Dashboard Data is power. Data generated at run-time data is even more powerful as it enables the CISO to make quicker decisions. Keeping that in mind, Sectona now provides a dashboard that gives a running information about all the assets, accounts and users that SpectraPAM manages. This also includes the session activity and the health of the PAM system. The dashboard not only answers essential questions, but also reveals trends that let the PAM administrator gain important insights to analyze faster and make critical decisions. You can quickly find answers to your most pertinent questions: Out of all the accounts that are managed, how many accounts are synced? How many accounts were accessed more than a month ago? How many users log in through Windows Authentication vs. Sectona authentication? How many workflow activities were approved vs. rejected? Host header injection mitigation When a browser sends a request to the web server, the request has a field named 'Host Header' in it which has the requested domain as its value. Many times the physical server which hosts this particular web application also has many other web applications running on it or it may have virtual hosts, some of which may be running web applications inside them. Host header makes it possible for this server to serve different content based on the domain inside this header. If a user specifies an invalid Host Header, most web servers are configured to either return an error message or to pass the unrecognized host header to the first virtual host in the list. Therefore, it’s possible to send requests with unrecognized host headers to the first virtual host. Web cache poisoning and Password reset poisoning are two attacks that happen due to this Host Header injection. SpectraPAM can now mitigate the Host Header injection attack. Manually on-boarding accounts When we run Account discovery, the accounts get on-boarded to PAM by having their passwords reset. For some administrative accounts it is not advisable to reset their passwords. For those cases, Sectona now gives the option to manually onboard the accounts. This gives the flexibility to the PAM administrator by letting the accounts be discovered by SpectraPAM yet the administrator has the option to add the discovered account to the PAM system manually.
Sectona, the Privileged Access Management OEM, announced the version 2.0 release of its flagship product Spectra Privileged Access Management Solution a solution which provides organizations of any size with privileged session management, password automation, privileged task management and server privilege management. This release covers load balancing, high availability, log forwarding to SIEM Solution and network discovery. New Inclusions: Minimize CPU Consumption with Spectra’s Application Load Balancing In Spectra 2.0, when a replica for PAM is created to manage the load/traffic of users accessing Spectra application, few parameters like CPU Consumption are set. When that limit is approached, PAM application communicates with the load balancer to divert incoming traffic to the replica PAM application thereby keeping CPU consumption and concurrency in check. Leverage Built-In Replication & High Availability Like Application load balancing, a built-in replica of Spectra Vault is created in HA, which is in continuous sync with the Primary Vault. In failover scenario, control is switched to the failover Spectra Secondary Vault automatically and all the changes made during this duration are recorded and noted down by the vault. These changes are synced with Spectra Primary Vault at regular intervals. Such built-in replication is achieved due to Spectra’s Embedded Vault and helps minimize manual intervention and data loss. Introducing Maker Checker to review creation of new users, accounts and assets Through the maker checker feature in Spectra 2.0, you can now monitor and review creating, updating and deleting of any asset, account and users within Spectra. Integration with Splunk for SIEM & Log Forwarding A very common scenario we have observed is that the PAM syslogs are forwarded to SIEM placed on log server. This is done usually to store all the logs together on a separate server which is dedicated only to log storage. While Spectra 2.0 supports integration with other SIEM solutions, the latest addition to its exhaustive integration list is Splunk. Inventorize Network Devices within your Environment on to Spectra with SNMP Discovery Spectra readily supports discovery across OS, AD, VMWare, Hyper-V, AWS & Azure With Spectra 2.0, you can now schedule or manually trigger an SNMP Discovery scan as well to discover and automatically onboard network devices within your infrastructure Authenticate via ADFS for added security Along with AD Authentication, Spectra now supports ADFS Authentication as well using SAML Protocol. The benefit of using SAML Protocol is that it is more secure in terms of taking access with an additional layer of security added. What's Enhanced: Auto on-boarding privileged accounts along with their dependencies Earlier only privileged accounts were on boarded, from Spectra 2.0 on wards, the dependencies (if any) are also discovered and on boarded Account password verification and reconciliation Earlier only the passwords were rotated, from Spectra 2.0 on wards, the passwords are verified, reconciled and rotated again (if any missed). AWS console (Token based) access type Earlier only browser-based access to AWS console with username & credentials were allowed. Spectra 2.0 on wards, with deep API integrations, it is possible to allow AWS console token-based access through Spectra for better control and flexibility. To sum up, Spectra, with this release has made significant additions and improvements to its previous version solidifying its robustness and capabilities. Watch out this space for future releases and product updates.