Lieberman Software Enterprise Random Password Manager
October 01, 2012
Starts at $25K and is licensed by target system (server/workstation/device) under management.
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Ease of installation and use of the product.
- Weaknesses: The company should better document its product update offering.
- Verdict: Outstanding tool.
Lieberman Software really delivered on this. Its Enterprise Random Password Manager (ERPM) addresses the management of privileged access across enterprise resources. The product automates the management and use of privileged accounts. This product also manages password changes to admin level accounts, as well as ensuring password strength policies are maintained. ERPM supports a wide variety of physical and logical devices, including network devices, Windows server and desktop operating systems, a wide variety of Linux and UNIX systems, various web and database applications and more. ERPM features enhanced privileged identity management functions, management and discovery of leading computing platforms, flexible multifactor authentication options, full interoperability between ERPM and MS System Center Operations Manager and real-time visualization - making it possible to identify potential security issues and instantly recording when privileged account services are requested.
Overall, the system provides a wide-range of features and functions. Plus, the system was very easy to learn and operate. The simple graphic dashboard allowed easy enrollment and management of the system and resources. It took a few moments to return to the dashboard, but this was soon remedied when the new panel was moved and closed. Auto enrollment was easy once Active Directory was selected. The dashboard made it easy to create and set properties on the management sets. Adding Linux systems to the manager was completed in seconds. Enrollment of software applications was intuitive and easy to perform. The workflow function was a very pleasant surprise. Reporting and auditing functions were very fast. A second compliance database was required to use the compliance function.
The product can be downloaded from the company's website and is also available as a VM appliance. It contained installation and user guides, an MSI installer and license key. Installation prerequisites included a Windows Server host, SQL Server Enterprise or Oracle 11g, Microsoft IIS 6.0 or above, and .NET v3.5 or later. After installation is complete, administration is done through a web browser. The ERPM can be installed into a virtual environment with the typical recommendation to place the database on a physical machine. It literally took minutes to install this product.
Installation documentation was fairly easy to follow. The installation guide provides screen shots, examples and diagrams. Configuration settings for the various hardware and software preferences aid in keeping the installation process fairly straightforward.
Lieberman Software offers two levels of support, both provide phone and email assistance. Standard support provides phone aid Monday to Friday 2 a.m. to 6 p.m. PST. Enhanced support provides phone help 24/7/365. Both options provide 24/7 email support. Three programs are offered based on a percentage of the product license cost: one year at 20 percent, two years at 35 percent, and three years at 50 percent. With a price starting at $25,000 per management instance installed, the product cost is comparable to similar products.
Sign up to our newsletters
SC Magazine Articles
- RSA Conference 2015: Prepare for the IoT before it's too late, Sorebo warns
- Study: Open Source Software use increasing in enterprises but without vulnerability monitoring
- 'Aaron's Law' returns to Congress
- RSA 2015: Tension continues to grow between govt, cryptographers
- CozyDuke APT group believed to have targeted White House and State Department
- Study: Conficker declared top threat of 2014, but N. America targeted mainly by AnglerEK
- RSA 2015: Straight talk about encryption, bulk surveillance and IoT
- RSA 2015: In the healthcare industry, security must innovate with business
- RSA 2015: Unintended use of aircraft systems next challenge for counterterrorism community
- RSA 2015: Bug hunting and responsible vulnerability disclosure