Submit Search
Upload
What's New in Centrify Server Suite 2016
•
5 likes
•
1,821 views
Centrify Support
Follow
What's New in Centrify Server Suite 2016
Read less
Read more
Technology
Report
Share
Report
Share
1 of 37
Download now
Download to read offline
Recommended
Centrify Customer Success Webinar - Expert Hour for Privilege Management
Centrify Customer Success Webinar - Expert Hour for Privilege Management
Centrify Support
Centrify Intellect event
Centrify Intellect event
intellectsecurity
Centrify Identity Service Getting Started Guide
Centrify Identity Service Getting Started Guide
Centrify Support
Centrify Expert Hour for Workday Integration
Centrify Expert Hour for Workday Integration
Centrify Support
Embracing secure, scalable BYOD with Sencha and Centrify
Embracing secure, scalable BYOD with Sencha and Centrify
Sumana Mehta
Mobilize your workforce with secure identity services
Mobilize your workforce with secure identity services
Sumana Mehta
Configuring android for_work
Configuring android for_work
Centrify Support
CIS13: Bootcamp: PingOne as a Simple Identity Service
CIS13: Bootcamp: PingOne as a Simple Identity Service
CloudIDSummit
Recommended
Centrify Customer Success Webinar - Expert Hour for Privilege Management
Centrify Customer Success Webinar - Expert Hour for Privilege Management
Centrify Support
Centrify Intellect event
Centrify Intellect event
intellectsecurity
Centrify Identity Service Getting Started Guide
Centrify Identity Service Getting Started Guide
Centrify Support
Centrify Expert Hour for Workday Integration
Centrify Expert Hour for Workday Integration
Centrify Support
Embracing secure, scalable BYOD with Sencha and Centrify
Embracing secure, scalable BYOD with Sencha and Centrify
Sumana Mehta
Mobilize your workforce with secure identity services
Mobilize your workforce with secure identity services
Sumana Mehta
Configuring android for_work
Configuring android for_work
Centrify Support
CIS13: Bootcamp: PingOne as a Simple Identity Service
CIS13: Bootcamp: PingOne as a Simple Identity Service
CloudIDSummit
CIS 2015 Easy Federation in Cloud and on Premises - Ian Jaffe
CIS 2015 Easy Federation in Cloud and on Premises - Ian Jaffe
CloudIDSummit
VMworld 2013: VMware Compliance Reference Architecture Framework: Accelerate ...
VMworld 2013: VMware Compliance Reference Architecture Framework: Accelerate ...
VMworld
Open sourceadoption prajod.wso2.v3
Open sourceadoption prajod.wso2.v3
WSO2
IBM DataPower Gateway - Common Use Cases
IBM DataPower Gateway - Common Use Cases
IBM DataPower Gateway
PingOne IDaaS: What You Need to Know
PingOne IDaaS: What You Need to Know
CloudIDSummit
Data Power For Pci Webinar Aug 2012
Data Power For Pci Webinar Aug 2012
gaborvodics
Master IAM in the Cloud with SCIM v2.0
Master IAM in the Cloud with SCIM v2.0
Kelly Grizzle
Datasheet: WebSphere DataPower Service Gateway XG45
Datasheet: WebSphere DataPower Service Gateway XG45
Sarah Duffy
Con9573 managing the oim platform with oracle enterprise manager
Con9573 managing the oim platform with oracle enterprise manager
OracleIDM
SCIM: Why It’s More Important, and More Simple, Than You Think - CIS 2014
SCIM: Why It’s More Important, and More Simple, Than You Think - CIS 2014
Kelly Grizzle
SWM_WP_MaturityModel_July15
SWM_WP_MaturityModel_July15
Mike Lemons
Jan19 scim webinar-04
Jan19 scim webinar-04
Paul Madsen
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17
Natalia Kataoka
Manpower group idm-platform
Manpower group idm-platform
OracleIDM
Citirx Day 2013: Citrix Enterprise Mobility
Citirx Day 2013: Citrix Enterprise Mobility
Digicomp Academy AG
Hitachi ID Identity Manager
Hitachi ID Identity Manager
Hitachi ID Systems, Inc.
Oracle security-formula
Oracle security-formula
OracleIDM
Round table guide
Round table guide
OracleIDM
IBM DataPower Gateways - What's new in 2016 v7.5.2
IBM DataPower Gateways - What's new in 2016 v7.5.2
IBM DataPower Gateway
Testting application with a presentation downloaded from the internet
Testting application with a presentation downloaded from the internet
indradipg
Karsten-reuss-hopmann-variantenmanagement-automobilindustrie-bmw
Karsten-reuss-hopmann-variantenmanagement-automobilindustrie-bmw
Karsten Reuss
2consult Company Profile
2consult Company Profile
2consult IT Services
More Related Content
What's hot
CIS 2015 Easy Federation in Cloud and on Premises - Ian Jaffe
CIS 2015 Easy Federation in Cloud and on Premises - Ian Jaffe
CloudIDSummit
VMworld 2013: VMware Compliance Reference Architecture Framework: Accelerate ...
