We’ve all have service accounts, application accounts, sysadmin and domain admin accounts and other privileged shared accounts on our systems. These are all vital to the running of our applications and databases.
But do you keep them safe?
Are the passwords held somewhere secure, do you audit who looks them up, do you change them regularly, do you even know if these passwords are correct?
I recently installed Thycotic’s Secret Server for that purpose.
This is a web app with a SQL backend that can hold all of your passwords, control who can view or edit them, audit who has viewed or changed them, can run a regular heartbeat to check that the password in the database is correct, auto change the passwords and update related services at the same time.
If you have a third party that needs to access a server or application but you don’t want them to know the password they use, then you can configure an account with a launcher where they can click on the icon and it logs in to the system without them needing to see or do anything. And it can record what they do once they are on that system as well.
We hold Windows, SQL, Oracle, Unix, web accounts but it can be configured to manage lots more as well as mundane things like combination codes.
It has full DR and HA capability – vital for something that holds all the information your would need in a disaster and it even has a Blackberry and iPhone app giving it extra flexibility, though we haven’t tried these yet.
I have been very pleased with Secret Server for enterprise password management and would certainly recommend them and the teams that I’ve rolled it out to here have been equally impressed with it.
Take a look at www.thycotic.com
