Implement Zero-Trust and Zero-Knowledge Security

Zero-Trust and Zero-Knowledge Security

Distributed work requires remote monitoring and management of IT infrastructure. So you can protect every user on every device across the enterprise with modern privileged access management.

The massive shift to distributed working creates new challenges for IT and DevOps teams, forcing them to monitor and manage infrastructure remotely. IT and DevOps workers need a secure, reliable, and scalable way to connect to machines remotely that is easy to manage.

Keeper Connection Manager (KCM) provides DevOps and IT teams effortless access to RDP, SSH, databases, and Kubernetes endpoints through a web browser. KCM is an agentless remote desktop gateway that can be installed in any on-premise or cloud environment.

Zero-Trust Remote Access to IT Infrastructure.

Keeper Connection Manager is the evolution and new name of Glyptodon Enterprise, which Keeper integrated into its platform after the acquisition.

KCM significantly increases security by providing enterprises with zero-trust remote access to IT infrastructure that most VPNs do not support, with features such as least-privilege access, role-based access control (RBAC), and multi-factor authentication (MFA).

KCM is agentless and clientless. End users interact with remote desktops through a secure session in their web browser, and there are no special plugins or client software to install and maintain. In addition to all major desktop web browsers, KCM also supports iOS and Android web browsers on mobile and tablet devices, where users can access the same functionality as when accessing systems from a desktop, including RDP and SSH sessions.

READ:  What is A Man-In-The-Middle Attack?

To access a remote machine, DevOps and IT staff simply click on the server or desktop they want to access through the interface. Because Keeper Connection Manager integrates with the Enterprise Password Management solution for managing passwords and IT secrets, all passwords and SSH keys can be protected in an encrypted vault. All traffic passes through a secure, authenticated gateway and desktops are not on the public Internet. In addition to minimizing administrative overhead and simplifying the user experience, KCM offers superior connectivity and performance compared to VPNs, which are notorious for their slowness and lack of reliability.

Once authenticated and logged in through KCM, all user activity takes place behind the corporate firewall, providing the same level of protection from security systems for users working remotely as if they were working in a physical office environment. In addition, corporate data is stored on the corporate network, not on local machines, so data can be properly secured and protected, minimizing the risk of data loss or leakage.

Zero-Trust Remote Access to Privileged Systems

Keeper Connection Manager enables administrators to provide access via RDP, SSH, VNC, MySQL, and other common protocols without sharing credentials with end users. Precise granular control allows administrators to access the entire system – or just a single machine. Access can be revoked at any time, and the audit trail feature logs when and how the system was used.

READ:  What is WLAN Encryption?

For audit purposes, KCM supports both video recordings of connection sessions and (for certain connection logs) typescript recordings that capture only the text sent to the client machine. Because these recordings are stored in Keeper Connection Manager and not on end-user machines, the integrity of the recordings is guaranteed; threat actors cannot modify or delete them.

Rapid deployment and minimal maintenance

KCM offers several flexible deployment options via Docker or RPM, with authentication modules for common databases and AD/ LDAP. By default, Keeper Connection Manager supports SSH, VNC, Kubernetes, MySQL databases, and RDP. There are no agents, the web browser is the client, and there is no impact on domain controllers or other services. Desktop images can be easily standardized, and updates to desktops and applications can be automated.

KCM includes additional features such as session collaboration, copy-paste, viewers for mobile phones/tablets, and optimized communication protocols to provide users with an experience similar in performance and responsiveness to using a local resource.

Fully integrated with Keeper’s Cybersecurity & Encryption Suite.

KCM is not only fully integrated with Keeper Enterprise Password Management and Keeper Secrets Manager, but also with Keeper Web Vault, Desktop App, and Admin Console. Additional integrations with Keeper’s Advanced Reporting and Alerts Module (ARAM), BreachWatch, Webhooks, SIEM integration, and compliance tools will follow soon.

READ:  RDP Is A Huge Security Risk for Enterprises

The addition of the Keeper Connection Manager to the Keeper cybersecurity and encryption suite provides organizations with modern, enterprise-wide visibility and coverage for privileged access management.