Privileged Access Management, or PAM, practices are utilized to mitigate the risks associated with privileged accounts, which are often targeted by malicious actors seeking unauthorized access or attempting to exploit system vulnerabilities. PAM solutions help organizations enforce stricter controls, increase accountability, and minimize the potential for misuse or abuse of privileged access.
Yet, traditional PAM tools with password rotation capabilities have often been associated with challenges related to cost and deployment. These tools are expensive to acquire and maintain, requiring upfront investments in licenses, infrastructure and ongoing maintenance costs.
Furthermore, traditional PAM tools may face integration challenges with existing systems and applications, as organizations often have a diverse IT environment. Ensuring seamless integration with legacy and modern systems is complex and requires customizations or additional development work.
That’s not to say, however, that the PAM landscape is idly standing by. For example, cloud-based PAM solutions, software-as-a-service (SaaS) models and MSPs have emerged as alternatives that offer more cost-effective and easier-to-deploy options. These advancements created a demand for tools that provide flexible scaling options, reduce complexity and offer improved integration capabilities.
Keeper Security’s KeeperPAM is designed to address the cybersecurity industry's growing demand for modern solutions that are cost-effective, easy to implement and engaging for end users. And KeeperPAM is succeeding in revolutionizing PAM by providing comprehensive PAM capabilities including enterprise-grade password, secrets and connection management in one unified platform.
KeeperPAM's capabilities continue to grow with the launch of password rotation, a new feature that allows organizations to securely rotate service accounts and other privileged credentials on-demand or on an automated schedule.
Keeper's new password rotation capability enables organizations to automate the changing and resetting of system credentials including Active Directory service accounts, Azure AD accounts, AWS IAM accounts, SSH keys, database passwords, Windows local users, Linux users and Mac users.
Password rotation enables customers to:
- Automatically rotate credentials for machines, service accounts and user accounts across their infrastructure and schedule rotations to occur at any time or on-demand.
- Perform post-rotation actions such as restarting services or running other applications as needed.
- Securely store all credentials in the Keeper Vault and control and audit access to credentials.
- Log all actions to Keeper's Advanced Reporting and Alerts Module and third party SIEM providers.
- Create compliance reporting on shared privileged accounts.
The feature also enables admins to seamlessly manage rotation for users and records, create gateways, configure cloud environments and enforce least-privilege access. As part of KeeperPAM, password rotation supports Keeper's zero-knowledge, zero-trust architecture, which always encrypts and decrypts data at the local device level.
“Traditional PAM tools with password rotation capabilities are often expensive and difficult to deploy," said Craig Lurey, Chief Technology Officer and co-founder of Keeper Security. "This leaves organizations that cannot afford or have never fully deployed those solutions vulnerable. We help minimize this risk with an affordable, modern and elegant solution that protects every user and every device in an organization."
Password Rotation through KeeperPAM is available through the web vault, desktop app for Windows/Mac/Linux and the admin console.
Edited by
Alex Passett
