passwordmanager

Privileged Password Manager for Enterprises

Password Manager Pro is a secure vault for storing and managing shared sensitive information such as passwords, documents and digital identities of enterprises. The benefits of deploying Password Manager Pro include:

  • Eliminating password fatigue and security lapses by deploying a secure, centralized vault for password storage and access
  • Improving IT productivity many times by automating frequent password changes required in critical systems
  • Providing preventive & detective security controls through approval workflows & real-time alerts on password access
  • Meeting security audits and regulatory compliance such as SOX, HIPAA and PCI

Privileged Password Management With Password Manager Pro

Discover, Store & Organize

Store & organize all your privileged identities in a centralized vault.

Securely Share

Securely share administrative passwords with the members of your team on need basis.

Automatically Reset

Automatically reset the passwords of servers, databases, network devices and other resources.

Control Access

Control access to IT resources and applications based on roles and job responsibilities.

Launch Direct Connection

Launch direct connection to remote IT resources, websites and applications.

Video Record & Audit

Video record & audit all privileged access, get complete record of all actions.

Password Storage, Management & Workflow

Centralized Password Vault

Store all your enterprise passwords - privileged accounts, shared accounts, firecall accounts and others in the secure, centralized repository.

Shared Administrative Password Management

Securely manage shared accounts such as 'Administrator' on Windows, 'root' on Unix/Linux, 'enable' on Cisco, 'sa' on SQL and others.

Password Access Control Workflow

Request-release controls for password retrieval. Provision for granting time-limited access, exclusive privilege and concurrency controls.

Password Sharing, User Provisioning & Management

Password Ownership & Sharing

Well-defined ownership for the passwords stored in the centralized vault. Provision for selective sharing of passwords on need basis.

Active Directory / LDAP Integration

Import users / user groups from Windows Active Directory or LDAP and also leverage the authentication mechanism.

Role-based Access Controls

Fine-grained restrictions on managing resources and passwords stored in PMP. Restrictions are enforced based on predefined user roles.

Remote Password Reset

Automated Password Resets

Reset the passwords of remote resources from Password Manager Pro web-interface as and when required or automatically through scheduled tasks.

Enforce Password Policy

Ensure usage of strong passwords and periodic resets by creating and enforcing your password policy.

Wide Range of Target Systems

Supports out-of-the-box a wide range of target systems, databases, network devices for access control and automatic password resets.

Application-to-Application Password Management

Any application or script can query PMP and retrieve passwords to connect with other applications or databases, eliminating hard-coded passwords.

Windows Service Accounts Management

Automatically identify and reset the passwords of service accounts associated with domain accounts.

Post-Password Reset Custom Script Execution

Option to automatically execute custom scripts to carry out any follow-up action after a password reset action.

Privileged Session Management, Remote Access & Auto Logon

First-in Class Remote Login

Users can launch highly secure, reliable and completely emulated Windows RDP, SSH and Telnet sessions from browser without any plug-in or agent software.

Privileged Session Recording

Privileged sessions launched from PMP can be completely video recorded, archived and played back for forensic audits.

Automatic Login to Target Systems, Websites

Automatically log on to the target systems, websites and applications directly from the PMP web interface without copying and pasting of passwords.

Audit, Compliance & Reports

Comprehensive Audit Trails & Reporting

Complete record of 'who', 'what' and 'when' of password access. Intuitive reports on entire password management scenario in your enterprise.

Real-time Notifications, SIEM Integration

Real-time alerts on the occurrence of various password events enabling integration with Security Information and Event Management (SIEM) solutions

PCI DSS Compliance Reporting

Reports on the violations with respect to the use and management of privileged passwords based on the requirements of PCI-DSS.

Secure and Enterprise Ready

Extremely Secure & Reliable

All passwords & sensitive data are encrypted using AES 256-bit encryption. Dual encryption for extra security. Can be configured to run in FIPS 140-2 compliant mode.

Two-Factor Authentication

Enforcing two successive stages of authentication for logging in to PMP. Usual authentication is the first stage. Various options provided for the second stage.

Mobile Access

Retrieve passwords and approve requests on the go. Provision for secure offline access.

