Organizations today are challenged by the need to frequently update their “super-user” privileged account credentials to comply with regulatory mandates and keep their networks secure.
Among the most difficult privileged accounts to change are the service and process accounts present in services, tasks, COM applications, SharePoint, IIS, databases, line-of-business applications, and many other places. That’s because failing to change interdependent accounts’ credentials in the proper order could lock out an account and bring down critical IT processes.
Fortunately, an exclusive privilege management technology from Lieberman Software called Account Pooling gives you a new kind of safety net. As a Lieberman RED Identity Management administrator, you can configure an account pool containing any number of accounts you choose. From then on, whenever your password change job runs it advances through the accounts in the pool — leaving the previous passwords in the pool unchanged until it’s eventually their turn to be re-randomized and propagated.
Other accounts in the pool remain unchanged, so any services that reference them can continue to operate during large-scale and high-latency updates. Systems that can’t be reached during one or more password change jobs can still have valid, previous credentials from the pool. This helps safeguard your network against service outages and disruptions.
Account Pooling means never having to say: “I’m sorry I changed your password.”