Blog
A SIEM that Speaks IBM i
Tue, 07/03/2018
Organizations of all sizes can benefit from capturing, logging, and responding to security events in real time, but one important operating system is often overlooked: IBM i.
Blog
Are Employees Undermining Your Data Breach Defenses from the Inside?
Fri, 06/29/2018
The latest Verizon Data Breach Report provides a deeper understanding of the internal threats today's organizations face.
On-Demand Webinar
Moving to Password Level 2 or 3 (and Other Password Tips and Tricks)
Tue, 06/26/2018
Watch this webinar to understand why it’s important to move to a higher password level (QPWDLVL)—and why it's easier than you might think.
On-Demand Webinar
The Truth About Viruses on Linux
By Bob Erdman
This webinar is designed to re-assess the threat landscape and learn which metrics your technical staff must use when assessing server-side tools that virus scan for both Windows and Linux threats in parallel.
On-Demand Webinar
What Does GDPR Mean for Linux/UNIX and IT Operations?
Tue, 05/22/2018
Find out how GDPR will affect IT Operations on Linux and UNIX.
On-Demand Webinar
Survey Results: Cybersecurity Risk Mitigation Strategies
By Robin Tatam
Fortra surveyed more than 600 IT and cybersecurity professionals to find out what security exploits loom largest and what strategies they’re turning to for protection. Get the results in this on-demand webinar.
On-Demand Webinar
Controlling Insider Threats on IBM i
By Robin Tatam
Despite the avalanche of regulations, news headlines remain chock full of stories about data breaches, all initiated by insiders or intruders masquerading as insiders.
Blog
Cloud Misconfiguration and the Curse of the Inadvertent Employee
By Bob Erdman on Fri, 04/20/2018
There is a new term IBM and other industry experts have begun to use: the inadvertent employee. These are the well-meaning IT professionals who are often at fault when it comes to misconfigured servers, networks, and databases.
Sudo Migration Made Simple
Sudo’s “free” open-source access utility can work for managing access to a small number of servers. However, it quickly becomes overwhelming as your business grows and requires more sophisticated fine-grain controls, logging, and compliance-reporting capabilities.
Sudo’s labor-intensive custom configuration and distribution process results in high administrative costs and serious gaps in access...
Windows SSH Client for Centralized Access Control
Since the end of the “PKI Wars” in the early 2000s, many question the security of Windows desktops environments. This is because it can be difficult to verify whether they’ve been fully locked down.
For Linux/UNIX administrators the tool of choice to log in to systems for remote session administration is PuTTY, a free command line tool, or SuperPuTTY, a Windows edition with scalable windo...
Provisioning Accounts to Multiple Security Domains
Core Privileged Access Manager (BoKS)’s main strength is its ability to create a single security domain of your IT assets, with a single policy set. There are, however, valid reasons to segregate networks, and infrastructure due to:
Differing IT governance, often due to historical M&A activities
The need to report to multiple market regulators or compliance regimes
Public internet-fa...
Pluggable Authentication
Pluggable authentication module (PAM) support in UNIX and Linux operating systems have met, or not met, common standards over the last twenty five years. Vendor-specific wrinkles in meeting PAM specifications have needed coding and operational adjustments. Core Privileged Access Manager (BoKS) hides the platform-specific behavior and operational constraints from centralized security staff for impr...
On-Demand Webinar
Privileged Access Management for Linux, UNIX, and AIX Professionals
Learn how to protect your systems and data with a single solution that delivers granular security controls, automated workflows, and enables limitless scalability.
IT Security Audits and Reporting
Are you spending too much time getting your environment through IT security audits, PCI reporting, SOX reporting, EU GDPR, or other national data privacy regulations? Many organizations find it’s difficult to truly enforce who accesses which servers and what they can do when they get there. They also question whether they are controlling privileged user access rights and eliminating root and...
Keystroke Logging
Keystroke logging on Linux and UNIX systems has typically been the province of third-party tools not well integrated into security policy management. However, cultural and legal differences in the mechanics of how session logs are collected and stored, as well as who may review them can require significant security policy differences as they are implemented. This is especially true in a Linux/UNIX...
Active Directory Bridging: Add Access Controls to AD
As a primary identity source, Microsoft® Active Directory (AD) is often used for user authentication. However, effective security also requires granular access management. This is important for two reasons. First, it helps you control privileged users who require root and other functional accounts to administer servers. Second, it enables you to control end users accessing multiple applicatio...
Granular Access Control
IT security teams are challenged with a double-edge sword: They have to protect sensitive data while enabling users across the organization to maintain productivity. Core Privileged Access Manager (BoKS) enables you to bridge this gap with granular privileged access management.
As a result, your organization can become more secure, simplify your approach to meeting compliance requirements, and ...