ThycoticCentrify adds new security checks and automation to Secret Server

ThycoticCentrify has announced expanded new features for its specialist PAM solution, Secret Server.

With the addition of new security controls, automation and design updates, Secret Server builds on its secrets management capabilities and ease of use to deliver more protection and higher productivity, says the company.

According to the Verizon 2021 Data Breach Investigations report, credentials are the primary means by which malicious actors hack into an organization, with 61% of breaches attributed to compromised credentials.

To mitigate this threat, all organizations, regardless of size, location, or industry, need robust, easy-to-use solutions to protect the accounts and credentials that allow access to these privileges. says ThycoticCentrify.

The latest version of Secret Server brings enhanced security controls to reduce risk. It allows organizations to rotate the master encryption key of secret servers on demand.

Rotating individual secrets housed in the digital vault provides an additional layer of protection to prevent external actors from accessing them.

Secret Server also streamlines the login process for organizations that use junction boxes to protect access to critical resources.

Rather than taking the time to inject unique credentials at each connection point, users can now use a single key to navigate an entire route from launch, to jump box, to destination within a single session.

Users can initiate the end-to-end route through Secret Server or the Connection Manager session management tool interface.

“Our continued focus on minimizing the steps required to protect secrets reduces security administrator workload and attack surface,” said Jon Kuhn, SVP of Product Management at ThycoticCentrify.

He says, “As an example, our master encryption key rotation capability is simple to implement and provides an additional layer of protection to prevent external actors from accessing all other keys stored on the platform. -form.

To improve auditing and compliance, Secret Server ensures that only one privileged user at a time can use a secret. When secrets are not checked back into Secret Server after use, critical maintenance operations cannot be performed and productivity slows.

The latest version also automatically checks API connection secrets after expiration. Additionally, users now have more visibility into how much time is left on a secret crate and can extend the crate if needed.

Finally, the latest version includes improvements to Secret Server’s interface, logging, and reporting to increase usability and accessibility through improved keyboard navigation and screen reader tips.

ThycoticCentrify is a cloud identity security provider, focused on large-scale digital transformation. The company’s PAM solutions reduce risk, complexity and cost while securing organizations’ data, devices and code across cloud, on-premises and hybrid environments.

ThycoticCentrify is used by more than 14,000 leading organizations worldwide, including more than half of the Fortune 100, and counts major financial institutions, intelligence agencies, and critical infrastructure companies among its customers.