|
Privilege24 Software Suite |
|
The privilege24 software suite provides command authorization and 24hr system monitoring of user activity. Designed for environments where compliance is required privilege24 allows security administrators to control use of system commands, monitor command execution and record user session activity. Privilege24 is available for deployment in Linux and Unix data centers. - High availability environments
- 24/7 security compliance
- 24/7 user session monitoring
- Download evaluation software (simple registration req'd)
- Email
This e-mail address is being protected from spambots. You need JavaScript enabled to view it
Privilege24 software suite enables centralized enforcement of comprehensive security policies and models. Auditing of user activity, events and incident investigation can be undertaken using the privilege24 software suite. Information such as who accessed the command, when and where the command was executed can be obtained from the privilege24 software suite. Active/Active fail over and remote site redundancy can be attained using industry standard off the shelf techniques, when integrated with privilege24, including DNS and Layer 4 server load balancing. |
|
|
Privilege shell provides a convenient Bash compatible shell. Authorization requests for execution of user commands are forwarded to privd, the privilege daemon. When received authorization can be used in conjunction with priv-login session monitoring and recording to provide 24/7 system role based access control and system monitoring. Key technologies:- - Bash 3.2 Compatibility
- TLS x509 Encryption
- Per user and per command authorization
|
|
Privilege Authorization Daemon |
|
The privilege authorization daemon, enables authorization for user executed commands. Using industry standard encryption, with transport layer security, Privd takes the administrative pain away from deciding which commands a user need to use to fulfill their role. Privd includes learning functions that give preselected users carte blanche access to UNIX commands, and upon execution, privd logs the command for review later when appropriate. Previously executed commands can either be approved or declined by system security personnel. Key technologies:- - LDAP Integration
- x509 PKI
- AES TLS Encryption
- Auto Learn User Commands
 |
|
|
Privilege login enables authentication and session monitoring of user activity. Login requests are processed from the operating system, session recording of user activity is then stored for analysis later. Key technologies:- - PAM Authentication
- LDAP Auhentication
- Per user session logging including su, sudo, ssh and telnet.
|
|
Clear Glass Remote Execution |
|
Clear Glass meets the systematic problem of executing remote commands with elevated "root" privileges. Typically datacenter environments include a heterogeneous mix of different Unix like operating systems, enabling a common method of securely executing remote commands does not come without either administrative or security trade offs. For example deploying SSH with shared keys applies to all the users who access the server. It is not practical to deploy a configuration where root can use keys via SSH, but regular users can not. Also in an environment where keys are stored on a shared filer it is very easy for the keys to be obtained and used by a external user. These situations make it an administratively difficult to maintain symmetric server builds and provide automatic deployment and roll back of software. Clear Glass provides an encrypted method, that is authenticated using certificates. Authorization is maintained using Privilege Software's privd daemon. Key Technologies:- - Non interactive remote execution
- TLS AES Encryption
- x509 Certificates
- Root CA, client, server, and user authentication
- Session and command recording
|
|
|
