Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Operations //

Identity & Access Management

2/24/2020
11:30 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

ManageEngine Launches Privileged Session Management Solution

Access Manager Plus allows security admins to facilitate and govern remote sessions.

Austin, TX. — February 24, 2020 - ManageEngine, the IT management division of Zoho Corporation, today announced the launch of Access Manager Plus, a privileged session management solution for enterprises. With features like jump box support, session recording and live monitoring, the solution allows security admins to facilitate and govern remote sessions that provide users with privileged access to critical business systems.

Remote connectivity has become mainstream as employees increasingly access corporate systems at their convenience, irrespective of their location or the time of day. In fact, 56 percent of companies worldwide either allow a hybrid form of remote work or offer a completely remote workplace. Despite being inflexible and presenting huge privacy and security risks, traditional tools like VPNs are still used by most organizations. A solution that streamlines corporate remote access, while also offering strict governance over privileged sessions for ultimate security, can remedy the risks associated with remote connectivity.

"Allowing remote access to critical infrastructure components can be a double-edged sword for IT leaders, as they have to judiciously handle the productivity it brings against the security risks it opens up. The growing complexity, modernity and heterogeneity of the infrastructure only makes it worse," said Rajesh Ganesan, vice president at ManageEngine. "With Access Manager Plus, enterprises can now build solid layers of security and compliance, and allow seamless remote access to a wide variety of target systems, boosting overall productivity."

Access Manager Plus is part of ManageEngine’s privileged access management suite, which includes three other solutions: PAM360Password Manager Pro and Key Manager Plus.

Secure Remote Access for Privileged Sessions

Access Manager Plus effortlessly integrates into an organization's IT network, and allows security teams to always have the upper hand while configuring remote access and managing privileged sessions. The enterprise-ready features of Access Manager Plus include:

  • Data center remote access: Leverage simplified, direct connections to remote data centers, and automatically authenticate via jump box support for Windows and Linux platforms.
  • One-click remote sessions: Enable users to launch direct RDP, SSH, SQL and VNC connections to remote hosts. Tunnel the connections via encrypted gateways for enhanced security.
  • Remote app support: Allow users and third parties to seamlessly access specific Windows-based remote applications from local desktops.
  • Bidirectional remote file transfer: Transfer files between a remote system and the local host or between two remote systems, as well as upload or download files on the remote device, using secure protocols like SCP and SFTP.
  • Privileged session monitoring: Record all sessions and archive them as video files for post-session review. Control remote connections through session shadowing and termination capabilities.
  • Access control workflow: Establish a request-release mechanism to scrutinize access requests before approval. Grant users and contractors access to remote systems only upon ticket status verification.

Pricing and Availability

Access Manager Plus is available immediately in Standard and Free Editions. Pricing is based on the number of users. The Standard Edition starts at $495 a year for five users and unlimited connections, and the Free Edition supports up to two users and 1000 connections. A fully functional, 30-day trial version is also available at https://mnge.it/fLG.

About Access Manager Plus

ManageEngine Access Manager Plus is a web-based privileged session management solution for regulating access to remote systems through secure channels from a unified console. With comprehensive auditing capabilities, it offers total visibility into all privileged access use and lets enterprises manage privileged user sessions in real time, shutting the door on privilege misuse.

About ManageEngine

ManageEngine is the enterprise IT management division of Zoho Corporation. Established and emerging enterprises — including 9 of every 10 Fortune 100 organizations — rely on our real-time IT management tools to ensure optimal performance of their IT infrastructure, including networks, servers, applications, desktops and more. We have offices worldwide, including the United States, the Netherlands, Mexico, United Arab Emirates, India, Singapore, Japan, China, and Australia as well as a network of 200+ global partners to help organizations tightly align their businesses and IT. For more information, please visit www.manageengine.com; follow the company blog at blogs.manageengine.com and on LinkedIn at www.linkedin.com/company/manageengine, Facebook at www.facebook.com/ManageEngine and Twitter @ManageEngine.

 

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 10/1/2020
9 Tips to Prepare for the Future of Cloud & Network Security
Kelly Sheridan, Staff Editor, Dark Reading,  9/28/2020
Attacker Dwell Time: Ransomware's Most Important Metric
Ricardo Villadiego, Founder and CEO of Lumu,  9/30/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-19393
PUBLISHED: 2020-10-01
The Web application on Rittal CMC PU III 7030.000 V3.00 V3.11.00_2 to V3.15.70_4 devices fails to sanitize user input on the system configurations page. This allows an attacker to backdoor the device with HTML and browser-interpreted content (such as JavaScript or other client-side scripts) as the c...
CVE-2020-16844
PUBLISHED: 2020-10-01
In Istio 1.5.0 though 1.5.8 and Istio 1.6.0 through 1.6.7, when users specify an AuthorizationPolicy resource with DENY actions using wildcard suffixes (e.g. *-some-suffix) for source principals or namespace fields, callers will never be denied access, bypassing the intended policy.
CVE-2020-24620
PUBLISHED: 2020-10-01
Unisys Stealth(core) before 4.0.132 stores Passwords in a Recoverable Format.
CVE-2020-25017
PUBLISHED: 2020-10-01
Envoy through 1.15.0 only considers the first value when multiple header values are present for some HTTP headers. Envoy’s setCopy() header map API does not replace all existing occurences of a non-inline header.
CVE-2020-25018
PUBLISHED: 2020-10-01
Envoy master between 2d69e30 and 3b5acb2 may fail to parse request URL that requires host canonicalization.