Accountability and Enterprise Password Management

Accountability and Enterprise Password Management

An administrator with knowledge of a “never changing” system account password, can wreak havoc with your systems, and may have simply been trying to help.

Companies have reported loosing days of computer time, due to an over enthusiastic administrator applying a fix, unknown to anyone but themselves.   Others have reported losses through disgruntled employees.

Companies are failing to respect compliance standards unless they manage their unmanaged accounts and may face financial penalties through compliance failure. Or in the worst case, days with no system access with the financial losses that this would cause.

There are also many account passwords that are set never to expire. These accounts control: the running of Windows Services; the account that a databases runs as; accounts embedded in applications; the build-in administrator of imaged machines... Moreover there are 2 types of accounts, unique password accounts and synchronised password accounts, and what’s worse is that these accounts are the most powerful accounts that exist in your system.

ForestSafe can manages the passwords of any system account that require unique passwords e.g. Local Windows Build-in Administrator, and also the password of accounts that require synchronisation e.g. Windows Services.

click to enlarge

Local Passwords
Make every local password in your system unique

click to enlarge

System Passwords
Synchronise the passwords of any user accounts. E.g. a Windows domain user and a Windows service logon

click to enlarge

Grant Access
Create a temporary local administrator account with the same password across a range of machines for local access