Thycotic Software's Booth #2550 at RSA Conference 2012

Secret Server is a privileged password management solution, designed to securely control access to critical enterprise passwords in one centralized, web-based repository.  SS is encrypted, FIPS-compliant and helps organizations to reach their Sarbanes-Oxley or PCI DSS goals.

Password Reset Server is an end-user password reset tool that combines ease-of-use with advanced security, and meets Section 508 compliance standards. PRS is designed to reduce Help Desk calls and let employees reset their own forgotten passwords through a series of secure questions and images, and even telephone verification.

See you February 27^th!

This can be a useful tool for Secret Server users, especially in those situations that require a non-standard port.  While the jury is out on whether changing standard ports offers any real security, some situations may require them.  In Secret Server, creating a custom launcher for using custom ports will make life easier for Secret Server users.  The custom launcher will launch PuTTY, configure the client for SSH over the specified port, pass the credentials and grant access in one simple click!

It is possible for Secrets in Secret Server to inherit permissions from the folder where they are placed. For example, if you install a new managed switch in your network, instead of setting an Active Directory group or users for every network-based Secret, you set the Active Directory group or individual user accounts to the folder. That way, when an admin enters a new Secret into Secret Server they don’t have to worry about selecting all the people that need access. Instead, they can place it into the correct folder that already has the correct permission level. Not only does it save time, but it also ensures that everyone who needs access to a Secret has it.

Adding Permissions to a folder
First, move your mouse to the Administration tab, then select Folders.

Then select the folder you want to edit permissions on, select edit

From here you can add Active Directory groups and individual Secret Server users. They will have access to any Secret that inherits permissions with the level you select.

Having a Secret Inherit Permissions From a Folder

Click to expand the Secret, and then select view.

Now, select share.

From here, select edit.

Finally, check the “Inherit Permissions from folder” box.

That’s it! Now any user in the Active Directory group or one you manually added to the folder permissions will have access. You can also turn on this behavior by default with the “Default Secrets Inherit Permissions” setting on the configuration page. It is important to note that a user with folder-based permissions will have that level of access to any Secret in the folder .

Selection fields can be created by editing a Secret Template and adding a new field (Administration | Secret Templates | Edit).  Then choose the selection list icon on the Secret Template Designer screen.

You can then add different field values … in our example, we added 2000, 2005, 2008 to represent the different versions of SQL Server for our SQL Server Account Secret Template.

David from our engineering team talks about how the Secret Server password app for iPhone is not susceptible to this type of attack because it uses its own files for encryption along with a randomly generated key that includes device specific information.

David talks about encryption on Secret Server iPhone app.

Steps

1. Drag the <All Folders> folder to the top to create a new tab. This will create a new tab with a Secret Explorer widget.
2. Type your search term in the search bar and choose any other desired search parameters – in my case, I typed “cisco” and changed to only show “Cisco Router” templates.
3. Click on the tab to rename it to match your search – in my case, I named my tab “Cisco”.

That’s it.  You now have a tab called Cisco that holds a saved search to find all your Cisco devices.  You can come back to this tab at any time to see the results of that search.

Here are a few examples of what you’ll get in our Reseller Partner Program:

• Sales Presentations
• Typical use case scenarios
• Detailed target market information
• Marketing campaign tools
• Product FAQs
• Recorded demos
• Installation and configuration instructions
• Accompanied professional services examples
• Objection Handling

Now we need Partners passionate about Secret Server! So what’s in it for you? How about local leads and a generous commission structure? We have thought of everything and what we missed we hope to learn from you; feedback is welcome. The Thycotic team is confident in our products and wants to see our Partners achieve the same success with their customers as we have seen with ours.

If you are ready to get the ball rolling, please complete our Partner Application Form

Please contact us with any questions.

Thycotic will be at Gold Coast, Australia next month exhibiting at TechEd Australia for the third year in a row. Stop by our booth and learn about how Secret Server integrates with RADIUS in version 7.0 .

Are you responsible for end-user passwords? Ask to see a demo of self-service password reset tool,Password Reset Server.

Come visit us to talk about password management or information security.

See you there!

This app should be available within 2-3 months.