VMworld 2013: VMware Compliance Reference Architecture Framework: Accelerate ...
VMworld
Open sourceadoption prajod.wso2.v3
Open sourceadoption prajod.wso2.v3
WSO2
IBM DataPower Gateway - Common Use Cases
IBM DataPower Gateway - Common Use Cases
IBM DataPower Gateway
PingOne IDaaS: What You Need to Know
PingOne IDaaS: What You Need to Know
CloudIDSummit
Data Power For Pci Webinar Aug 2012
Data Power For Pci Webinar Aug 2012
gaborvodics
Master IAM in the Cloud with SCIM v2.0
Master IAM in the Cloud with SCIM v2.0
Kelly Grizzle
Datasheet: WebSphere DataPower Service Gateway XG45
Datasheet: WebSphere DataPower Service Gateway XG45
Sarah Duffy
Con9573 managing the oim platform with oracle enterprise manager
Con9573 managing the oim platform with oracle enterprise manager
OracleIDM
SCIM: Why It’s More Important, and More Simple, Than You Think - CIS 2014
SCIM: Why It’s More Important, and More Simple, Than You Think - CIS 2014
Kelly Grizzle
SWM_WP_MaturityModel_July15
SWM_WP_MaturityModel_July15
Mike Lemons
Jan19 scim webinar-04
Jan19 scim webinar-04
Paul Madsen
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17
Natalia Kataoka
Manpower group idm-platform
Manpower group idm-platform
OracleIDM
Citirx Day 2013: Citrix Enterprise Mobility
Citirx Day 2013: Citrix Enterprise Mobility
Digicomp Academy AG
Hitachi ID Identity Manager
Hitachi ID Identity Manager
Hitachi ID Systems, Inc.
Oracle security-formula
Oracle security-formula
OracleIDM
Round table guide
Round table guide
OracleIDM
IBM DataPower Gateways - What's new in 2016 v7.5.2
IBM DataPower Gateways - What's new in 2016 v7.5.2
IBM DataPower Gateway
Testting application with a presentation downloaded from the internet
Testting application with a presentation downloaded from the internet
indradipg
What's hot
(20)
CIS 2015 Easy Federation in Cloud and on Premises - Ian Jaffe
CIS 2015 Easy Federation in Cloud and on Premises - Ian Jaffe
VMworld 2013: VMware Compliance Reference Architecture Framework: Accelerate ...
VMworld 2013: VMware Compliance Reference Architecture Framework: Accelerate ...
Open sourceadoption prajod.wso2.v3
Open sourceadoption prajod.wso2.v3
IBM DataPower Gateway - Common Use Cases
IBM DataPower Gateway - Common Use Cases
PingOne IDaaS: What You Need to Know
PingOne IDaaS: What You Need to Know
Data Power For Pci Webinar Aug 2012
Data Power For Pci Webinar Aug 2012
Master IAM in the Cloud with SCIM v2.0
Master IAM in the Cloud with SCIM v2.0
Datasheet: WebSphere DataPower Service Gateway XG45
Datasheet: WebSphere DataPower Service Gateway XG45
Con9573 managing the oim platform with oracle enterprise manager
Con9573 managing the oim platform with oracle enterprise manager
SCIM: Why It’s More Important, and More Simple, Than You Think - CIS 2014
SCIM: Why It’s More Important, and More Simple, Than You Think - CIS 2014
SWM_WP_MaturityModel_July15
SWM_WP_MaturityModel_July15
Jan19 scim webinar-04
Jan19 scim webinar-04
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17
Manpower group idm-platform
Manpower group idm-platform
Citirx Day 2013: Citrix Enterprise Mobility
Citirx Day 2013: Citrix Enterprise Mobility
Hitachi ID Identity Manager
Hitachi ID Identity Manager
Oracle security-formula
Oracle security-formula
Round table guide
Round table guide
IBM DataPower Gateways - What's new in 2016 v7.5.2
IBM DataPower Gateways - What's new in 2016 v7.5.2
Testting application with a presentation downloaded from the internet
Testting application with a presentation downloaded from the internet
Viewers also liked
Karsten-reuss-hopmann-variantenmanagement-automobilindustrie-bmw
Karsten-reuss-hopmann-variantenmanagement-automobilindustrie-bmw
Karsten Reuss
2consult Company Profile
2consult Company Profile
2consult IT Services
PortfolioThe Journal
PortfolioThe Journal
Marlene Szczesny
Analysis of 4 phsyco-thrillers
Analysis of 4 phsyco-thrillers
10brownm
Percepcion mineria Peru 2014
Percepcion mineria Peru 2014
Tomas Reategui
Konkursna dokumentacija nabavka električne energije za 2017. godine
Konkursna dokumentacija nabavka električne energije za 2017. godine
phskola
Pravilnik o nabavkama u Poljoprivredno-hemijskoj skoli
Pravilnik o nabavkama u Poljoprivredno-hemijskoj skoli
phskola
Presentacion gianella-normal_pdf
Presentacion gianella-normal_pdf
GianellaBustamante
SP15-Showcase-Program-for-WebPage
SP15-Showcase-Program-for-WebPage
Mike Florkowski
Олимпиада «Умники и Умницы»
Олимпиада «Умники и Умницы»
mgw-rassilki
Izvestaj o radu direktora škole u školskoj 2015/2016. godini.
