Imprivata Privileged Access Management Product Update 2.3.202009272223

September 27, 2020

PAM Update: Adds view-only join option for WEB Sessions for viewers, Expanded ACL option for the Inventory report and search filter for servers

This update adds support for record Viewers to join active WEB Sessions in view-only mode, an Expanded ACL option for the Inventory report, and Server criteria to the Search Center to filter server records with connect option.

The update also adds timestamp and editor to Object Access report, timestamp of report generation to all report exports as well as the time of the request approval to various request reports.

Added support for record viewers to join active WEB Sessions in view-only mode

The update added support for record viewers (with Viewer and Unlock permissions) to join active WEB Sessions in view-only mode following request approval from session owners.

Record viewers can see the list of the active sessions on the Record View screen with the option to Request Join to the specific active WEB session.

Session owners can approve or deny join requests using the in-session notification or control on the WEB session toolbar.

After their request is approved, viewers receive alert notifications and also can see the Join option on the record view screen establishing view-only join to the approved session.

Users with Editor or higher access to a record can see the interactive Join option for active sessions on the Record View screen instead of Request Join. This option simplifies session joining by managers that were previously only available in the sessions list report.

The option allows safe request/approve-based peer sharing of privileged sessions for training, review or collaboration purposes complementing the previously available case of the manager joining a session of a less privileged user in interactive mode.

The option also simplifies the session join option for all groups of users.

Added Expanded ACL option for the Inventory report

The update added the option to build an Inventory report with a Direct ACL or Expanded ACL filter.

Previously available Direct ACL option reports permissions directly granted for a user or a group to each reported object on the object permission screen (or inherited from the parent object).

The newly introduced Expanded ACL option displays the list of all named users with specific permissions that have access to each of the objects in the list either directly or through nesting group membership, granted through an object, global permissions or global role.

For both Direct or Expanded ACL options the report includes the editor and timestamp for each permission. Both options include information about the inheritance status of the object permission set.

Users can export the report built with either Direct of Expanded ACL options in PDF or CSV format. Users can also schedule daily, weekly or monthly report delivery for selected vaults, folders or the whole system.

The option simplifies security audits by providing comprehensive access information for broadly selected groups of assets in a single unified place for auditors to review.

Added Server criteria to the Search Center

The update adds Server criteria to the Search Center to only search for records with the connect option. This extension allows users to quickly find the server to connect to.

Added change control information in Workflows, Inventory and Object Access reports

The update adds editors and timestamp data to Direct and Expanded ACL in Inventory report as well as to Object Access reports indicating editor and timestamp of permission modifications.

The option simplifies change control as well as security access audit.

The update adds the timestamp of workflow approval to the Access Requests, My Requests and Access Request details screen to evaluate the efficiency of the request approval process.

The update also adds report title and generation timestamp to all report exports as well as to background reports distributions. The option simplifies the security audit process.