Securely connect to Linux and Windows servers over SSH and RDP through Check Point’s built-in privileged access management (PAM) solution that eliminates the risk associated with holding static credentials.
申請示範傳統上,保護對伺服器的特權存取的重點是金鑰管理。 但大規模管理、追蹤和輪換金鑰幾乎是一項不可能的任務。 憑證竊盜仍然是最有效的攻擊媒介之一,由於 SSH 管理不善,四分之三的企業容易受到根級攻擊。
Check Point 的零信任架構透過內建 PAM 解決方案確保對伺服器的特權訪問,該解決方案旨在消除使用者持有靜態憑證的需要。 相反,使用者使用短期令牌或公私密鑰對對伺服器進行身份驗證,這兩者都是透過 Check Point 頒發和管理的。 密鑰會定期輪換,並且可以隨時手動撤銷,從而立即切斷所有存取權限。
Check Point’s built-in PAM solution allows users to log-in using their authenticated identity, eliminating the need to hold SSH keys or VPN credentials.
Check Point seamlessly integrates with your cloud provider to automatically enroll servers and their tags to the platform.
Get a complete audit trail of user activity, including executed SSH commands and recorded RDP sessions. Audit logs are tied to users’ accounts and devices and can be exported to your SIEM for additional contextual data.
Check Point’s built-in PAM solution eliminates the risk associated with users holding static credentials. Users authenticate to a server using either a short-lived token or a public-private key pair, both of which are issued and managed through Check Point. The keys are rotated periodically and can be manually revoked at any time, instantly cutting off all access.
Get a complete audit trail of user activity, including executed SSH commands and recorded RDP sessions. Audit logs are tied to users’ accounts and devices and can be exported to your SIEM for additional contextual data.
Check Point integrates natively with SSH and RDP protocols, providing users with a quick and secure connection to any server or environment through their terminal and providing administrators with a complete audit trail of user activity, including executed SSH commands and recorded RDP sessions. This is done without any need for additional plugins.
Check Point integrates with your IDP and leverages user identities for authentication and to provide centralized privileged access management on both Linux and Windows servers. This includes Okta, OneLogin, Azure AD and Keycloak.
Check Point seamlessly integrates with your cloud provider to automatically enroll servers and their tags to the platform, creating continuous sync with your Check Point account. This provides for easy onboarding, tag management, and the seamless operation of autoscaled services.
Provide granular, contextual access, monitoring all user activity, and terminate user sessions in real-time based on suspicious behavior.