The Password Management feature allows you to securely store and manage the credentials of shared privileged (PAM) accounts by using secrets (where these credentials are stored in encrypted form in the database), and implement role-based access control. The system supports the JIT (Just in Time) PAM approach.
NOTE: This feature is only available if you have both an Enterprise serial key for Ekran System, and either a Workstation license or a Terminal Server license for the Client (jump server) via which users will get access to critical endpoints.
A stand-alone component of Ekran System, called Ekran System Application Credentials Broker (ACB) is also available, which is a REST API integration tool designed to allow customers to securely (with access token rotation) get PAM secrets data for applications, without needing to log in to the Management Tool, in order to use for their own business purposes.
Table of Contents