BeyondTrust launches advanced PAM solution with infrastructure access and integrated secrets management

BeyondTrust, a global company in identity and access security, announced new releases of BeyondTrust Privileged Remote Access and Password Safe, and the availability of both products in a new bundle with value pricing. These releases introduce new, expanded capabilities for developers, cloud ops and other technical staff to secure and manage access to critical systems in a way that doesn’t sacrifice ease of use or efficiency.

Traditional Privilege Access Management (PAM) systems have not kept up with cloud use cases and frequently force cloud ops engineers and developers to employ shadow IT by requiring them to use antiquated connection techniques like VPNs.

BeyondTrust’s strong infrastructure access abilities are made for contemporary cloud-based environments. These updates take our capabilities beyond traditional Privileged Account Management and encompass all seven principles of the zero-trust security model.

Privileged Remote Access Enables Secure Infrastructure Access

The BeyondTrust Privileged Remote Access allows seamless and limited access to important systems only when needed, without the need for a VPN. This improves productivity and compliance by providing improved access to infrastructure in even the most demanding and intricate situations. which include:

• Enabling admins to granularly define who has access to what and when, and easily integrate Privileged Remote Access with an IDP for dynamic roles-based access

• Allowing users to leverage familiar tools and workflows, like Putty and Azure Data Studio, to securely conduct work

• Direct tunnelling to the SQL protocol and connecting to this tunnel with the admin’s tool of choice; enables the least privilege with very granular access to specific infrastructure, cloud applications or even controlling the specific permissions in those apps or systems

• Injecting credentials for connections from Password Safe to streamline the user’s workflow and protect against abuse of privileges

• Allowing tools like Terraform to spin up and down ephemeral cloud infrastructure and automatically grant and revoke access through a collection of BeyondTrust’s pre-built scripts

• Creating a consolidated audit trail of developer and cloud ops activity, in addition to IT admin and vendor activity, eliminating multi-source log issues

DevOps Secrets in Password Safe  

BeyondTrust Password Safe now includes secrets management capabilities. This capability enables secrets as well as passwords, certificates, keys, tokens, etc. to be stored and managed in Password Safe, expanding the ability to secure critical infrastructure and DevOps environments in the cloud. 

In contrast to providers who only provide a standalone secrets vault or necessitate the use of multiple tools to manage privileged accounts and secrets, centralising secrets and credential vaulting within Password Safe enables enterprises to utilise one strong, integrated solution. This new feature enables:

• Combined management of privileged passwords, SSH keys, team passwords, and secrets used in CI/CD pipeline and runtime environments
• Leveraging Password Safe full-featured GUI for faster secrets management use case adoption
• Integration with Kubernetes without the need for developer expertise
• Simplified storage of certificates, API Keys, tokens, etc., within a secure and audited vault
• Full API support, file upload/download, and secrets management
• Reporting of all secrets and team password transactions, complete auditing and reporting of secrets and groups.

New Value Bundle: Password Safe and Privileged Remote Access

With these two releases, BeyondTrust is also providing a value-packed bundle that combines the best-in-class session management of Privileged Remote Access with the industry-leading credential management capabilities of Password Safe (privileged accounts management, thorough discovery and onboarding, and privileged task automation) (privileged access control, infrastructure access management). This is the market’s most complete Privileged Account and Session Management (PASM) solution, and it is cost-effective enough to be used by businesses of all sizes.

Sam Elliott, SVP, Product Management at BeyondTrust said “Increasingly, organizations are working to maximize the productivity and effectiveness of developers and cloud ops, while reducing network complexity, shrinking attack surfaces, and stopping shadow IT.”

Elliot added “With the enhanced infrastructure access capabilities of Privileged Remote Access, the inclusion of secrets management in Password Safe, and the combined access of both products in one supercharged bundle, IT teams now have more tools at their disposal to support the unique needs (frictionless, agile work) of technical staff while taking huge steps to reduce the risk in their cloud environments, meet compliance requirements and keep them on their zero trust path.”