Various types and categories of users, such as IT staff, developers, third-party vendors, and contractors require administrative access to IT resources for performing their work. Granting them an ‘always-on’ administrative access introduces several security issues, including insider threats. The best practice approach is to give just-in-time access, which follows well-defined request-release controls and automatic password resets. Securden helps in automating the entire process.
You can force users to raise a request whenever they need access to an IT asset or an application. Administrators will review the request, and grant time-limited access. Users will get access strictly when required and only for a limited duration.
Securden allows the flexibility to grant permanent access or just-in-time access depending on specific requirements.
With temporary privileged access through workflow, Securden ensures time-limited access after admin approval and it can optionally randomize the password automatically after the user completes access.
The users can raise access requests whenever needed (on-demand). For planned activities, they can submit requests in advance and keep the approval ready. The requests have to include a reason justifying their access request, which the administrators can verify to grant the access.
You can configure automated approvals for the requests coming in from specific categories of users such as senior developers or senior administrators. They need not have to wait for approvals. This feature comes in handy to handle other scenarios like an approver going on vacation.
While granting approvals for access, administrators retain complete control. For example, after approval, if the administrator feels that the access is not needed, he can terminate it anytime - before or during the access.
Securden Password Vault captures every single activity performed by the users as audit trails. You can search for specific actions from text-based trails. Besides, Securden can record the entire RDP, SSH, and other sessions launched from the product as session recordings, which can be played back anytime. You can also choose to monitor sessions in parallel, real-time.