Modern application architecture and development techniques are changing the way we think about security and secrets management. Continuous integration, continuous deployment, infrastructure as code, configuration as code, orchestrators, and pipelines need to be automated securely while avoiding friction between development and IT. Join us as Dan Peterson, Safeguard Distinguished Engineer, shows how Safeguard can help your organization to securely move at the speed of DevOps.

Active Directory is easily the most widely used directory, with statistics stating that over 90% of organizations using it for access management. For this reason, it’s a given that attackers are after Active Directory. It touches nearly everything and once it is controlled by an attacker then they can take, destroy, or ransom anything. Active Directory breaches are usually accomplished by breaking in then elevating privilege to an admin level. The phrase “get the DA” (Domain Admin) is common in the attacker community. Active Roles is specially designed to remove the need for wide-spread permissions in Active Directory and Safeguard is designed to store privileged credentials. When they work together, layers of security are multiplied. Join Dan Conrad as he demonstrates Active Roles Just-In-Time Provisioning with Safeguard which allows privileges to be assigned only at the time of a credential check-out and removed at check-in.

In this advanced session, seasoned Active Roles users will cover some advanced concepts of Active Roles requests, workflows, and policies -- and how and when to use them. Learn more about different requests that the Web UI issues when making a request (Get, GetPolicyInformation, CheckPropertyValues, Create). Gain an understanding of how a request is processed with the security check, pre-processing, op execution and post-processing stages.

We review some recent enhancements to Safeguard that can help you deploy, manage and monitor cloud infrastructure. Istvan will demonstrate how you can control and monitor privileged accounts for both on-prem and cloud managed MS SQL. In addition, he will show some pre-release technology around controlling and monitoring web consoles.

Attend this session to learn about changes in Sudo, version 1.9. Todd Miller will highlight changes to the Sudo Plugin interface, showcase the new centralized session recording functionality, and provide a short tutorial on writing Sudo plugins in Python. Finally, we will discuss some of the lesser-known features of Sudo.