|
|
The AM Test Lab (a division of the Anti-Malware.ru information and analytical center) has published a review of a software package for managing access for privileged users – Indeed PAM version 2.9 .
Based on the results of the analysis, the Indeed Privileged Access Manager product received AM Test Lab certificate No. 437 dated November 30, 2023. The certificate confirms the high level of product quality and is a recommendation from the Anti-Malware.ru information and analytical center for potential buyers.
Contents of the review:
1. Introduction
2. New Indeed PAM functionality
3. Indeed PAM architecture
4. Indeed PAM System Requirements and Licensing
5. Indeed PAM Use Cases
5.1. Management via the administrator console. Main features
5.2. Searching and obtaining privileged accounts
5.3. Granting permissions to access resources
5.4. Connecting users to resources via RDP and SSH
5.5. Gaining access to user applications
6. Conclusions
Let's take a general look at the changes in the new version of Indeed PAM. The following functional additions have appeared:
Possibility of full installation of PAM system components on Linux.
On the demo server we worked with, all components are installed on a certified version of Astra Linux 1.7.4. Support for the FreeIPA user directory.
Ability to send one-time passwords (OTP) to email.
Network Locations: This functionality allows you to specify IP addresses or ranges of addresses from which it will be possible to connect to target resources.
Automate environment preparation on nodes, including Docker installation, and deployment of Indeed PAM components.
A web configurator that allows you to create Indeed PAM component configuration files in a convenient graphical interface.
Ability to create and link user groups based on data from external LDAP directories such as Active Directory and FreeIPA. Groups created in this way can be granted permissions to access protected resources.
It is important to note that Indeed PAM is integrated with MaxPatrol SIEM: with the help of Positive Technologies, MaxPatrol SIEM has the ability to receive Indeed PAM events via Syslog, normalize them, and use them in correlation rules.
Indeed PAM 2.9 is a mature solution for organizations that need to control privileged accounts and manage their access to target resources. The system will help solve the problems of implementing a password policy in accordance with the requirements of internal regulations and regulators' orders, add additional expertise when analyzing incidents, reduce the number of network interactions of system administrators with managed resources, directing them to a single and controlled access virtual phone number service point. We also note the possibility of implementing two-factor authentication within the organization's network and auditing all available privileged accounts.
Advantages of the Indeed PAM software package:
Domestic development, compatible with certified OS and DBMS. There is a certificate of FSTEC of Russia No. 4667, compliance with the requirements of Federal Law-187, Decree of the President of the Russian Federation dated 01.05.2022 No. 250, orders of FSTEC of Russia No. 239, No. 31, No. 17, No. 21 is ensured.
In addition to session control for Windows, Linux and DBMS, there is the possibility of individual session support in other systems.
Extensive clustering capabilities.
Multifactor authentication of RAM users and administrators both in AD or FreeIPA and via a RADIUS server using the challenge-response mechanism.
The system includes a specialized Single Sign-On agent, which automatically fills in credentials into desktop and web application forms.
AAPM support, an application programming interface (API) for retrieving up-to-date service credentials to avoid storing passwords in scripts and configuration files.
Integration with SIEM systems is available for event monitoring purposes.
The full text of the review is posted on the website anti-malware.ru
Share
Read more on the topic
16.09.2024
Events
Identity Conf 2024 — the first conference in Russia on the topic of Identity security
Registration for Identity Conf 2024, which will take place on October 31 in the Cyberdom space in Moscow, is now open. The conference will be held for the first time and will become an annual event and a center of attraction for expertise in the field of […]
Read more
14.05.2024
Indeed Privileged Access Manager
Indeed Privileged Access Manager (Indeed PAM) Update: Version 2.10
Indeed is pleased to announce version 2.10 of Indeed Privileged Access Manager (Indeed PAM). Indeed PAM now supports OpenLDAP and ALD PRO directory services in addition to Active Directory and FreeIPA. In […]
Read more
02.08.2021
Indeed Privileged Access Manager , Company News , Technology Integration
Jatoba DBMS Compatibility Confirmed with Indeed PAM Software
Compatibility of Jatoba DBMS with Indeed PAM software has been confirmed. The testing conducted confirms the correctness of the joint operation of the Jatoba database management system (a product of Gazinformservice) and Indeed PAM (a product.
|
|
發表於 2024-11-7 13:22:34
收藏
