CyberArk has released new capabilities for Remote Access, including the ability to approve access requests through the CyberArk Mobile app and to restrict Offline Access for specific high-risk accounts. CyberArk Vendor Privileged Access Manager also now allows integration with CyberArk Identity and Secure Web Sessions, facilitating secure third-party access to web-based business applications in addition to privileged accounts.
Approve Access Requests to Privileged Accounts (Dual Control) via the CyberArk Mobile app
Authorized users can now review incoming requests from users to access privileged accounts managed by CyberArk Privileged Access Manager (PAM) via the CyberArk Mobile app and confirm or reject these requests. Just like in the CyberArk web portal, administrators can confirm or reject multiple requests in bulk actions. This capability is available for Privilege Cloud and Privileged Access Manager self-hosted customers utilizing the CyberArk Mobile app.
Restrict Offline Access to PAM
By default, PAM users accessing the CyberArk Mobile app can use the Offline Access feature to cache the password of any account they have permission to access. Now, administrators can disable the access for specific accounts with unique requirements. This prevents caching of sensitive credentials for offline access, reducing risk of credential theft.
Offline Access can now be restricted or allowed for all accounts managed by CyberArk
Vendor access to web applications integrated with and protected by CyberArk Identity Single Sign-On and Secure Web Sessions
This new version allows organizations to provision vendors with just-in-time access to select web and business applications, based on job role. Vendors can be invited to access web applications through the CyberArk Identity User Portal. Then, CyberArk Identity’s Secure Web Sessions protects and records web sessions while continuously authenticating third parties.
This feature enables operational efficiencies by streamlining processes for organizations that need to provision vendors with access to web apps, while reducing the risk of credential theft with just-in-time provisioning.
Notes:
- This integration is limited to customers licensed for use of CyberArk Identity and Secure Web Sessions.
- Secure Web Sessions requires a browser extension and a managed, hardened browser to prevent the removal of this extension.
For more information on these features, visit the links below:
For more information on all Remote Access features, please visit docs.cyberark.com.
