Privileged identity management for SSH keys

ManageEngine launched Key Manager Plus, a comprehensive, Web-based, SSH key management solution at RSA Conference 2016. Available immediately, the new product joins ManageEngine’s privileged identity management suite to help administrators take control of SSH keys.

SSH Key Manager

Safeguarding data in transit has always been a big challenge for security administrators. Most IT organizations today use SSH for remote administrative access and data transfer. While robust and convenient when compared to password-based authentication, SSH keys present some unique challenges. When keys are left unmonitored and unmanaged, organizations are vulnerable to cyberattacks. In the absence of an automated system, getting the list of all the keys in use, finding and restricting access privileges, and ensuring periodic rotation are herculean tasks. ManageEngine Key Manager Plus solves those issues.

“SSH has become the protocol of choice for remote access to business-critical systems both within the corporate network and in the cloud,” said Rajesh Ganesan, director of product management at ManageEngine. “With identity thefts and unauthorized privileged access lying at the root of modern day cyberattacks, managing the SSH key life cycle has become a significant aspect of privileged access management programs. With Key Manager Plus, we’re helping organizations deploy a complete privileged access management solution.”

Visibility and control over SSH environment

Key Manager Plus enables centralized management and visibility over the SSH keys across the network. Highlights of the new product include:

Discovery: Discovers the SSH systems in the network, enumerates users and finds existing private keys.
Secure repository: Consolidates all discovered SSH keys and stores them in a secure, centralized repository for easy access and management.
Centralized key creation and deployment: Centrally creates new public and private key pairs and associates private keys with their users. Deploys new or existing public keys on the required systems.
Periodic rotation: Tightens security by periodically rotating key pairs and prevents their misuse.
View key-user relationship: Provides a holistic view of the key to user relationships across the organization.
Direct connection to SSH systems: Enables users to launch a direct, SSH connection with target systems using the SSH keys stored in Key Manager Plus.
Audit and track: Audits and tracks all user activities and generates reports.
Restrict and regulate access: Associates specific resources to users, establishes granular access controls.
Remove unwanted key: Helps delete any unwanted keys from the database, terminates access immediately and prevents violations by obsolete accounts.
Ensure compliance: Improves SSH key management and helps comply with industry regulations such as SOX, FISMA, PCI-DSS, NERC-CIP and HIPAA.

With Key Manager Plus added to its privileged identity management suite, ManageEngine now gives users the tools needed to consolidate, control, manage, monitor and audit the entire life cycle of all types of privileged identities — passwords and SSH keys alike. The suite also includes Password Manager Pro, the company’s privileged password manager for enterprises that need privileged account management, remote access management and session management.

Key Manager Plus (2.0) is available immediately. In addition to a fully functional, free, 30-day evaluation edition, Key Manager Plus is available as a Free Edition and Standard Edition. Free Edition allows you to have a maximum of five users (SSH user accounts). Standard Edition prices start at $595 per year for 50 users.

RSA Conference 2016




Share this