Disaster Recovery & High Availability

Live Backup

Provision for both scheduled and live backup of entire database for disaster recovery.

High Availability Architecture

Uninterrupted access to enterprise passwords through the deployment of redundant server and database instances. (A single Premium or Enterprise Edition license is enough for High Availability).

Secure Offline Access

Retrieve passwords even when there is no internet connectivity. The offline copy is as secure as the online version. Offline access is available in mobile app too

What Platforms Does Password Manager Pro Support?

  • Platforms (for password reset):Windows, Windows Domain, Linux, IBM AIX, IBM AS400, HP UNIX, Solaris, Mac OS, Sun Oracle XSCF, Sun Oracle ALOM, Sun Oracle ILOM, VMWare ESXi, MS SQL server, MySQL Server, Oracle DB Server, Sybase ASE, LDAP Server, HP iLO, HP ProCurve devices and Cisco Devices (IOS, CatOS, PIX), Juniper Netscreen Devices
  • Platforms (for product installation): Windows, Linux

What Problems Does Password Manager Pro Solve?

If you are an IT Administrator responsible for securely managing your IT infrastructure, check yourself:

  • Are you drowning in a pile of privileged passwords? Do you store administrative passwords in spreadsheets & flat files?
  • Do you find it difficult to track who has access to which accounts?
  • Do you laboriously logon to each application separately to periodically change passwords?

If yes, you certainly need Password Manager Pro!

Administrative/Privileged passwords are literally aplenty in enterprises. Servers, databases, switches, routers, firewalls and any other hardware or software, could have equally large number of administrative passwords. These passwords are insecurely stored in spreadsheets, text files and even as printouts and are shared by a group of administrators.

This traditional practice brings with it a host of issues such as:

  • Insecure storage of passwords inviting security threats
  • Uncontrolled super-user privileges
  • No role-based access control; internal controls become fragile
  • Lack of accountability for actions
  • No provision for enforcing standard password practices/policies
  • No centralized control

Password Manager Pro solves all these problems by providing a secure system to store, administer, and share passwords.

What are the Licensing Options for Password Manager Pro?

There are three license types:

  • Evaluation download valid for 30 days capable of supporting a maximum of 2 administrators. You can test Enterprise edition features.
  • Free Edition licensed software allows you to have 1 administrator and manage up to 10 resources. Valid forever.
  • Registered Version – Licensing is based on two factors:
  1. Number of Administrators
  2. Type of Edition – StandardPremium or Enterprise

Note:

Password Manager Pro comes with five user roles – Administrator, Password Administrator, Privileged Administrator, Password Auditor and Password User. The term ‘administrator’ denotes Administrators, Password Administrators and Privileged Administrators. So, licensing restricts the number of administrators as a whole, which includes Administrators, Password Administrators and Privileged Administrators. There is no restriction on the number of Password Users and Password Auditors. To get more details on the five user roles, refer to this section of our help documentation.

  • Standard Edition – If your requirement is to have a secure, password repository to store your passwords and selectively share them among enterprise users, Standard Edition would be ideal.
  • Premium Edition – Apart from storing and sharing your passwords, if you wish to have enterprise-class password management features such as  remote password synchronization, password alerts and notifications, application-to-application password management, reports, high-availability and others, Premium edition would be the best choice.
  • Enterprise Edition – If you require more enterprise-class features like auto discovery of privileged accounts, integration with ticketing systems and SIEM solutions, jump server configuration, application-to-application password management, out-of-the-box compliance reports, SQL server / cluster as backend database, Enterprise edition will be ideal.

