IBM® Security Privileged Identity Manager helps
organizations manage, automate, and track the use of shared
privileged identities.
The solution provides the following features:
- Centralized administration, secure access, and storage of privileged
shared account credentials
- Role-based access control for shared account credentials
- Lifecycle management of shared accounts' password
- Single sign-on through automated check-out and check-in of shared
credentials
- Auditing of shared credentials access activities
- Session recording and replay
- Integration with the broader Identity and Access Management Governance
portfolio
- Application identity management
Privileged IDs are general user IDs that are distinguished by the
assignment of security, administrative, or system privileges.
These IDs include pre-built administrative accounts found
in operating systems and applications, such as root, administrator,
sa, db2admin.
In an enterprise environment, multiple Administrators
might share access to a single privileged ID for easier
administration. When multiple Administrators share accounts,
you can no longer definitively prove that an account was used by one
Administrator as opposed to another. You lose personal
accountability and audit compliance.
With
IBM Security Privileged Identity Manager,
organizations can better manage privileged IDs.
IBM Security Privileged Identity Manager ensures that
a privileged user can acquire privileged credentials only:
- If they need it.
- When they need it.
- On the condition that they need it.
- If they have access to it.
When deployed with its Single Sign-On feature,
IBM Security Privileged Identity Manager allow privileged
users to log on to a system without any knowledge of the password
for the privileged identity.