BeyondTrust DevOps Secrets Safe enhances just-in-time access for cloud infrastructure


BeyondTrust, a leader in Privileged Access Management (PAM), has announced the release of BeyondTrust DevOps Secrets Safe 21.1. The release includes the enhancement of dynamic accounts functionality with just-in-time (JIT) access controls for cloud infrastructure. As enterprises continue to adopt a JIT approach to PAM, BeyondTrust’s DevOps Secrets Safe dynamic accounts capabilities helps them meet their zero standing privileges (ZSP) targets.

Organizations are also adopting tools for automating many business processes, such as Robotic Process Automation (RPA) applications. These tools often require credentials or API keys for authentication and access to various sensitive systems. The new release includes an integration with RPA vendor Blue Prism. Customers can now leverage DevOps Secrets Safe for secure storage, control and audit of secrets used in RPA workflows.

Changing business practices, the accelerated adoption of cloud-based solutions and other aspects of digital transformation have resulted in an explosion of privileged credentials and secrets used by applications, automated workflows, and other non-human identities. Implementing secrets management practices is necessary to remain agile and innovative, while maintaining a strong security posture. BeyondTrust DevOps Secret Safe is a “built-for-DevOps” security solution that addresses these operating demands.

Built on Docker containers for Kubernetes deployments, DevOps Secrets Safe helps IT security personnel and DevOps engineers easily meet the scalability requirements for highly elastic DevOps environments. It mitigates the risk of a single point of failure with a high-availability microservices-based architecture. The API-first approach makes it adaptable to the way developers work, removing friction and encouraging adoption. DevOps Secrets Safe assigns unique identities to machines, applications, services, containers, virtual machines (VMs), etc. These non-human identities can be identified, authorized, and managed, just as a human user is managed, enabling much-needed access granularity and enhanced security. DevOps Secrets Safe also provides a complete audit of all secrets operations, making it easy to meet compliance mandates.

BeyondTrust DevOps Secrets Safe 21.1 new features and enhancements include:

  • Service accounts can be configured with a “time to live” duration, limiting their access window.
  • Securing Ansible playbooks by managing their cloud APIs secrets.
  • Native integration between DevOps Secrets Safe and Blue Prism to enable secure storage and usage of secrets and other sensitive information in RPA processes.
  • BeyondTrust DevOps Secrets Safe’s advanced secrets management capabilities enable enterprises to accelerate their digital transformation projects. These advances were highlighted in the February 2021 KuppingerCole PAM for DevOps debut report, earning BeyondTrust the highest marks for security, functionality, usability, and deployment.

“Enterprises must meet security standards and compliance around PAM in all areas, including traditional IT and highly elastic DevOps environments,” states Dan DeRosa, Chief Product Officer at BeyondTrust. “We continually expand the capabilities of our products to secure all privileged entities, whether human or non-human, as with the case of DevOps. We have expanded our commitment and investment in this area to keep pace with changes in the market and the needs of our customers.”

Leave a reply