Enterprise Random Password Manager (ERPM) can discover and change the embedded privileged account passwords that control access to ASP.NET web sites. By doing so, ERPM helps ensure the security and regulatory compliance for organizations whose ASP.NET credentials provide unlimited access into their corporate databases.
Millions of ASP.NET web sites rely on high-powered embedded privileged accounts passwords as a means to provide secure access to corporate databases and other IT resources, including servers, routers and network appliances. Usually these ASP.NET web sites were initially set up using shared privileged account credentials that are known to everyone in the IT and development departments.
Most of these embedded passwords are never changed, an oversight that is a violation of nearly all regulatory compliance frameworks including PCI DSS, Sarbanes-Oxley, HIPAA and FISMA. According to regulatory mandates these embedded passwords are required to be changed when an ASP.NET web site goes into production. Further, privileged account credentials should be updated on a frequent schedule and should not be disclosed except on a “need to know basis”.
Embedded ASP.NET passwords are rarely updated due to the complexity of the modern data center. Most IT organizations do not have an accurate inventory of ASP.NET web sites or a practical way to manage the credentials used by these sites en masse. Scripts and other ad-hoc processes are inadequate at solving such a complex management problem.
How ERPM Secures ASP.NET Credentials
ERPM solves this challenge by automating both the discovery and change propagation of privileged account passwords throughout the cross-platform enterprise. It can locate the ASP.NET sites in use by a company, and then automate the password change process with little ongoing effort from the IT staff.
ERPM provides a three tier scalable solution with deep knowledge of the ASP.NET architectures, including .NET 1.0, 1.1 and 2.0 encryption schemes, as well as all of the different ASP.NET web.config structural standards. In addition to the ASP.NET credentials management challenge, ERPM also manages the credentials stored in databases (Microsoft SQL Server, Oracle 11g, Sybase ASE, MySQL) and all common directories (Active Directory and LDAP).
With ERPM, going from account discovery to change implementation and GRC compliance with respect to ASP.NET web sites can be completed in just a few days for even the largest environments.