Password Management Features Matrix

Standard Edition
  • Centralized password vault
  • Manual resource addition
  • Import resources from CSV files
  • Import resources from KeePass
  • Import resources from active directory
  • Password policies
  • Password sharing and management
  • Audit and instant notifications
  • User / User group management
  • Local authentication
  • RADIUS authentication
  • AD / Azure AD / LDAP integration
  • Export passwords for offline access
  • Password reset listener
  • Backup and recovery provisions
  • Remote RDP, SSH, and Telnet sessions
  • Two-factor authentication – OTP sent via email
  • Rebranding
  • Mobile access (Android, iOS, Windows)
  • Browser extensions (Chrome, Firefox, IE)
  • VNC support for collaboration
  • Transfer approver privileges
  • IIS AppPool password reset
  • IIS Web.Config discovery
  • Password protected exports
  • Backup file encryption
  • IP restrictions- Web access
  • Managing unidentified email addresses
  • Emergency measures
  • Personalization of user interface(Night-mode theme)
  • Notification Email IDs
Premium Edition
  • All Features of Standard Edition
  • AD / Azure AD Sync – User groups & OUs
  • Auto Logon Helper
  • Password access control workflow
  • Admin dashboard (Live feeds, reports and graphs)
  • Password action notifications (Resource group-specific)
  • Remote Password Reset (On-demand, Scheduled, and Action-based) – List of supported platforms
  • Agent-based password reset
  • Canned reports
  • Two-factor authentication – PhoneFactor, RSA SecurID, Google Authenticator, Duo security, YubiKey, Microsoft Authenticator,Okta Verify
  • High availability
  • Privileged session recording
  • AD / Azure AD Sync – User groups & OUs
  • Privacy settings
  • Password reset plugin
  • User Sessions
  • Trash Users
  • IP Restrictions – API access and Agent Access
  • Disable Password Resets for Privileged Accounts
  • Password Reset using SSH Command Sets
Enterprise Edition
  • All features of Premium edition
  • Data Encryption and Protection with SafeNet HSM
  • MS SQL server as backend database
  • Password management API (XML RPC, SSH CLI)
  • Privileged accounts discovery
  • Active directory sync – resources
  • LDAP Sync – User and User Groups
  • SAML 2.0 support
  • Remote SQL sessions with auto logon
  • Role customization
  • Ticketing system integration-ServiceDesk Plus On-Demand, ServiceDesk Plus MSP, ServiceDesk Plus, ServiceNow, JIRA Service Desk
  • Custom password reset listeners
  • Scheduled export of encrypted HTML files
  • SIEM integration – SNMP traps & Syslog messages generation
  • Email templates for notification configuration
  • Landing Server Configuration
  • Federated Identity Management
  • Smart Card / PKI / Certificate Authentication
  • Two-factor Authentication – RADIUS
  • Custom Reports
  • Out-of-the-box compliance reports (PCI DSS, NERC-CIP, ISO/IEC 27001, GDPR)
  • SQL query reports
  • Privileged session shadowing and termination
  • SQL server failover clustering
  • RESTful API
  • Encryption key rotation
  • EAR support while using MS SQL as backend database
  • Purging selective session recordings
  • File transfers over remote desktop sessions
  • Secure cloud storage options
  • CI/CD Platform Integration – Jenkins, Ansible, Chef, Puppet

Password Manager Pro Add-on Features

Standard Edition
SSL/TLS Certificate Management
SSL/TLS Certificate Discovery:
    • On-demand SSL Discovery
    • Scheduled SSL Discovery
    • SSL Discovery from SMTP servers
    • Subnet Discovery
    • Agent-based SSL Discovery
    • Load Balancer Certificate Discovery
CSR:
    • CSR Process Management
    • CSR Import
    • Microsoft CA Certificate Signing
    • Sign Certificates using Custom Root CA
Public CA Integration:
    • End-to-end Certificate Lifecycle Management with Let’s Encrypt
    • Integration with public Certificate Authorities (CAs): Sectigo (formerly Comodo), GoDaddy, Digicert, Symantec, Thawte, Geotrust, and RapidSSL
Miscellaneous:
  • SSL Certificate Deployment and Tracking
  • SSL Vulnerability Scanning
  • SSL Certificate Expiration Alerts
  • SSL Certificate Groups
  • Track Domain Expiration
Premium and Enterprise Editions
  • All Features of Standard Edition
  • SSH Key Pair Lifecycle Management
  • Periodic SSH Key Rotation
  • Automated SSH Discovery
  • Microsoft CA Auto Renewal
  • CMDB Integration for SSL Certificate Synchronization