KuppingerCole Report
By Paul Fisher

Enhanced Privilege Access Management Solutions

Privileged Access Management (PAM) is one of the most important areas of risk management and security in any organization. Changing business practices, agile software development and digital transformation has meant that PAM solutions need an enhanced set of features to reduce the risk of privileged accounts being hijacked in this more challenging operating environment.
By Paul Fisher

Commissioned by One Identity

1 Introduction

Digital transformation is no longer optional for businesses and organizations if they wish to stay competitive and deliver greater value to customers. ...

Among the key challenges that drive the need for privilege management are:

  • Abuse of shared credentials
  • Abuse of elevated privileges by unauthor ...
Login Free 30-day Select Access Get full Access

2 Highlights

  • The need to manage the increased numbers of privilege accounts across the organization
  • How next generation PAM solutions must support non-human, ...
Login Free 30-day Select Access Get full Access

3 The case for enhanced PAM solutions and why basic PAM is not enough

Privileged Access Management (PAM) has gone from being a niche component of enterprise security portfolios to assuming a more central role. More vendo ...

Login Free 30-day Select Access Get full Access

3.1 The impact of digital transformation

Digital transformation is by far the most critical influence on the changing role of Privileged Access Management in today’s companies and organizat ...

Login Free 30-day Select Access Get full Access

3.2 The new demands on PAM and the need for enhanced features

The impact of digital transformation has made it even more important that PAM is deployed in organizations. While pushing ahead with change, many orga ...

Login Free 30-day Select Access Get full Access

4 The essential components of enhanced PAM solutions

PAM solutions should offer a full set of advanced features as an integrated package that combines ease of use with scalability to reduce the risk of s ...

Login Free 30-day Select Access Get full Access

5 The One Identity approach to managing privileged accounts

One Identity is a US based Identity and Access Management (IAM) provider founded in 2003 and is a business within Quest Software. Its One Identity Saf ...

One Identity Safeguard is a suite of three PAM modules that offers an integrated approach to the management of core PAM tasks: privileged passwords, p ...

Login Free 30-day Select Access Get full Access

5.1 Safeguard for Privileged Passwords

Safeguard for Privileged Passwords grants role-based access with automated workflows designed to speed up provisioning and authentication. Administrat ...

Login Free 30-day Select Access Get full Access

5.2 Safeguard for Privileged Sessions

Safeguard for Privileged Sessions is a session monitoring tool that controls, monitors and records the privileged sessions of administrators, remote v ...

Login Free 30-day Select Access Get full Access

5.3 Safeguard for Privileged Analytics

PAM solutions should offer enhanced analytics so that administrators and IT managers can pinpoint risks in access flows as well as highlight potential ...

Login Free 30-day Select Access Get full Access

5.4 Safeguard deployment options and third-party support

All Safeguard PAM solutions are optimized for on-prem, hybrid and cloud environments and meet current scalability standards so additional appliances c ...

Login Free 30-day Select Access Get full Access

5.5 One Identity Privileged Access Suite for Unix

The Privileged Access Suite for Unix combines One Identity’s Active Directory Bridge solution Authentication Services with two options for root dele ...

Login Free 30-day Select Access Get full Access

5.6 Authentication Services

Many organizations will run mixed environments with Unix identities as well as those in Active Directory. To simplify management of identities across ...

Login Free 30-day Select Access Get full Access

5.7 Privilege Manager for Sudo

Sudo is a useful computing resource that allows users to run programs with the security privileges of another, but it must be securely managed. One I ...

Login Free 30-day Select Access Get full Access

5.8 Privilege Manager for Unix

Privilege Manager for Unix provides delegation of the Unix root account based on individual roles and rights. It logs all keystroke activities underta ...

Login Free 30-day Select Access Get full Access

6 Recommendations

Having decided that a PAM solution is needed for the organization there are several important steps to take in preparation to choose the right solutio ...

Login Free 30-day Select Access Get full Access


©2021 KuppingerCole Analysts AG all rights reserved. Reproduction and distribution of this publication in any form is forbidden unless prior written permission. All conclusions, recommendations and predictions in this document represent KuppingerCole´s initial view. Through gathering more information and performing deep analysis, positions presented in this document will be subject to refinements or even major changes. KuppingerCole disclaim all warranties as to the completeness, accuracy and/or adequacy of this information. Even if KuppingerCole research documents may discuss legal issues related to information security and technology, KuppingerCole do not provide any legal services or advice and its publications shall not be used as such. KuppingerCole shall have no liability for errors or inadequacies in the information contained in this document. Any opinion expressed may be subject to change without notice. All product and company names are trademarks™ or registered® trademarks of their respective holders. Use of them does not imply any affiliation with or endorsement by them.

KuppingerCole Analysts support IT professionals with outstanding expertise in defining IT strategies and in relevant decision-making processes. As a leading analyst ompany, KuppingerCole provides first-hand vendor-neutral information. Our services allow you to feel comfortable and secure in taking decisions essential to your business.

KuppingerCole, founded in 2004, is a global, independent analyst organization headquartered in Europe. We specialize in providing vendor-neutral advice, expertise, thought leadership, and practical relevance in Cybersecurity, Digital Identity & IAM (Identity and Access Management), Cloud Risk and Security, and Artificial Intelligence, as well as for all technologies fostering Digital Transformation. We support companies, corporate users, integrators and software manufacturers in meeting both tactical and strategic challenges and make better decisions for the success of their business. Maintaining a balance between immediate implementation and long-term viability is at the heart of our philosophy.

For further information, please contact clients@kuppingercole.com.