Imprivata Privileged Access Management Product Update 2.3.201905052219

May 5, 2019

PAM Update: adds MFA with YubiKey, new permission Manager role, data collection from multiple computers and job execution time windows for groups of records

This first May update brings us warmer weather and also adds support for Multi-Factor Authentication using Yubi Keys, adds Manager role for object permissions, the option to collect command output from multiple computers and job execution time windows for groups of records.

Added support for Multi-Factor Authentication using Yubi Keys

YubiKey is a popular simple hardware device that provides a reliable second-factor authentication for account logins (Read more at https://www.yubico.com/).

This update brings support for YubiKey MFA when accessing the system.

This option allows quickly implementing yet another form of MFA for administrator, root and other privileged accounts on network devices.

Added Manager role for object permissions

This update adds a Manager role for object permissions that allows to create, delete and edit objects in addition to the existing permissions carried by the Editor role.

As Editor, the Manager role does not allow editing object permissions.

This role provides a good option to delegate asset management to a different group of system users while still maintaining centrally designed through folder inheritance permission and access architecture.

Added data collection from multiple devices

This update brings an option to export job history data from multiple job execution results into a single text file.

This option allows completing a workflow of running the same command on multiple selected devices and then collecting the output from this command to a single text file for the consequent analysis.

Added job execution time windows for groups of records

This update allows specifying time windows for job execution for a group of assets (by record types) or even for individual assets.

This option allows limiting execution of periodic jobs to off-peak hours for not to interfere with the main function of the remote devices.

The time window is specified using the popular CRON format.

The system also includes a visual builder for CRON expressions.