PowerBroker For Windows Product Overview by E-SPIN

Privilege and Session Management for Microsoft Windows

BeyondTrust PowerBroker for Windows is a privilege management solution that gives you unmatched visibility and control over physical and virtual desktops and servers.

• Reduce attack surfaces by removing admin rights from end users and employing fine-grained policy controls for all privileged access, without disrupting productivity.
• Monitor and audit sessions and user activity for unauthorized access and/or changes to files and directories.
• Analyze behavior to detect suspicious user, account and asset activity.

Key Features for PowerBroker for Windows

LEAST PRIVILEGE FOR WINDOWS DESKTOPS AND SERVERS

• Eliminate admin rights: prevent abuse or misuse of privileges on Windows assets
• Ensure productivity: default all users to standard privileges, while enabling elevated privileges for specific applications and tasks without requiring administrative credentials
• Allow admin where needed: proactively identify applications and tasks that require administrator privileges — and automatically generate rules for privilege elevation
• Elevate applications: elevate application as logged on or another user, without exposing credentials
• Ensure productivity: default all users to standard privileges, while enabling elevated privileges for specific applications and tasks without requiring administrative credentials
• Elevate applications: elevate applications without exposing credentials

REPORTING & ANALYTICS

• Ensure compliance: meet internal and external compliance needs by enforcing least-privilege and monitoring privileged activities
• Pinpoint suspicious activity: monitor Windows Event Logs for anomalies and analyze through Behavioral Analytics
• Protect file systems: add optional file integrity monitoring to identify, and even deny, unauthorized changes
• Maintain awareness: monitor UAC events, application rules, requested elevations, denied applications, and more
• Record sessions: add optional session monitoring to capture screens of privileged user activity with keystroke logging to document all privileged changes to an asset
• Understand and communicate risk: leverage an interactive, roles-based reporting and analytics console, backed by a centralized data warehouse for ongoing audits of privilege management activities
• Maintain awareness: monitor UAC events, application rules, requested elevations, denied applications, and more

GRANULAR APPLICATION RISK MANAGEMENT

• Application application usage: blacklist hacking tools, whitelist approved applications, and greylist applications based on rules to keep systems safe
• Block suspicious activity: enforce restrictions on software installation, usage, and OS configuration changes
• Leverage Vulnerability-Based Application Management: scan applications at runtime for vulnerabilities and allow, deny or alter privileges based on vulnerability severity, age, and/or regulatory violations (driven by Retina)
• Elevate applications: elevate application as logged on or another user, without exposing credentials
• Quarantine files: leverage BeyondInsight Clarity Threat Analytics for malware confidence reporting, enabling better risk decision-making
• Simplify application management: rules-based approach eliminates the need to manage complex whitelists for complete application control

MAXIMUM EFFICIENCY

• Gain control over all accounts: automatically discover and profile all Windows accounts, and quickly bring them under centralized management
• Support one-time-passwords (OTPs): support any multi-factor solution that utilizes the RADIUS protocol for additional verification that the user is the intended recipient
• Reduce help desk costs: lower support costs 40% or more by removing local admin rights without raising barriers to end-user productivity
• Ease policy creation/management: set policies via AD Group Policy, BeyondInsight or McAfee ePO, with support for air-gapped systems and non-domain assets
• Reduce help desk costs: lower support costs 40% or more by removing local admin rights without raising barriers to end-user productivity

This video below is about PowerBroker For Windows Product Overview by E-SPIN that will give you more information regarding this product.

For those who can not join us for the session, please see the summary and highlight clip for the event.

E-SPIN recently run a PowerBroker For Windows what’s new session cover what new for new user and existing users.

Feel free to contact E-SPIN for solution, product and project requirements.