Quest Software offers plug-in for Sudo management
Quest Software has announced the launch of a management tool for the open source user permission software Sudo.
Launching Quest One Privilege Manager for Sudo, it said that it offers seamless, centralised and automated policy management of the open-source utility and helps organisations meet compliance requirements.
According to the company, virtually every organisation running Unix/Linux systems uses Sudo, and although revered by users, the lack of visibility and native reporting means it does not meet many organisations' security and compliance needs.
While Sudo has a record of helping delegate the Unix root account to achieve privileged account management objectives, Quest said that managing Sudo itself can be difficult. A Sudo policy across multiple servers often is inconsistently written and executed, and Sudo does not include the ability to audit the important super-user access and activities that are so critical to security and compliance initiatives.
The most recent version of Sudo, 1.8, which was released in March, includes a plugable architecture that allows third-party plug-ins to be used. The first of these is the Quest One policy server that enables organisations using Sudo to achieve heightened security while better accommodating access control compliance requirements.
It also offers a central policy server that eliminates the need for box-by-box management of Sudoers, and provides visibility and relevant reports on Sudo policy and use including: access control; separation of duties; policy tracking, versioning; and change history.