- February 3, 2021
- Posted by: admin
- Category: Privileged User Management
Affordable Privileged Session Recording solution
Privileged Session Recording and Monitoring is an essential part of privileged account management. In order to avoid risking your money and reputation, you need to create and maintain an actionable system for monitoring and controlling privileged users – the most powerful insiders in your infrastructure. Ekran System is the perfect solution for this challenging task. With Ekran System, you can continuously monitor, record, and audit all privileged sessions on endpoints in a cost-effective way.
Manage privileged access to your critical endpoints and record any session that takes place after a successful login. Use Ekran System to build an efficient privileged session recording and activity control system. Add insider threat protection capabilities to your existing infrastructure and integrate its data into your SIEM workflow.
Easily analyze privileged activity and investigate incidents using a comprehensive screen capture video format indexed with metadata, such as keystrokes, commands, URLs, or application names. Detect suspicious events and address issues immediately that record privileged activity using standard and custom smart alerts functionality.
If a server connection is temporarily limited or lost, the lightweight Ekran Privileged Session Recording client will continue recording the session in offline mode. Once the connection is restored, all information will be uploaded to the Ekran System Application Server. In addition, Ekran System can automatically generate a large set of user activity reports, allowing you to get a close-up view of every user action and analyze overall user activity.
Monitor, Record, Audit & Act
Privileged Access Management: Secure critical assets with two-factor authentication, one-time passwords, and personalization of shared accounts. Boost the protection of your network by integrating the platform with your internal ticket system.
Privileged Account and Session Management: Get full control over the sessions initiated from your jump servers, restrict or grant permissions, deliver temporary credentials for allowed RDP sessions via the secure password vault.
Real-time Incident Response: Ensure quick and effective reaction to security incidents by setting targeted alerts and specific rules for automatic response actions or manage particular cases manually. Use live session view to actually see what’s happening.
Privileged Activity Audit: Carefully record each session for detailed audit, use smart multi-parameter search and reporting tools for investigations, export forensic data when needed. Set specific recording filters to only audit what matters the most.
Privileged Session Recording Benefits
Ekran System turns Privileged Session Recording and User Management into something more than just a regulatory compliance requirement. We offer a usable and efficient platform for ensuring a high level of control over privileged activity across your network and provide you with important benefits:
Full desktop and server OS support – Privileged Session Recording offers clients for all popular operating systems and supports virtual environments as well as any network architecture. You don’t have to choose between agent-based and jump server schemes: we support any hybrid enterprise architecture.
AI-based compromised account detection – Cybercriminals are constantly improving their ways of compromising privileged accounts. Powered by artificial intelligence, the Ekran UEBA system can detect a hacker who has penetrated a corporate system using stolen credentials.
Enterprise-ready – Privileged Session Recording is easy to implement in large-scale environments due to its high availability, multi-tenancy, and ability to fill the gaps of existing security solutions. Ekran provides enterprise-oriented features such as system resource and health monitoring dashboards and scheduling of automated maintenance tasks.
Active in 20 minutes or less – Privileged Session Recording is quick to install and easily integrates with SIEM and ticketing systems. You’ll get a ready-to-use solution right after a coffee break.
Low total cost of ownership – A perpetual licensing model provides you with the latest version of Ekran System. Floating endpoint licensing enables license reassignment in a couple of clicks. For virtual environments, this process is automated to enhance your organization’s agility.
Privileged access and session management via a jump box
Ekran System’s Privileged Access Management capabilities were built according to NIST recommendations. You can use them to ensure secure remote access to critical endpoints by managing RDP sessions initiated on your jump servers.
With the PAM features in Ekran System, you can:
- Secure access to your Active Directory environment as well as to Linux/Unix and Windows endpoints
- Secure your web-based access
- Specify endpoints that can be accessed by particular privileged users
- Limit the time for which access is granted
- Deliver temporary credentials to specific users and groups
- Automatically generate, encrypt, and manage the credentials of privileged users
You can also use Ekran System’s PAM capabilities to ensure secure remote access to your critical endpoints for third-party vendors, contractors, and remote employees as part of privileged session management.
Password management
Forget about having to deploy extra privileged password management software. Ekran System includes a sophisticated privileged password management solution with all the capabilities you need to properly handle and protect your secrets:
- Password Vault for securely storing and delivering secrets
- Automated and manual password rotation for Windows and AD accounts
- Role-based access control
- SSH key management
- Password management for shared accounts (Windows, Linux)
- Web account password management
Ekran System provides military-grade data encryption and uses only FIPS 140-2 compliant encryption algorithms. All data and connections, including privileged account credentials and client-server connections, are encrypted with AES-256 keys and an RSA-1024 or RSA-2048 algorithm.
Multi-factor authentication
Strengthen the protection of your critical assets with Ekran System’s two-factor authentication (2FA) tool. This tool is part of our rich set of identity and access management features.
Ekran System’s multi-factor authentication tool enhances the user verification process by combining user credentials and time-based one-time passwords. This privileged identity management solution is included with any Ekran Privileged Session Recording license and runs on Windows Server and Windows and macOS endpoints. It is tamper-proof and it records suspicious activities.
Continuously monitor all privileged accounts
Monitoring is an essential part of privileged account management. With Ekran System, you can continuously monitor, record, and audit all privileged sessions on endpoints.
If a server connection is temporarily limited or lost, the lightweight Ekran System Client will continue recording the session in offline mode. Once the connection is restored, all information will be uploaded to the Ekran System Application Server.
In addition, Ekran Privileged Session Recording solution can automatically generate a large set of user activity reports, allowing you to get a close-up view of every user action for forensic audits and analyze overall user activity.