Hot endpoint password manager

Our Innovative and Award Winning Creation - HOT endpoint Password Manager(HePM)

Download adaptation of Technoviti Award Compendium

A centralized application that identifies and takes over control of all Local Privileged IDs (PIDs) on endpoints (desktops / laptops). It Secures and Automates the process for managing Local Administrative passwords on endpoints, thereby enhancing the endpoint security. e.g. Since endusers doesn't have enough permissions on the desktop / laptop they are working on, HePM Prevents Ransomware or Prevents data leakage or Prevents installation of unauthorized software

It randomly generates Cryptographically Strong Passwords for multiple PIDs on multiple endpoints and changes at once on all endpoints. This ensures Unique passwords for each PID. The Passwords are then Encrypted and stored in Secure Password Valut that can be opened only with Master Vault Password.

PID passwords are not known to anybody, not even IT team. Passwords stored in Vault can be retrieved anytime on need basis. It effectively enforces privileged access restriction on endpoints only for administrative work and maintains Audit Trail of all the activities performed using this tool.

You can use this evaluation copy and check its usefulness to your environment. While it is built to use as it is for small setups, medium & large setup will require careful study and deployed accordingly. Adequate testing must be performed before putting into production use.

Contact Us for assistance, guidance, support, customization, feedback, suggestions, comments or to purchase / acquire this product.

Frequently Asked Questions

HOT endpoint Password Manager (HePM) - A centralized Enterprise Application to manage / secure / automate / control and audit the Local Administrative User ID Passwords and hence the Confidential Data on Endpoints (Desktops & Laptops). By managing Passwords of Privileged IDs of endpoints on Domains and / or Workgroups, which is transparent to end users (end user work is not suffered), HePM Automates following 3 main IT Operational activities and makes them Auditable:

  1. Password Generation - Random, Cryptographically Strong & Unique Password (e.g.: #2z!5uwjXc)N or X9mc1]zF^q2t )
  2. Password Change - Changes Passwords, Encrypts them (AES256 bit Encryption) and Stores in a Secure Vault
  3. Subsequent Password Usage - Any password fetched from the Vault generates Audit log and if fetching is based on Approval process, it can control misuse to a great extent.

The Flow:

  • List endpoints in Domain / Workgroup
  • List all PIDs on selected endpoints alongwith Password Age
  • Randomly generate Cryptographically strong password (unique for eachPID)
  • Change / Reset Passwords for selected PIDs at once
  • Store encrypted Passwords in centralized Secure Vault
  • Use Master Vault Password to fetch Passwords stored in Vault
  • Retrieve Passwords from Vault on need basis
  • Change it immediately after each use and Securely store back in the Vault
  • Generate Audit trail for each action
  • Replicate Secure Vault for BCP purposes

Generally, organizations manage Local Admin Passwords using Group Policy - Active Directory Domain. However it is not recommended even by Microsoft as it is vulnerable to Password Discovery attack. Managing Local Admin Passwords manually is not advisable at all. For details of why managing Local Admin Passwords using Group Policy is vulnerable and what the Password Discovery vulnerability is, read the LinkedIn post - Microsoft Says: NOT to use Group Policy to set Local Admin passwords - visit this link.

HePM reduces the overall cost of these 3 operational activities (Password Generation, Password Change and Password usage) like Resource Costs, Administratives / Operational Costs (Generating unique Passwords, Password Envelope Maintenance, Changing Passwords, ...) and other indirect costs (PID Inventory, Audit Logs for each & every activity, Password Replication, ...), etc.

The intangible and indirect costs savings & value add that HePM provides in terms of Data Security and Compliance are beyond compare.

It has potential to save Rs. 5 lakh per annum on Resource Cost alone (for 500 user setup) apart from other tangible and intangible benefits which are much more than Resource cost. Cost Benefits / ROI of hot endpoint password manager

Yes, with backup of appropriate data (files, Database and Registry), the Passwords stored in Vault can be accessed from alternate location (DRsite).

HePM : Universal Secure Automation Weapon - Beyond Verticals & Beyond Size Takes the Endpoint Security to the next Level towards closing the Endpoint Security Loop

HePM would be useful for any setup having more than 30 Computers and any segment SME or Corporate (BFSI, Pharma, Automobile, Manufacturing, Education, Chemical, Construction, Government, HealthCare, Retail, FMCG, Hospitality, Logistics, Media, Telecom, IT, ...).

HePM licensing is based on number of target user IDs for which the Password has to be managed. So License cost is per user / year. Contact Us for more details