Lieberman Software Enterprise Random Password Manager
October 01, 2012
Starts at $25K and is licensed by target system (server/workstation/device) under management.
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Ease of installation and use of the product.
- Weaknesses: The company should better document its product update offering.
- Verdict: Outstanding tool.
Lieberman Software really delivered on this. Its Enterprise Random Password Manager (ERPM) addresses the management of privileged access across enterprise resources. The product automates the management and use of privileged accounts. This product also manages password changes to admin level accounts, as well as ensuring password strength policies are maintained. ERPM supports a wide variety of physical and logical devices, including network devices, Windows server and desktop operating systems, a wide variety of Linux and UNIX systems, various web and database applications and more. ERPM features enhanced privileged identity management functions, management and discovery of leading computing platforms, flexible multifactor authentication options, full interoperability between ERPM and MS System Center Operations Manager and real-time visualization - making it possible to identify potential security issues and instantly recording when privileged account services are requested.
Overall, the system provides a wide-range of features and functions. Plus, the system was very easy to learn and operate. The simple graphic dashboard allowed easy enrollment and management of the system and resources. It took a few moments to return to the dashboard, but this was soon remedied when the new panel was moved and closed. Auto enrollment was easy once Active Directory was selected. The dashboard made it easy to create and set properties on the management sets. Adding Linux systems to the manager was completed in seconds. Enrollment of software applications was intuitive and easy to perform. The workflow function was a very pleasant surprise. Reporting and auditing functions were very fast. A second compliance database was required to use the compliance function.
The product can be downloaded from the company's website and is also available as a VM appliance. It contained installation and user guides, an MSI installer and license key. Installation prerequisites included a Windows Server host, SQL Server Enterprise or Oracle 11g, Microsoft IIS 6.0 or above, and .NET v3.5 or later. After installation is complete, administration is done through a web browser. The ERPM can be installed into a virtual environment with the typical recommendation to place the database on a physical machine. It literally took minutes to install this product.
Installation documentation was fairly easy to follow. The installation guide provides screen shots, examples and diagrams. Configuration settings for the various hardware and software preferences aid in keeping the installation process fairly straightforward.
Lieberman Software offers two levels of support, both provide phone and email assistance. Standard support provides phone aid Monday to Friday 2 a.m. to 6 p.m. PST. Enhanced support provides phone help 24/7/365. Both options provide 24/7 email support. Three programs are offered based on a percentage of the product license cost: one year at 20 percent, two years at 35 percent, and three years at 50 percent. With a price starting at $25,000 per management instance installed, the product cost is comparable to similar products.
Sign up to our newsletters
SC Magazine Articles
- Popular adult website XTube compromised, delivers malware
- Android vulnerability leaves apps open to malicious overwriting
- One in three of the top million websites are 'risky,' researchers find
- Orgs predict $53M risk, on average, from crypto key, digital cert attacks
- Hanjuan Exploit Kit leveraged in malvertising campaign
- Report: 71 percent of orgs were successfully attacked in 2014
- Self-deleting malware targets home routers to gather information
- 'PoSeidon' point-of-sale malware targets payment card information
- Amedisys notifies nearly 7,000 individuals of potential breach
- Report: More than 15,000 vulnerabilities in nearly 4,000 applications reported in 2014
- The best defense is a good offense: The importance of securing your endpoints
- British Airways says rewards accounts hacked, locked down
- Documents on NSA's zero-day policy provide little insight, EFF says
- GitHub on DDoS alert, efforts to curb its largest attack continue
- Shadow data: The monster that isn't just under your bed