cloakware server password manager
key features
Centralized, secure credential storage
With CSPM, application IDs and passwords are stored in a clustered database in support of high availability environments, and are protected using the AES algorithm. Centralized storage permits centralized administration and enforcement across all servers. Centralized password updating and synchronization eliminate the potential for server outages.
Automated, secure credential retrieval
Only authenticated and authorized servers and applications are able to make requests for application IDs and passwords. CSPM goes far beyond OS level authentication by including checks for the executing application's ID and location, tamper detection and unique keying material per server. Unattended servers no longer need hard-coded credentials to gain access to other servers.
Strong administrative authentication
The Java Authentication and Authorization Services interface, a pluggable authentication module architecture, enables multiple methods for authenticating administrators against the CSPM console, including ID and password, LDAP and RSA SecurID, with the extensibility to add more.
GUI and Java API administration
Ad-hoc and batch loading of CSPM-managed entities is made possible through a GUI and Java interface. The Java interface is remotely and securely accessible, permitting the creation of batch loading utilities, custom administrative interfaces or integration with other administrative and provisioning tools.
Administrator roles
Enabling the concept of “lowest level of privilege”, CSPM's administrator roles feature allows an organization to delegate the responsibility of managing the CSPM solution without granting unnecessary access to features. Granular roles assignment allows for customization of the CSPM administrative environment and permits the creation of or integration with administrative process workflows.
“Push” password synchronization
CSPM's password synchronization feature helps close the loop for password changes and eliminate potential race conditions and server outages. The “push” feature allows the CSPM server to take control of password change processing while ensuring that applications always maintain access to the most current password.
Event management
Event Management brings intelligence to the CSPM system by allowing the CSPM server to communicate tasks with the CSPM clients. Some tasks include: key updates, cache management, update management and more. Events allow the CSPM system to stay current with changes in the system by enabling the components to communicate.
Key management
Not only does CSPM allow your organization to manage the passwords used by your applications but all of the keying materials used to securely communicate these passwords can also be changed regularly. Whether an ad-hoc or scheduled request, it is possible to change the keys on the CSPM server or on any of the CSPM client machines.
Broad platform support
The CSPM client software is supported on versions of Solaris, AIX, Linux and Windows. There are no platform restrictions on the server that the CSPM client is attempting to connect to.
Fault tolerant architecture
Database clustering, load balancing and extensible application servers are all included to support system fault tolerance. CSPM includes all the necessary software to create a fault tolerant implementation. CSPM will also operate on a single server for development and test purposes. CSPM Express, our appliance-based solution, includes fault tolerant hardware components like dual LAN, video, power and RAID drives.
Update management
CSPM supports a range of update solutions such as automated, manual, scheduled and OS-specific updating. Real-time updating of the CSPM client software minimizes or eliminates any server downtime.
Reporting
Standard reports are available from the administrator console for:
- All administrator activities
- All credential requests
- All credential mappings
- All unmanaged accounts
- All orphaned accounts
Backup and restore
Administrator utilities to backup and recover the CSPM database are included to allow integration and scheduling with existing backup facilities.
A range of supported platforms
Try the CSPM Savings Calculator to find out the potential cost savings for your organization