Bomgar unlocks The Vault at RSA Conference 2016

Security firm launches new password management system in San Francisco

Access management firm Bomgar has today unveiled a new password vault service at RSA Conference 2016 in San Francisco.

Named Bomgar Vault, the new offering helps companies secure, manage and administer shared credentials for privileged users and IT vendors.

According to the company, this improves security, compliance and productivity by giving back control of privileged credentials to IT, while also allowing them to manage and rotate passwords.

The service is based on a technology acquisition made in December, which can help security professionals scan their network to rapidly find privileged credentials, see if they are active and examine the age of each password.

Advertisement - Article continues below
Advertisement - Article continues below

IT administrators can also import credentials in bulk to build a list of accounts that require management to be locked into the vault, where they can be managed, restricted and logged.

Stuart Facey, EMEA VP of Bomgar, told IT Pro: "Many companies have come from the password vault and extended themselves into the connectivity side. We came from the connectivity side and then added on the password vault. It's a totally different approach, because we think the connectivity is rather important, not just the vault."

"Often, people try to protect the endpoints - the server, for example," Facey explained. "We're about getting to that endpoint securely and, once you get there, limiting where you can go and in the whole process making sure it's all audited. It's getting there and when you're there what can you do and what can't you do."

Will Culbert, Bomgar director of solutions engineering, added that the product should be seen in the wider context of Bomgar's offerings

"It's designed to be joined-up thinking -- access management and then connectivity to the target system," he said.

"Our objective is not to expose passwords to anybody, so the concept of checking out a password is something we would like to make an old concept. Instead you should have an approved federated identity within an infrastructure so you are able to then connect into it during a certain change control window or during your operating hours," Culbert explained.

Advertisement - Article continues below

As well as being compatible with the company's other products, Bomgar Vault can also be integrated into third-party multifactor authentication systems to further enhance security of accounts.

The product is not yet generally available, however, with the company only saying it is coming "soon".

Featured Resources

What you need to know about migrating to SAP S/4HANA

Factors to assess how and when to begin migration

Download now

Your enterprise cloud solutions guide

Infrastructure designed to meet your company's IT needs for next-generation cloud applications

Download now

Testing for compliance just became easier

How you can use technology to ensure compliance in your organisation

Download now

Best practices for implementing security awareness training

How to develop a security awareness programme that will actually change behaviour

Download now


internet security

Avast and AVG extensions pulled from Chrome

19 Dec 2019

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

data governance

Brexit security talks under threat after UK accused of illegally copying Schengen data

10 Jan 2020
cyber security

If not passwords then what?

8 Jan 2020
web browser

What is HTTP error 503 and how do you fix it?

7 Jan 2020
Policy & legislation

GDPR and Brexit: How will one affect the other?

9 Jan 2020