Lieberman Software Enterprise Random Password Manager (ERPM)
March 01, 2016
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: A lot of automation capability and integration through the API.
- Weaknesses: None that we found.
- Verdict: This is a bargain for larger organisations – if the functionality is adequate for the needs.
The Lieberman Enterprise Random Password Manager provides a secure repository for storing and managing access to privileged accounts and their associated passwords. This product is designed with automation at the core. Once deployed, the Enterprise Random Password Manager can search the environment for systems, determine the privileged accounts, set passwords to those accounts and manage who has access. All this is done on an ongoing basis to ensure all privileged accounts are pulled into the system to be managed. All collection of system information is done without the use of agents and is integrated with Active Directory for managing access policy to users and groups.
This product can be deployed in several different ways, including a software installation on a physical or virtual server or as a cloud deployment using Amazon, Azure or Rackspace. After installation is complete, all management is done using a management console application. We found the overall design to be easy to navigate and intuitive to use. From within the console, policy can be set directly using Active Directory groups or users. Systems can be directly managed from within the console as well. Users can access systems or credentials by logging into a web-based portal and seamlessly launching sessions directly into systems from the browser or viewing credentials directly depending on policy.
Aside from allowing users to easily access systems securely with privileged accounts, this product also can incorporate with system or service accounts. The tool uses service account pooling to ensure that changes to service accounts are made in an organised fashion, which prevents distributed service accounts from being locked out or disabled. Enterprise Random Password Manager becomes the point from where all sessions are launched. This way, all session activity can be logged for auditing and compliance purposes. All remote sessions are recorded and can easily be played back right within the management console.
Documentation included installation and administrator guides. The installation guide provided clear detail on the software install process of the product and the administrator guide provided setup and configuration details. We found both guides to be well-organised and to include clear step-by-step instructions, screen shots and configuration examples that were easy to follow.
Lieberman offers 16/5 telephone- and email-based technical support at no cost to customers. Customers requiring 24/7/365 assistance can purchase a plan in one-, two- or three-year increments. Aside from phone and email support, all customers can access a small support area via the Lieberman website. While not a full support portal, this area does include a knowledge base as well as a user forum and some documentation downloads.
At a price of £20,945- fully licenced with one year of support included and no extra per user or system costs - we find this product to be an excellent value for the money. The Lieberman Enterprise Random Password Manager offers a good balance of automation and granular policy to easily secure privileged and service accounts throughout the enterprise.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Junior Penetration Tester, Hertfordshire, to £35k + benefits
Infosec People - England, Hertfordshire
Cyber Security Architect
CYBER EXECS - London (Greater)
SOC Analyst, Aldershot, £47-56k + package
Infosec People - Hampshire, England, Aldershot
Senior Security Engineer
Loveworklife Recruitment - United Kingdom
Sign up to our newsletters
SC Magazine UK Articles
- Tesco Bank allegedly ignored warnings of hack from Visa
- Investigatory Powers and Digital Economy Bills could threaten economy
- Updated: A million German routers knocked offline by failed Mirai botnet attack
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Microsoft update left Azure Linux virtual machines open to hacking
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- ICYMI: CEO Sacked; MS Zero-day; Passwords dropped; Ransomware wild, charging hack
- 9.2 million medical records for sale on darkweb
- ICYMI: Tesco warned; IP Bill threatens economy; German routers offline; Azure trojan; Gooligan fraud
- Data centres are on the move - where will they end up?
- 90% of ITDMs believe IAM is crucial to digital transformation success
- Research: Hacked companies could see customer exodus if breached
- Misconfigured drive exposes locations of explosives used by oil industry