Securing Privileged Access: From Blind Spots to Resilience
SCENARIO #3
Enhance PAM
The third scenario is one in which Silverfort can serve as an additional security layer on top of the PAM solution, using virtual fencing to prevent admins from bypassing the PAM, and JIT and MFA work to further secure the access of all the admins that the PAM solution manages.
SCENARIO #2
Complement PAM
In this case, Silverfort can extend PAM coverage to secure all the privileged users that are not covered by the existing PAM solution. These could be users that reside outside of the PAM solution either temporarily because they haven’t yet been onboarded, or permanently as with the service accounts example that's a prominent use case in which they cannot be subject to password rotation.
SCENARIO #1
Replace PAM
Whether there is a legacy PAM solution or no PAM solution, Silverfort can be deployed to own the full security lifecycle of privileged users. In this mode, there is not a separate PAM solution and the Silverfort Identity Security platform enforces proactive and real-time security controls to govern all the privileged accounts within the AD environment.
Silverfort and PAM: Three deployment options
SCENARIO #1
Replace PAM
Whether there is a legacy PAM solution or no PAM solution, Silverfort can be deployed to own the full security lifecycle of privileged users. In this mode, there is not a separate PAM solution and the Silverfort Identity Security platform enforces proactive and real-time security controls to govern all the privileged accounts within the AD environment.
SCENARIO #2
Complement PAM
In this case, Silverfort can extend PAM coverage to secure all the privileged users that are not covered by the existing PAM solution. These could be users that reside outside of the PAM solution either temporarily because they haven’t yet been onboarded, or permanently as with the service accounts example that's a prominent use case in which they cannot be subject to password rotation.
SCENARIO #3
Enhance PAM
The third scenario is one in which Silverfort can serve as an additional security layer on top of the PAM solution, using virtual fencing to prevent admins from bypassing the PAM, and JIT and MFA work to further secure the access of all the admins that the PAM solution manages.
Securing Privileged Access: From Blind Spots to Resilience
Silverfort and PAM: Three deployment options