Privileged Access Management Issues? Enter Tripwire Password Manager

So, you have 2000 network devices in your environment and everyone is telling you that you have to rotate all 2000 device passwords every 30, 60 or 90 days (at a minimum) — who has time for that?! How are you going to manage this? The task seems monumental and time-consuming!  If nothing is done, then your security/compliance posture will worsen due to reusing passwords that are easy to remember across assets. In addition, passwords could become stale and give adversaries more time to crack them. Time to roll up the sleeves and start changing passwords, but wait ….

Enter PAM solutions! Privileged Access Management solutions take the headache out of managing all those passwords. They manage who has accessed those accounts and updates those accounts when their passwords need rotating. Some solutions even support SSH key storage!

Whew, that takes a load off your mind! Time to make some vendor choices and get the PAM solution of your choosing implemented in your environment.

OK, so you have gotten yourself a PAM solution installed and configured, and things are running along smoothly. But wait, how do you update your other security apps that rely on those privileged accounts, like Tripwire Enterprise or IP360!?! Many applications are not designed to integrate with PAM solutions at this time, even though according to Gartner’s 2018 Magic Quadrant report for PAM, 40% of organizations using formal change management process will have embedded or integrated PAM tools within them by 2020, which will reduce their risk surface — up from 10% in 2018. It’s a good thing you got your PAM solution deployed already!

Tripwire’s newest integration app, Tripwire Password Manager (TPM), fills this gap. It acts as a broker between your PAM solution and Tripwire applications. TPM finds the assets needing to (Read more...)