I'm on the hunt for a Privileged Access Management (PAM) system that includes session recording for admin access. I've tried out JumpServer, which has some useful features, but I've run into a few issues: First, it's primarily a Chinese product with unclear documentation. Second, I don't see an option to reset privileged passwords after each use, which is crucial for security. Lastly, accessing simple browser sessions, like for an antivirus console, requires a whole separate Windows Server VM to launch the RDP session, which complicates things and breaks clipboard functionality.
I'm looking for alternative systems that can handle similar tasks, and I'm open to paid solutions too. Here's what I need in a PAM system: it should record RDP, SSH, and sensible browser sessions, have good support and clear documentation, and allow temporary password exposure that can be changed after each session.
4 Answers
I think KeeperPAM may actually have what you need!
Delinea PAM could be another option worth looking at.
You might want to check out CyberArk. I believe it offers most of the features you're after.
Yeah, it covers a lot, but keep in mind it can be pricey.
Consider Aglide. It connects non-SSO apps to Okta, allowing for enforcing SSO, MFA, and auditing. Session recording might be on the horizon, but they're still a startup, so their documentation isn’t the best right now. Their support is pretty good, though.
Totally agree, CyberArk is a solid option!