CyberArk announced new CyberArk Endpoint Privilege Manager functionality that extends protection to Linux platforms. Now, security and IT professionals can easily enforce least privilege and implement foundational just-in-time security controls across Linux endpoints in any environment. Linux is widely applicable to various types of operations – everything from smartphones to cloud computing – and runs 90% of all public cloud workloads. In a recent survey, 83.1% of developers said Linux is the platform they prefer to work on. It's so popular that in 2021, Linux ran on 100% of the world's 500 supercomputers. However, many Linux administrators find it challenging to enforce least privilege policies on DevOps engineers or application owners that access Linux servers while maintaining least privilege controls on Linux machines without creating friction for end users. CyberArk Endpoint Privilege Manager for Linux is a SaaS solution that provides simple and easy configuration and enforcement of least privilege policy. Linux administrators benefit from capabilities that enable them to quickly build the right policy rules for their users and reduce the manual work typically required to maintain these policies. Endpoint Privilege Manager for Linux can monitor and automatically detect privileged activity. It then helps administrators decide whether privileged access rights should be approved or blocked, and easily update the policy accordingly. Security teams and Linux administrators gain critical visibility and control over what users can run and execute on Linux systems. Additional capabilities include:
Standard sudo command syntax for smooth adoption, Sudo with password prompt or passwordless, Configurable policy audit reports for compliance and forensics, Rest APIs for policy automation and external system integration, Agent CLI for support and status monitoring and Upgrade or uninstall agents directly from the SaaS console. Endpoint Privilege Manager administrators can also now define and execute policies via a unified management console interface for protecting the organizations' endpoints across Windows, Linux and Mac platforms.