Access control and password management solution for privileged endpoints
Bomgar and Thycotic have partnered to provide enterprises with better control and visibility of access to critical endpoints and privileged accounts.
Bomgar Privileged Access Management enables security professionals to control, monitor, and manage access to critical systems by privileged users. Thycotic’s Secret Server provides users the ability to automatically discover, control and audit access to critical privileged passwords in one centralized, web-based repository. The integration enables automatic password injection to authorized systems through the encrypted Bomgar connection, and removes the need to share and expose credentials to privileged accounts.
Bomgar retrieves passwords directly from the Thycotic Secret Server vault, which regularly randomizes complex passwords on privileged endpoints and maintains detailed security audit trails, tracking when a user accesses credentials and for what purpose. With the combined solutions, security organizations can empower users with the access they need to be productive, while granularly managing which systems they can connect to and when, monitoring and logging all access activity, and eliminating exposure of secure credentials.
Once the integration is deployed, Bomgar Privileged Access Management users see only the endpoints they are authorized to access. When challenged with a login screen, the user clicks the password inject “key” to inject the credentials from Thycotic Secret Server, automatically logging them in without the user ever seeing the username or password.
With the integration:
- Users can securely access systems from on or off network with no pre-configured VPN or other routing in place
- Credentials are always stored safe and secure, reducing the chance of brute force attacks
- Enterprises never have to share credentials with a third-party vendor or business associate
- Organizations capture unalterable audit trails and recordings to support forensic analysis
- Security professionals can demonstrate compliance with PCI DSS, HIPAA, NIST, SOX, SSAE16, and PII.
“Integrating Thycotic Secret Server with Bomgar Privileged Access Management gives security organizations the confidence that only authorized users are accessing privileged accounts, and that they’re not conducting actions outside their permitted level of access,” said Jonathan Cogley, founder and CEO of Thycotic. “At a time when both insider and third-party access is regularly targeted by cybercriminals, gaining better control over account access, and capturing more comprehensive audit trails will greatly help enterprises protect themselves from malicious activity.”