Delinea's Cloud Suite looks to stop lateral movement across cloud platforms such as Amazon Web Services. (Photo by Noah Berger/Getty Images for Amazon Web Services)

Delinea on Wednesday announced its latest release of Cloud Suite, a platform that will let security pros control privileged access and authorization in a more granular way for both on-premises and cloud servers.

The company said a new granular privilege elevation workflow lets users request elevated privileges to execute specific commands or command sets that require full administrator rights.

Added functionality also lets administrators assign privileged roles on Linux servers with more detailed control, helping to ensure that productivity does not compromise security. By offering tools to help security teams more effectively manage identities, Cloud Suite aims to stop lateral movement across Active Directory, Azure AD, and Amazon Web Services.

Using traditional privileged access management (PAM) solutions, privileged access became an all-or-nothing affair, explained Jack Poller, a senior analyst with the Enterprise Strategy Group. Once a user is granted privileged access, Poller said they have access to all privileged commands, and have free rein to do whatever they want.

“With this latest release of Delinea Cloud Suite, an organization can limit which privileged commands a user can execute, ensuring users can accomplish their tasks or fix problems in a timely manner while still restricting access to only what is needed for the job at hand,” Poller said. “For example, a user could be granted access to just the commands to manage a database, but not the commands to reboot the server. And these privileges can be granted for a subset of Linux servers rather than for all servers running in the environment.”