Customizing Roles For Your Company – Part One

10 05 2013

Secret Server uses Roles and Permissions to control access to various capabilities within the system.

In this two part blog post we will review how to set up customized roles and permissions to meet your company’s security policy.

Roles in Secret Server control what a user is allowed to do in the tool. Secret Server ships with three default Roles:
1. Administrator, which has the ability to perform any task.
2. User, which allows basic functions such as create, edit and viewing of Secrets.
3. Read Only User, which only allows a user to view Secrets and Audit Reports without edit capabilities.
Although Secret Server can be used right out of the box with these default Roles, each company should personalize the Roles to fit individual company needs.

Role

The default Roles can be edited and new Roles can also be created. For example, administration tasks can be delegated to different Administrators without giving them full control of the system (for example: Backup Administrator, Secret Template Administrator, Role Administrator and so on). An Auditor Role can also be created to give a user limited access to the system – such as to view Reports and to check compliance settings without having access to sensitive information. For more information on Roles, see our Secret Server Best Practices Guide (requires valid support).

Auditor Role

In the next part of this post we will go over how to set up permissions to control access to Secrets and Folders.


Comments : Leave a Comment »
Tags: , , ,
Categories : Uncategorized

Thycotic Software Releases Revolutionary Two-Factor Authentication System

1 04 2013

Being in enterprise password management, we understand the importance of user authentication in information security. The AssWord Pad 1.0 takes biometrics and multi-factor authentication to a brand new level. Utilizing the latest in gluteal heat mapping technology, we have designed a product that’s sure to keep you safe from cyber threats.

Watch the video below to learn more about this incredible new product from Thycotic Software.

Oh yeah, and Happy April Fools Day from the entire Thycotic Team.


Comments : 2 Comments »
Tags: , ,
Categories : Uncategorized

New Webinar – Easily Manage and Secure all your Windows local administrator passwords

13 03 2013

Use discovery to quickly find all your local Windows administrator accounts – import them into the Secret Server vault (even if you don’t know the current password). Then set a schedule (30, 90 days etc.) for regular password changing and never worry about those passwords again.  Whenever a sysadmin needs a password, they just come to Secret Server to find it.  Using Discovery Rules allows all of this to be automated.

Join us for this Webinar on Thursday, March 28th 2013 at 11:30am EST (requires active support). This will be the first of a new Webinar series that will happen on the 4th Thursday of each month.  Change your email preferences to receive updates about these upcoming webinars.

These webinars will also be recorded so you can view them after the event or share them with your team members.  Each Webinar will have two engineers speaking about best practices, features, security and general problems you can solve using Thycotic products.  If you have specific items you would like to see covered, please email your Account Manager.

Thanks, Kaitlin.

Image


Comments : Leave a Comment »
Tags: ,
Categories : Uncategorized

Webinar: Secret Server Web Password Filler

20 02 2013

Sign up for the webinar here.

We will be covering:

  • the typical use cases
  • http versus https
  • CAPTCHA on login
  • changing form bindings
  • limitations
  • how to tell us about websites with issues
  • general Q & A

If you can’t make it at that time, we will also be recording the webinar.

Image

Sign up for the webinar here.


Comments : Leave a Comment »
Tags: ,
Categories : Uncategorized

Devolution’s Remote Desktop Manager integrates with Secret Server

20 02 2013

Thycotic Software would like to thank our technology partner, Devolutions, for recently integrating their Remote Desktop Manager with Secret Server.

Remote Desktop Manager’s integration with Secret Server enables you to launch your remote access applications easily and securely without knowing the credentials. By using our publicly available Secret Server API, Remote Desktop Manager is able to retrieve Secrets with machine credentials and then launch a variety of applications like LogMeIn, pcAnywhere, TeamViewer and more. Using this combination of tools enables your users to log directly into applications without knowing the password increases your security posture. Secret Server provides full auditing information on credentials being accessed with Remote Desktop Manager, providing detailed reports on all applications launched.

Setting up Remote Desktop Manager to use Secret Server as the credential store is fast and easy. Start by creating a new Credential Store and select Secret Server from the list of credential options.

Image

Next create a new session and select the Secret Server credential repository.

Image

Using Remote Desktop Manager with Secret Server gives you even more flexibility and options for accessing your Secrets.


Comments : 3 Comments »
Tags: ,
Categories : Uncategorized


Follow

Get every new post delivered to your Inbox.