Izvestaj o radu direktora škole u školskoj 2015/2016. godini.
phskola
Desarrollo organizacional
Desarrollo organizacional
danielguaje
201420402
201420402
majid1995
Jeremy C Jarvis Informative Paper NEA
Jeremy C Jarvis Informative Paper NEA
Jeremy C Jarvis
Equipo mk v presentacion
Equipo mk v presentacion
cfcg2712
KleenKan Technologies,Inc.
KleenKan Technologies,Inc.
KleenKan Technologies,Inc.
Haiti's Future Health (2)
Haiti's Future Health (2)
Sarah DeCloux
Caso Clínico Envejecimiento
Caso Clínico Envejecimiento
patataalada
Resume (1)
Resume (1)
Sourik Dutta
Barometrul Business 2more-Business - Ploiesti
Barometrul Business 2more-Business - Ploiesti
Kompass Group & Doingbusiness.ro
Viewers also liked
(20)
Karsten-reuss-hopmann-variantenmanagement-automobilindustrie-bmw
Karsten-reuss-hopmann-variantenmanagement-automobilindustrie-bmw
2consult Company Profile
2consult Company Profile
PortfolioThe Journal
PortfolioThe Journal
Analysis of 4 phsyco-thrillers
Analysis of 4 phsyco-thrillers
Percepcion mineria Peru 2014
Percepcion mineria Peru 2014
Konkursna dokumentacija nabavka električne energije za 2017. godine
Konkursna dokumentacija nabavka električne energije za 2017. godine
Pravilnik o nabavkama u Poljoprivredno-hemijskoj skoli
Pravilnik o nabavkama u Poljoprivredno-hemijskoj skoli
Presentacion gianella-normal_pdf
Presentacion gianella-normal_pdf
SP15-Showcase-Program-for-WebPage
SP15-Showcase-Program-for-WebPage
Олимпиада «Умники и Умницы»
Олимпиада «Умники и Умницы»
Izvestaj o radu direktora škole u školskoj 2015/2016. godini.
Izvestaj o radu direktora škole u školskoj 2015/2016. godini.
Desarrollo organizacional
Desarrollo organizacional
201420402
201420402
Jeremy C Jarvis Informative Paper NEA
Jeremy C Jarvis Informative Paper NEA
Equipo mk v presentacion
Equipo mk v presentacion
KleenKan Technologies,Inc.
KleenKan Technologies,Inc.
Haiti's Future Health (2)
Haiti's Future Health (2)
Caso Clínico Envejecimiento
Caso Clínico Envejecimiento
Resume (1)
Resume (1)
Barometrul Business 2more-Business - Ploiesti
Barometrul Business 2more-Business - Ploiesti
Similar to What's New in Centrify Server Suite 2016
Citrix Portfolio Updates
Citrix Portfolio Updates
Pawel Serwan
VMworld Europe 2014: What’s New in End User Computing: Full Desktop Automatio...
VMworld Europe 2014: What’s New in End User Computing: Full Desktop Automatio...
