M-Tech Information Technology, Inc., a leader in identity management software, has announced the release of its administrative credential security solution, ID-Archive. A core component of the M-Tech Identity Management Suite, ID-Archive is security software designed to secure local administrator passwords on thousands of servers and workstations. It addresses the problem of static, widely shared administrator credentials, which is especially risky when IT staff leave an organization.
While this is a good idea, I can't help but think that any admin with a basic knowledge of scripting can write a batch file that does this and have it scheduled to run every hour (or whatever). I figure this is really aimed at customers who either already have the Identity Management Suite or are considering it. I don't really see this as a solution for anyone else. Just crank out the scripts and let 'em run. It's free and it works. From a compliance perspective this is a big deal since auditors are always looking at so-called "shared" or "generic" accounts. However, what about all the other service accounts with admin rights? Those are just as dangerous. There is definitely a trend toward identity management solutions, but that market is still maturing, and it's hard to find solutions that address the risk that these accounts pose.
No related articles.
