Xton Access Manager Product Update 2.3.202011292309
Today we released new update to the Xton Privileged Access Manager software. This update adds record types security policy report for audit review, added Yubikey MFA support for native clients connecting using SSH and RDP Proxy, added account management support for Fortigate and Netscaler devices, and optimized user experience for Access Request submission.
Added record types security policy report
The update adds the option to export record types policies as PDF report for audit review. The report includes record type parameters (session manager, custom script, inheritance, vault visibility), list of fields, password complexity formula as well as task policies for selected or all configured record types. The report provides insight into default access security configuration for auditors and system owners to review.
Added Yubikey MFA support for native clients
The update adds Yubikey MFA support for users connecting using native clients such as PuTTY, mstsc, MobaXTerm, Secure CRT, Royal TS, WinSCP, scp, etc via SSH Proxy or RDP Proxy. Yubikey MFA is a popular MFA option based on the hardware token. The update extends the option to use various MFA providers to protect privileged access to sensitive assets.
Added account management support for Netscaler and Fortigate devices
The update adds Check Status and Password Reset scripts for Netscaler and Fortigate network devices. The option improves privileged access management coverage for network infrastructure. System administrators can add Check Status Remote Fortigate and Password Reset Remote Fortigate, or Check Status Remote Netscaler and Password Reset Remote Netscaler scripts to the regular Unix Host record to enable account management for the corresponding network device or extend a Unix Host record type for the broad application of account management policies for multiple devices.
Optimized user experience for Access Request submission
The update adds several extensions to Access Request form to facilitate adoption of request-based access to sensitive assets. The update allows users to submit access requests quicker and with less GUI interactions. First, users can select request reason from the list of top 10 previously provided entries. Second, request reason field auto-prompts a user to select one of top used reasons while the user types the new request reason. Lastly, system administrators can change default requested time using system parameter Default Requested Time.
Added the option to block clipboard exchange with remote WEB session
The update adds the option to block clipboard exchange with remote WEB sessions using global parameter Session Clipboard Transfer with potential values Enabled or Disabled. The option could be overwritten for individual records using record type Choice field ClipboardTransfer (Display name: Clipboard Transfer, Selection: Enabled, Disabled, Use Global). The option allows to control clipboard transfer operation to comply with government and industry regulations.
Added the option for native RDP clients to launch alternative shell when connecting to RDS server
The update adds the option for native RDP client such as mstsc to launch alternative shell when connecting to RDS server to complement already existing WEB Sessions capabilities. RDP Proxy uses the same record level Command field to launch published RDS application to be compatible with WEB Sessions during connection without displaying Windows Desktop.
Added the option to disable WEB GUI check for the latest version
The update adds the option to disable WEB GUI check for the latest version by providing system property xtam.web.version.disable=true (default values is false) in $XTAM/web/conf/catalina.properties file. The option disables periodic connection to the update repository for deployments operating in air-gaped or regulated environments.
- XTAM Gateway
- XTAM REST API Documentation
- XTAM Password Vault Free Trial Download
- Xton Access Manager User Manual
- Getting Started Guide
- Xton Technologies News and Events
- Xton Access Manager How-To Guides
- Explore Our PAM Features and Highlights
- Explore a pre-configured live demo in our environment
- Best Practices Guide provides insights into both Concepts and Design elements for users looking to build out their PAM deployment
The software requires about five minutes to install on a freshly built Windows or Linux server or desktop with 2+ Gb RAM and no pre-requisites. After installation, please follow our Getting Started Guide for step-by-step introduction to the application.
Read the product documentation including Windows and Linux installation instructions as well as Getting Started Guide: https://www.xtontech.com/resources/documentation/
Follow this link for the instructions how to update the existing setup: https://www.xtontech.com/resources/faq/updating-xton-access-manager-version/
Check the software pricing, including options and licensing FAQ: https://www.xtontech.com/store/
We appreciate your feedback and comments about Xton Access Manager and also about handling privileged accounts, passwords, keys and certificates as well as sessions to remote computers in general.
Thank you for your interest in our product.
Xton Technologies team
Xton Access Manager for Privileged Access Management (PAM) provides complete, control for your privileged passwords, secrets, certificates and documents to meet audit requirements while limiting your risk of security breaches. It’s easy to install, affordable, cloud-ready and offers unlimited use and storage
Please fill out this form to receive a download link to get started today, even on your current desktop or laptop. Documentation is available to help or you can email or call us to request a trial extension, discuss questions and share your feedback. We would love to talk to you.
The Featured image for this article is Social media vector created by stories – www.freepik.com