Review: Thycotic Software Secret Server

By

The Thycotic Secret Server integrates into the exiting environment to manage and control access to critical privileged passwords using a cen­tral web-based repository.

For: Password management for privleged accounts using role-based administration and shared secrets. Against: Lacks flexability with network devices. Verdict: A good product for smaller environments with solid administration capabilities.

Review: Thycotic Software Secret Server
The Thycotic Secret Server integrates into the exiting environment to manage and control access to critical privileged passwords using a cen­tral web-based repository.

With this product, administrators can assign permissions and role-based security to others throughout the organization using controlled shared secret passwords.

This product uses role-based rules to either allow administrators to just view the passwords via their dashboard or actually change the current password. This is kind of like the difference between a user or a power user in Windows.

We found this tool to be fairly easy to install, but installation was a lengthy process in terms of preparation. The Secret Server application installs with integra­tion into a SQL database and IIS web server, but it does not create its own databases. So there are several preparatory steps to be completed before installation can even begin.

Once installed, the system is quite simple and intuitive to use. The web GUI is easy to navigate, and adding users and accounts from Active Directory is quite simple. Policy and secret configu­ration was awkward at first, but became easier as we worked with the product.

From a performance standpoint, this is a fairly good product. We found some useful functionality, such as automatically updating passwords on remote accounts when they expire. For added secu­rity, passwords are centrally stored using AES 256-bit encryption. This product can directly integrate with many platforms.

An installation guide and user guide are provided with the soft­ware in PDF format. Both offer a great amount of detail on installa­tion and confi guration.

Thycotic offers support licenses for all user licensing pack­ages. Support includes all minor updates and major releases. Users with support also receive immedi­ate response to their technical issues from support staff via email, phone and remote assistance.

At a price starting at just under US$490 for 10 users, this product can become expensive quickly for larger environments. While it does have an interesting take on privi­leged password management, we find it to be an average value for the money.

See original article on SC Magazine US
Got a news tip for our journalists? Share it with us anonymously here.
Tags:
secretsecurityserversoftware

Sponsored Whitepapers

Wasabi Reveals Hidden Costs and Cloud Storage Shifts in ANZ for 2025
Wasabi Reveals Hidden Costs and Cloud Storage Shifts in ANZ for 2025
Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Protect APIs. Protect Your Business.
Protect APIs. Protect Your Business.
KnowBe4 Benchmark Report: Reducing Human Risk & Phishing Vulnerability in ANZ
KnowBe4 Benchmark Report: Reducing Human Risk & Phishing Vulnerability in ANZ
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt

Events

Most Read Articles

Qantas facing 'significant' data theft after cyber attack

Qantas facing 'significant' data theft after cyber attack
Home Affairs officer accessed data on "friends and associates"

Home Affairs officer accessed data on "friends and associates"
Ex-student charged over Western Sydney University cyberattacks

Ex-student charged over Western Sydney University cyberattacks
International Criminal Court hit by cyber attack

International Criminal Court hit by cyber attack
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?