UNIX Privilege Manager
July 27, 2005
$295 per server
- Ease of Use:
- Value for Money:
- Overall Rating:
Makes an easily-managed environment for controlling access permissions and tracking contributes to legal compliance requirements.
Still room to make installation more user-friendly.
An excellent solution to compliance tracking and root access for multiple users, and maintains a secure environment from end to end.
In the Unix world, anyone who knows the root password has access to the root account. This gives them complete control, as there is no way to delegate specific privileges. The systems admin has to decide to control everything, or allow other users root access to perform specific tasks allocated to them. One way leads to overwork, the other to security compromise.
Unix Privilege Manager (UPM) allows system admins to delegate administrative privileges without disclosing root passwords. Tasks such as resetting passwords, performing backups and clearing printer queues can be delegated without risking the overall security of the Unix OS.
To meet growing compliance needs, all activities performed can be recorded. These unerasable audit trails can be taken to the level of storing all keyboard actions and screen displays and a replay feature is included to allow sessions to be reviewed.
UPM comprises three elements. A Privilege Manager Client agent carries the delegated user's request to the central server running the Master Daemon. Their credentials and permissions are checked against the policy document and on verification a request is sent to the sanctioned server. This carries a Local Daemon which double checks the validity of the request. If everything checks out, the Local Daemon acts as a proxy administrator with full root access, but confines the user to the specific directories and applications that they have permission to use.
Once loaded, UPM can be configured using a browser-based admin console and integrated with PassGo's Defender to link with the standard Unix Pluggable Authentication Module.
Platforms supported by UPM comprise IBM AIX, Hewlett-Packard HP-UX and Tru64, Sun Solaris, NCR MP-RAS, Red Hat Linux, Novell SuSE Linux, and SGI IRIX. The review was based on the Red Hat Linux version.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Technical Information Security Consultant
Adeptis - Kent
Senior Security Analyst
Adeptis - Kent
Business Development Manager (IT Security Services)
Adeptis - Reading, Berkshire
Senior Network Security Engineer, London, £68-85k + package
Infosec People - England, London
Sign up to our newsletters
SC Magazine UK Articles
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Met Police grab suspect with phone unlocked to get hold of data
- Cyber-security must reflect risk not just regulation
- Report: Mirai 'is just the tip of the iceberg'
- Data centres are on the move - where will they end up?
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- 9.2 million medical records for sale on darkweb
- Microsoft Office 365 hit with massive Cerber ransomware attack, report
- 400% increase in POS malware variants across US Thanksgiving weekend
- Only 25% of businesses can effectively detect and respond to data breaches
- Is BYOD your company's norm? Beware the ghosts of data past this Christmas
- Over 400,000 phishing sites have been detected each month in 2016
- TalkTalk customers urged to get routers swapped over hacker fears