We are thrilled to announce the release of our latest feature: Just-in-Time (JIT) privileged accounts for Active Directory, designed to provide enhanced security and convenience in managing privileged accounts.
JIT accounts offer a revolutionary approach to privilege management by temporarily enabling privileged accounts on an as-needed basis. Unlike traditional shared admin accounts, JIT accounts will be automatically disabled and their passwords rotated upon expiration. This dynamic nature will ensure that privileged access is granted only when necessary, minimizing the window of vulnerability. Furthermore, each JIT account will be created for an individual user, allowing for a clear audit log that can be easily tracked and attributed to that person, enhancing accountability and compliance.
For more details on how to set up and start using the just-in-time accounts please visit here.
Key Features and Capabilities:
- On–Demand Account Creation: Empower select technicians to generate privileged accounts as needed, granting them access to required resources for a specific duration.
- Automatic Password Rotation and Account Disablement: JIT accounts are automatically disabled and passwords are rotated upon expiry. This eliminates the possibility of unauthorized access even if the account details were unintentionally shared or compromised.
- Administrative Controls: Access to this feature will be limited to authorized technicians, with admins receiving notifications for every new JIT account creation. Admins can also delete any JIT account and revoke technician access via the dashboard.
- Auditing and Compliance: JIT accounts generate a comprehensive audit log, providing a detailed record of privileged access activities. This facilitates compliance with regulatory requirements and internal security policies by allowing easy traceability and accountability.
With this release, we support creating JIT accounts on Active Directory with support for creating O365 and Local JIT privileged accounts coming very soon.
The introduction of Just-in-Time (JIT) accounts marks a significant advancement in privileged access management for MSPs. By offering enhanced security, individual accountability, and automated provisioning, JIT accounts represent a crucial step towards more robust and streamlined security for MSPs.
We’d love to hear your feedback!
We look forward to hearing your feedback. You can send your feedback via email to [email protected]. If you have questions or need support just head over to CyberQP Support and we’ll help you out.