Privileged accounts have special access rights that go beyond those of a normal user. They can be used to remove or install software or to adjust configurations, for example. Organizations often struggle to properly protect these Active Directory accounts. Consequently, they are often targeted by cybercriminals, who can use them to do a lot of damage. Moreover, this often goes unnoticed for a long time. To solve this problem, Inetum-Realdolmen has developed its own self-service PIM solution (SSPM). The SSPIM is made available via the Microsoft Azure Marketplace.
SSPIM as a cloud solution
Specifically, Inetum’s SSPIM solution ensures that privileged accounts only receive their higher rights for a limited period, according to the just-in-time (JIT) principle. This means that a user can request the rights when they actually need them, and they will expire automatically after the set time interval. Administrators can also easily track and control all privilege escalations. The audit logs also remain available.
Jo Leemans, Director Infrastructure, Outsourcing and Resell at Inetum-Realdolmen: “The number of cyberattacks has increased exponentially in recent years. Cybersecurity is high on the agenda for SMEs, large companies and public organizations. By only granting the privileged accounts just-in-time and only temporarily, cybercriminals are given far fewer opportunities to access these rights, and when they do get access, the damage is more limited. We want to facilitate access to this piece of the solution to all organizations, via the mode and conditions of the solution's offer."
Rik Delva, Solution Manager at Inetum-Realdolmen, explains: "We’re filling a gap in the market with our Self-Service PIM. PIM solutions usually offer either too much or too little functionality. In the former case, the solution is often too expensive, and in the latter, it’s not effective enough. The functional focus of our solution is almost exclusively on managing privileged accounts, and it complements the Azure Privileged Identity Management solution. In effect, we’re expanding the Azure PIM with on-premise functionality to create a PIM solution for hybrid environments.
Web application on Microsoft Azure
Inetum’s Self-Service Privileged Identity Management solution is an effective, accessible web application running on Microsoft Azure, so customers don’t need to install the application. They can also do the minimum configuration independently, putting minimal strain on IT staff. All they need to do is install an on-premises agent to perform all the actions driven by the web application. There are no major implementation or consultancy costs associated with using the Self-Service PIM. The SaaS solution can be renewed every month, so customers don’t have to make a long-term commitment. The web application is now also available in the Microsoft Azure Marketplace.
"Currently, many organizations operate in a hybrid world, and it makes sense for them to extend Azure Privileged Identity Management to on-premises environments. Just as good identity management is a no-brainer from a security perspective, so too is implementing the Inetum-Realdolmen SSPIM solution," concludes Gunther Staes, Partner Marketing Manager at Microsoft.
