Silverfort.com

Meeting TISAX compliance: How ASAP Holding secured legacy file access and service accounts

ENVIRONMENT

Active Directory

Entra ID, Microsoft Authenticator

Legacy applications (SQL, SSH, CIFS)

USERS

1,600

INDUSTRY

Automotive

BASED

Gaimersheim, Germany

THE SOLUTION:

THE CHALLENGE:

Quick deployment and strong access controls led to compliance

Comply with TISAX requirements across legacy systems and service accounts

  • Complied with TISAX 6.0 and ISO 27001 mandates to enforce strict controls on AD

  • Enforced MFA protection on legacy on-prem systems, including RDP, Domain Admin access, and sensitive file data

  • Gained visibility and protected service accounts, including shadow IT and misused user accounts

  • Enforce access controls and MFA protection to meet TISAX 6.0 and ISO 27001 mandates

  • Replace legacy MFA tools and secure access to legacy file servers, homegrown apps, and critical authentication protocols

  • Discover and protect unmanaged service account activity across on-prem AD

The challenge: Meet strict automotive compliance standards by securing legacy infrastructure and service accounts

"We used to rely on a legacy file encryption and MFA tool with physical tokens to protect our file shares. But after we migrated our domains, the setup became fragile and complex to maintain. It no longer scaled with our environment or operational needs."

- Sven Nosse, Head of IT and Information Security at ASAP Holding

Finding the right identity security platform

"We looked at traditional PAM tools, but they were too heavy to deploy. We needed something that gave us control fast. Once we saw Silverfort’s demo presented by Protea, it fulfilled my expectations straight out of the box. It was exactly the kind of simple, effective solution we needed to meet the new certification requirements."

- Sven Nosse, Head of IT and Information Security at ASAP Holding

The solution: Rapid deployment and real-time enforcement across legacy systems

"It was a walk in the park. We set up servers, installed the engines and were up and running in a week. The documentation was solid, and we barely needed help."

- Sven Nosse, Head of IT and Information Security at ASAP Holding

Extending visibility and control over service accounts

"Silverfort gave us transparency. We could clearly see which accounts were acting as shadow IT and either restrict or replace them properly."

- Sven Nosse, Head of IT and Information Security at ASAP Holding

Looking ahead: Building long-term identity control with zero complexity

"We were asked to implement a PAM tool for securing network devices, but we pushed back. We didn’t need to record everything, just prove who was accessing what. Silverfort already gave us that."

- Sven Nosse, Head of IT and Information Security at ASAP Holding

About Silverfort

Silverfort secures every dimension of identity. We deliver end-to-end identity security that is easy to deploy and won’t disrupt business operations, resulting in better security outcomes with less work. Discover every identity, analyze exposures, and enforce protection inline to stop lateral movement, ransomware, and other identity threats.

Learn more

About Protea Networks

Protea Networks was founded in Munich in 2004. Today, Protea stand for top-tier IT security services and tailor-made security solutions – built on more than 20 years of deep industry expertise, technical excellence, and a strong network of cutting-edge technology partners, such as Silverfort, where Protea is proud to be a Platinum Partner.

Learn more

Meeting TISAX compliance: How ASAP Holding secured legacy file access and service accounts

ENVIRONMENT

Active Directory

Entra ID, Microsoft Authenticator

Legacy applications (SQL, SSH, CIFS)

USERS

1,600

INDUSTRY

Automotive

BASED

Gaimersheim, Germany

THE CHALLENGE:

Comply with TISAX requirements across legacy systems and service accounts

THE SOLUTION:

Quick deployment and strong access controls led to compliance

  • Complied with TISAX 6.0 and ISO 27001 mandates to enforce strict controls on AD

  • Enforced MFA protection on legacy on-prem systems, including RDP, Domain Admin access, and sensitive file data

  • Gained visibility and protected service accounts, including shadow IT and misused user accounts

  • Enforce access controls and MFA protection to meet TISAX 6.0 and ISO 27001 mandates

  • Replace legacy MFA tools and secure access to legacy file servers, homegrown apps, and critical authentication protocols

  • Discover and protect unmanaged service account activity across on-prem AD

The challenge: Meet strict automotive compliance standards by securing legacy infrastructure and service accounts

"We used to rely on a legacy file encryption and MFA tool with physical tokens to protect our file shares. But after we migrated our domains, the setup became fragile and complex to maintain. It no longer scaled with our environment or operational needs."

- Sven Nosse, Head of IT and Information Security at ASAP Holding
"We looked at traditional PAM tools, but they were too heavy to deploy. We needed something that gave us control fast. Once we saw Silverfort’s demo, it fulfilled my expectations straight out of the box. It was exactly the kind of simple, effective solution we needed to meet the new certification requirements."

- Sven Nosse, Head of IT and Information Security at ASAP Holding

Finding the right identity security platform

The solution: Rapid deployment and real-time enforcement across legacy systems

"It was a walk in the park. We set up servers, installed the engines and were up and running in a week. The documentation was solid, and we barely needed help."

- Sven Nosse, Head of IT and Information Security at ASAP Holding

Extending visibility and control over service accounts

"Silverfort gave us transparency. We could clearly see which accounts were acting as shadow IT and either restrict or replace them properly."

- Sven Nosse, Head of IT and Information Security at ASAP Holding

Looking ahead: Building long-term identity control with zero complexity

"We were asked to implement a PAM tool for securing network devices, but we pushed back. We didn’t need to record everything, just prove who was accessing what. Silverfort already gave us that."

- Sven Nosse, Head of IT and Information Security at ASAP Holding

About Silverfort

Silverfort secures every dimension of identity. We deliver end-to-end identity security that is easy to deploy and won’t disrupt business operations, resulting in better security outcomes with less work. Discover every identity, analyze exposures, and enforce protection inline to stop lateral movement, ransomware, and other identity threats.

Learn more

About Protea Networks

Protea Networks was founded in Munich in 2004. Today, Protea stand for top-tier IT security services and tailor-made security solutions – built on more than 20 years of deep industry expertise, technical excellence, and a strong network of cutting-edge technology partners, such as Silverfort, where Protea is proud to be a Platinum Partner.

Learn more

Silverfort.com

Fullscreen