Eliminate security gaps across public, private, hybrid cloud and SaaS environments

Unique challenges emerge in cloud environments where new, powerful credentials are created to provision, configure and manage thousands of machines from a single console. New machines are created with a single click, instantly creating new, unmanaged privileged accounts. In this dynamic environment, it is a requirement that organizations detect changes and monitor all activity for maximum privileged account security and efficient compliance audits.

The CyberArk Privileged Account Security Solution is designed to protect privileged accounts whether they are in on-premises, virtual or cloud environments. With out-of-the-box integrations, privileged accounts for cloud management tools and APIs are secured, monitored and managed. Working with automation tools such as Chef and Puppet, privileged account security is built into the cloud environment with automatic provisioning and seamless integration during cloud migration and on-going management. This holistic solution enables organizations to leverage the benefits of cloud computing while reducing the risk of unauthorized access to privileged accounts.

In Private Cloud environments, CyberArk products integrate with hypervisor management tools, guest machines, APIs and scripts.  Available integrations include VMware vCenter and Microsoft Hyper-V.

In Infrastructure-as-a-Service environments leveraging the Public Cloud, CyberArk solutions integrate with public cloud web management tools and APIs in addition to guest machines. The CyberArk Privileged Account Security Solution can also be run in public cloud environments. Currently supported providers include Amazon Web Services (AWS) and Microsoft Azure.

Software-as-a-Service solutions can be protected using the CyberArk Privileged Account Security Solution with integrations with common SaaS applications including social media accounts and business applications. A full range of SaaS applications are supported including Amazon Web Services, Microsoft Azure Management and Facebook.

Capabilities of the CyberArk Privileged Account Security Solution across all virtualized and cloud environments include:

  • Seamlessly integrate and deploy two layers of privileged account security – for the hypervisor or cloud service provider management layer as well as guest machines
  • Secure administrative access to virtual machines
  • Integrate with automation tools for seamless provisioning of new accounts through APIs
  • Systematically reset default passwords as part of the provisioning process
  • Provide individual accountability for all privileged user activity
  • Isolate, monitor and record all administrative sessions
  • Replace hard coded and visible credentials from applications and scripts with rotating credentials for enhanced security
  • Integrate with any web management tool or application using the CyberArk universal connector

Key Benefits:

  • Streamlined management and efficient operations with a single platform for privileged account security and compliance for all servers, network devices and applications
  • Consistent policies with centralized policy management and enforcement for the entire IT infrastructure from a single solution
  • Secure, single sign on access to cloud-based servers and applications for IT admins without requiring new passwords, identity and access solutions or integration with Active Directory, providing ease of use for admins and security for the organization
  • Efficient and secure cloud automation with consistent, secure controls for privileged accounts
  • Proactive threat detection with collection and analysis of all administrative account user activity to identify and alert on anomalous behavior indicating malicious activity
  • Controlled costs with management and monitoring of privileged account activity including provisioning and deletion of new machines
  • Streamlined compliance auditing processes with complete monitoring and recording of all administrative sessions