Powerbroker for UNIX & Linux

DATASHEET

PowerBroker for UNIX & Linux Privilege and Session Management

Maintain Optimal Security, Compliance and Productivity with PowerBroker for UNIX & Linux The BeyondInsight platform for unified asset and user risk intelligence To maintain productivity, organizations often provide multiple server administrators – and sometimes users – with root passwords, super-user status, or other escalated privileges. Unfortunately, this practice presents significant security risks stemming from intentional, AU ILEGE DITIN RIV NT PR G & accidental or indirect misuse of shared privileges. Traditional responses to this problem P EME OTECT NAG ION MA include inefficient and insecure alternatives such as manually managing policy creation PR IV Y IL R M E and change across individual accounts. O A G T N E C PowerBroker A D E G G P R N Privileged Account Management A I I E G M S D S D E PowerBroker® for UNIX & Linux allows system administrators to delegate UNIX, Linux and E I W N V R I T O B T R Mac OS X privileges and authorization without disclosing passwords for root or other C D A accounts. The solution can also record all privileged sessions for audits, including keystroke information. These and other capabilities enable PowerBroker customers to meet the BeyondInsight

V privileged access control requirements of government and industry mandates including U L Y N T I E R SOX, HIPAA, PCI DSS, GLBA, PCI, FDCC and FISMA. R R A E U E N C N B T E I S N L E A I R B T P Retina E C Y R S M IS Vulnerability Management W Key Benefits A E N AG • Enable end users to perform specified administrative tasks without disclosing EM G E N S N NT ET AA NI passwords, dramatically increasing security and compliance WO NDS AN RK SEC BEYO SC SCA URITY ASED • Integrate all policies, roles and log data from multiple hosts for BeyondTrust NNER CLOUD B solutions and complementary third-party applications via a web-based console • Automate workflows for policies and audit-ready logging • Broker permissions transparently, ensuring user productivity and compliance PowerBroker for UNIX & Linux is part of the • Record and index all sessions for quick discovery during audits BeyondInsight™ IT Risk Management Platform, • Leverage across more than 30 different Unix/Linux platforms which unifies PowerBroker privileged account management solutions with Retina CS Enterprise Enterprise-Class Privilege and Session Management Vulnerability Management. Capabilities include: PowerBroker for UNIX & Linux equips enterprises with highly flexible policy language that •• Centralized solution management and control unifies security across multiple platforms. The solution also increases efficiency by allowing via common dashboards users to simultaneously perform tasks across multiple targets. Deployment is ideal for large •• Asset discovery, profiling and grouping organizations, requiring no kernel changes, system reboots, or other activities that impact •• Reporting and analytics resource availability. •• Workflow and ticketing •• Data sharing between Retina and PowerBroker also delivers audit-ready session logging and comprehensive reporting to PowerBroker solutions meet compliance and control requirements. Key logging and reporting capabilities include: The result is a fusion of user and asset intelligence • View Event Logs and Input/Output (IO) Logs via the BeyondInsight™ IT Risk that allows IT and security teams to collectively Management Platform, included with all PowerBroker for UNIX & Linux licenses reduce risk across complex environments. • Easily locate Event & IO Logs containing any text (command-based or free-text search) www.beyondtrust.com/beyondinsight • Replay privileged sessions with DVR-style playback of all activity including keystrokes • Interact with historical event lists and graphs presenting key “who, what, where, when” data in an easy to read format PowerBroker for UNIX & Linux with BeyondInsight Architecture “Once inside a company’s environment, access to various areas should be restricted based on business need. A typical guideline in this respect is the principle of least privilege, which states that users are given the minimum access and authority necessary to perform their required job functions.” - The Institute of Internal Auditors Inc. IT Audit Regulatory Compliance

Regulatory Compliance One fundamental aspect of compliance is privileged access control for distributed networks and complex IT ecosystems. PowerBroker for UNIX & Linux provides an innovative solution to meet industry and government mandates, such as SOX, HIPAA, Eliminate Intentional, Accidental and Indirect Misuse of Privileges PCI DSS, GLBA, PCI, FDCC and FISMA. PowerBroker for UNIX & Linux allows organizations to increase collaboration without compromising security. The solution transparently provides the boundaries essential to a secure and compliant environment, while breaking down familiar walls that hinder productivity. PowerBroker for UNIX & Linux provides relief from privilege misuse and seals a primary attack point for data breaches and unauthorized transactions.

Simplify UNIX, Linux and Mac Access Control ABOUT BEYONDTRUST BeyondTrust is a proven IT security leader SECURITY with more than 25 years of experience. More • Supports industry-standard encryption algorithms, such as AES, Triple DES and many others than half of the companies listed on the Dow • Performs redundancy checks and checksum verification for Trojan protection Jones, eight of the 10 largest banks, seven of • Restricts access by day/date/time and to/from specified hosts the 10 largest aerospace and defense firms, • Integrates with PAM, NIS+, LDAP and six of the 10 largest U.S. pharmaceutical • Blocks execution of specified commands companies rely on BeyondTrust to secure • Integrates with SafeNet Luna for U.S. and Canadian government agencies requiring FIPS 140- their enterprise. 2 Level 2 & Level 3 validation

CONTACT INFO COMPLIANCE NORTH AMERICAN SALES • Logs all environment information 1.800.234.9072 • Automates log centralization for multi-server deployments [email protected] • Automates workflows for event and I/O log reviews • Delivers audit-ready reporting EMEA SALES • Meets access/authorization control regulations, such as SOX, HIPAA, GLBA, PCI DSS, and Tel: + 44 (0) 8704 586224 FISMA [email protected] • Provides true Role-based Access Control (RBAC)

CORPORATE HEADQUARTERS PRODUCTIVITY 5090 North 40th Street • Centralizes tasks for productivity gains among system administrators Phoenix, AZ 85018 • Deploys rapidly, requiring no system reboot or kernel modification 1.800.234.9072 • Automates policy propagation • Automates workflows for policy creation and change management CONNECT WITH US • Includes a user-friendly console that reduces administrative costs Twitter: @beyondtrust Facebook.com/beyondtrust Supported Platforms Linkedin.com/company/beyondtrust PowerBroker for Unix & Linux supports 30+ Unix and Linux platforms, including Debian GNU, HP- www.beyondtrust.com UX, HP Tru 64, Red Hat Enterprise Linux, Sun Solaris, SuSE Linux Enterprise, VMware ESX, IBM AIX, and others.

© 2014 BeyondTrust Corporation. All rights reserved. All rights reserved. BeyondTrust, BeyondInsight and PowerBroker are trademarks or registered trademarks of BeyondTrust in the United States and other countries. Microsoft, Windows, and other marks are the trademarks of their respective owners. Feb 2014