-08-08
In JetBrains YouTrack before 2020.2.6881, the markdown parser could disclose hidden file existence.
CVE-2020-15821
PUBLISHED: 2020-08-08
In JetBrains YouTrack before 2020.2.6881, a user without permission is able to create an article draft.
CVE-2020-15823
PUBLISHED: 2020-08-08
JetBrains YouTrack before 2020.2.8873 is vulnerable to SSRF in the Workflow component.
CVE-2020-15824
PUBLISHED: 2020-08-08
In JetBrains Kotlin before 1.4.0, there is a script-cache privilege escalation vulnerability due to kotlin-main-kts cached scripts in the system temp directory, which is shared by all users by default.
CVE-2020-15825
PUBLISHED: 2020-08-08
In JetBrains TeamCity before 2020.1, users with the Modify Group permission can elevate other users' privileges.