• Integration of One Identity Safeguard for Privileged Sessions with HashiCorp Vault to secure privileged credentials, sessions within DevOps environments
  • Protects organizations’ critical secrets from security threats and enables them to meet compliance requirements
  • Seamless integration supports agile DevOps workflows without disruption

ALISO VIEJO, CA -- (April 23, 2020) -- One Identity, a proven leader in identity-centered security, today announced a partnership with HashiCorp, a leader in multi-cloud infrastructure automation software used by developers, operators and security professionals. With the integration of One Identity’s privileged access management (PAM) Safeguard for Privileged Sessions, HashiCorp Vault users can now securely manage, monitor, record, and audit privileged and administrative access to their vaulted tokens, passwords, certificates, API keys and other secrets used in DevOps workflows. The integration enables organizations to better manage and protect critical assets from potential cybersecurity threats and meet compliance requirements.          

IT operations have completely changed over the last decade, with the focus now on rapid innovation and quickly pushing applications to production. To embrace these changes, DevOps practices have been widely adopted to reduce friction in development workflows but often introduce unforeseen security risks. These DevOps practices need to evolve to address these security challenges where DevOps environments evolve to include security, commonly referred to as DevSecOps. DevSecOps best practices require full audits of privileged activity to data sources, application services and other vital tools and sensitive information within an enterprise. With the pressure to accelerate production and scalability, implementing security best practices to protect privileged access and credentials within DevOps environments is often overlooked. In fact, only 46% of developers are addressing security risks during early phases of development, SANS reported. External bad actors are aware of these shortcomings, increasingly seeking out this negligence and leveraging public privileged credentials to gain access to sensitive files and data and, in some cases, conduct malicious attacks against the organization, the products themselves and their users.

The integration between One Identity Safeguard and HashiCorp Vault enables organizations to effectively mitigate security risks associated with unprotected secrets while also maintaining the speed and scale that’s necessary for the DevOps environment. One Identity Safeguard's transparent protocol proxy technology allows humans and machines to be controlled and audited without interrupting or slowing down their workflows. It enables organizations to gain the needed oversight of privileged access used with HashiCorp and inspects the protocol traffic on the application level and rejects traffic that violates policies. This eliminates unauthorized and unfettered access to resources and protects the network and sensitive data. Organizations can also monitor privileged sessions in real time with the ability to execute various actions if unusual or unwanted behavior is detected. Actions can include sending an alert or immediately terminating a session.

“The time, education, and skills necessary to secure rapid, and iterative DevOps environments have historically been very limited, despite the severity of the potential pitfalls,” said Asvin Ramesh, director of technology alliances at HashiCorp. “By connecting HashiCorp Vault with One Identity Safeguard, we’re giving our joint customers an integrated solution that offers continuous control, monitoring, and secure access and authentication in real time during this imperative stage of production.”

Implementing the One Identity Safeguard plugin to HashiCorp Vault customers takes minimal configuration changes and provides rapid ROI and increased security to organizations. As a result, the integrated solution helps prevent malicious actions or human error, as well as provides evidence for auditing, troubleshooting and forensics investigations to help customers meet regulatory compliance demands.

“HashiCorp is the market leader in cloud security automation, and we are thrilled to partner with them, providing their customers with access to our award-winning Safeguard solution,” said Darrell Long, VP of Product Management at One Identity. “This partnership will provide HashiCorp users with the ability to seamlessly bolster security and reduce risk using the tools that make them productive and safe, while maintaining the agility and scalability needed to compete in their respective markets.”

To learn more about the partnership, visit: https://www.oneidentity.com/hashicorp-vault-integration/ or https://www.hashicorp.com/integrations/one-identity/vault.

About One Identity

One Identity, a Quest Software business, lets organizations achieve an identity-centric security strategy with a uniquely broad and integrated portfolio of identity management offerings including account management, identity governance and administration and privileged access management.  One Identity empowers organizations to reach their full potential, unimpeded by security, yet safeguarded against threats.  One Identity and its approach is trusted by customers worldwide, where more than 7,500 organizations worldwide depend on One Identity solutions to manage more than 125 million identities, enhancing their agility and efficiency while securing access to their systems and data – on-prem, cloud or hybrid. For more information, visit http://www.oneidentity.com.

Media contacts
Andrea Ipolyi
One Identity Global PR
+36 1 398 6700

Molly Hanrahan
Highwire PR 415-675-1457

Related Content