Thycotic Secret Server
March 01, 2016
Starts at £3,491
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Scales and integrates easily into almost any environment.
- Weaknesses: None that we found.
- Verdict: Excellent all-around workhorse with good support and an attractive price. Top that off with good scalability and this a good choice for most environments.
Secret Server from Thycotic offers highly scalable distributed privileged account management. It is built on top of a secure vault that cannot only lock up credentials, but can be used to secure certificates and other valuable documents as well as control access through policy and auditing. It also features credential check-out, remote session management and randomising of passwords for privileged accounts. Customisable workflows can be designed to easily integrate this product directly into any environment, including being able to launch a session - such as a remote desktop client - without ever showing the credentials to the end-user at all.
This solution comes as a software-based install and only requires that it be loaded onto a Windows Server with IIS installed. It also requires SQL Server for the backend database, but that can be installed locally or as part of an enterprise cluster. After installation is complete, all management is done via a web-based management console. This is well-organised and the layout is intuitive to navigate. Secret Server also fully integrates with Active Directory to pull in users and groups for setting access policy. From the user side, all access to assigned accounts, systems and passwords is done through an equally intuitive web interface. Users can also access systems directly with Remote Desktop and Putty while still working within the Secret Server.
Scale, distribution and integration are all strong points. The Thycotic Secret Server can be easily deployed in multiple locations or across several servers and configurations. It can be easily pushed out using the distributed engine. Aside from being easily scalable, this offering is also easily integrated for managing service accounts with scripted password changing and API level integration to remove clear text passwords out of configuration files. Credentials can also be managed directly for vulnerability scanners, ensuring credential-based scanning is properly managed. Finally, it can be directly integrated into ticketing systems to allow for full process and change management. All of these functions, plus all user activity, is logged and archived for auditing, including session recordings of user RDP and SSH sessions.
Documentation included installation, getting started and full user guides. We found all documentation to be well-organised and easy to follow with clear, step-by-step configuration instructions. It also includes an excellent amount of detail and screen shots.
Thycotic offers full standard phone-, email- and ticket-based technical support 12/7 at no additional cost. Customers also have access to a large online assistance portal, which includes resources such as an online community and moderated user forum, knowledge base and full product documentation downloads. Premium 24/7 support is also available at an additional subscription cost of £1,745 per year.
At a price starting at £3,491, this product is an excellent value for the money. The Thycotic Secret Server provides high functionality and high scalability at a reasonable starting price. Couple that with really good, no-cost technical support and this product can be a great investment for almost any environment.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Junior Penetration Tester, Hertfordshire, to £35k + benefits
Infosec People - England, Hertfordshire
Cyber Security Architect
CYBER EXECS - London (Greater)
SOC Analyst, Aldershot, £47-56k + package
Infosec People - Hampshire, England, Aldershot
Senior Security Engineer
Loveworklife Recruitment - United Kingdom
Sign up to our newsletters
SC Magazine UK Articles
- Tesco Bank allegedly ignored warnings of hack from Visa
- Investigatory Powers and Digital Economy Bills could threaten economy
- Updated: A million German routers knocked offline by failed Mirai botnet attack
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Microsoft update left Azure Linux virtual machines open to hacking
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- ICYMI: CEO Sacked; MS Zero-day; Passwords dropped; Ransomware wild, charging hack
- 9.2 million medical records for sale on darkweb
- ICYMI: Tesco warned; IP Bill threatens economy; German routers offline; Azure trojan; Gooligan fraud
- Data centres are on the move - where will they end up?
- 90% of ITDMs believe IAM is crucial to digital transformation success
- Research: Hacked companies could see customer exodus if breached
- Misconfigured drive exposes locations of explosives used by oil industry