VMworld
KACE Endpoint Systems Management Appliances - What’s New for 2017
KACE Endpoint Systems Management Appliances - What’s New for 2017
Quest
Azure Update, July 2016
Azure Update, July 2016
Tokyo Azure Meetup
Cloudtrek Basics Overview
Cloudtrek Basics Overview
Dmitriy Zgoda
What's New in IBM Streams V4.2
What's New in IBM Streams V4.2
lisanl
Mobile Services for Windows Azure
Mobile Services for Windows Azure
Abhishek Sur
System center seminar presentation
System center seminar presentation
C/D/H Technology Consultants
Deep Dive - Usage of on premises data gateway for hybrid integration scenarios
Deep Dive - Usage of on premises data gateway for hybrid integration scenarios
Sajith C P Nair
Building a PaaS Platform like Bluemix on OpenStack
Building a PaaS Platform like Bluemix on OpenStack
Animesh Singh
Le novità di SQL Server 2022
Le novità di SQL Server 2022
Gianluca Hotz
Codemash 2007 - Scm with subversion
Codemash 2007 - Scm with subversion
Christopher Grant
Building Hybrid Cloud Apps with Azure and Azure stack
Building Hybrid Cloud Apps with Azure and Azure stack
WinWire Technologies Inc
Scribe insight 04 insight 7.9.0
Scribe insight 04 insight 7.9.0
Scribe Software Corp.
SCCM on Microsoft Azure
SCCM on Microsoft Azure
Mohamed Tawfik
Azure System Management
Azure System Management
Mustafa
Cognos Analytics Release 6: March 2017 Enhancements
Cognos Analytics Release 6: March 2017 Enhancements
Senturus
Enterprise Use Case Webinar - PaaS Metering and Monitoring
Enterprise Use Case Webinar - PaaS Metering and Monitoring
WSO2
SCU 2015 - My top 10 favorite items you need to look at in WK2012R2
SCU 2015 - My top 10 favorite items you need to look at in WK2012R2
Mike Resseler
Datasheet.net pluginforrd
Datasheet.net pluginforrd
MidVision
Similar to What's New in Centrify Server Suite 2016
(20)
Citrix Portfolio Updates
Citrix Portfolio Updates
VMworld Europe 2014: What’s New in End User Computing: Full Desktop Automatio...
VMworld Europe 2014: What’s New in End User Computing: Full Desktop Automatio...
KACE Endpoint Systems Management Appliances - What’s New for 2017
KACE Endpoint Systems Management Appliances - What’s New for 2017
Azure Update, July 2016
Azure Update, July 2016
Cloudtrek Basics Overview
Cloudtrek Basics Overview
What's New in IBM Streams V4.2
What's New in IBM Streams V4.2
Mobile Services for Windows Azure
Mobile Services for Windows Azure
System center seminar presentation
System center seminar presentation
Deep Dive - Usage of on premises data gateway for hybrid integration scenarios
Deep Dive - Usage of on premises data gateway for hybrid integration scenarios
Building a PaaS Platform like Bluemix on OpenStack
Building a PaaS Platform like Bluemix on OpenStack
Le novità di SQL Server 2022
Le novità di SQL Server 2022
Codemash 2007 - Scm with subversion
Codemash 2007 - Scm with subversion
Building Hybrid Cloud Apps with Azure and Azure stack
Building Hybrid Cloud Apps with Azure and Azure stack
Scribe insight 04 insight 7.9.0
Scribe insight 04 insight 7.9.0
SCCM on Microsoft Azure
SCCM on Microsoft Azure
Azure System Management
Azure System Management
Cognos Analytics Release 6: March 2017 Enhancements
Cognos Analytics Release 6: March 2017 Enhancements
Enterprise Use Case Webinar - PaaS Metering and Monitoring
Enterprise Use Case Webinar - PaaS Metering and Monitoring
SCU 2015 - My top 10 favorite items you need to look at in WK2012R2
SCU 2015 - My top 10 favorite items you need to look at in WK2012R2
Datasheet.net pluginforrd
Datasheet.net pluginforrd
Recently uploaded
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Drew Madelung
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Roshan Dwivedi
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
wesley chun
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
The Digital Insurer
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Juan lago vázquez
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
Andrey Devyatkin
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
DianaGray10
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
The Digital Insurer
presentation ICT roal in 21st century education
presentation ICT roal in 21st century education
jfdjdjcjdnsjd
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
Khushali Kathiriya
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
Anna Loughnan Colquhoun
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
Product Anonymous
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Miguel Araújo
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
sudhanshuwaghmare1
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
debabhi2
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
The Digital Insurer
Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024
The Digital Insurer
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Edi Saputra
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
Khem
Recently uploaded
(20)
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
presentation ICT roal in 21st century education
presentation ICT roal in 21st century education
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024
Manulife - Insurer Innovation Award 2024
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
What's New in Centrify Server Suite 2016
1.
© 2016 Centrify
Corporation. All Rights Reserved. 1 What’s New in Centrify Server Suite 2016 Presented by: Brad Zehring, Director of Product Management Hubert Sigler, Sr. Technical Support Engineer
2.
© 2016 Centrify
Corporation. All Rights Reserved. 2 • Welcome • New Features • Product updates • Closing Agenda
3.
© 2016 Centrify
Corporation. All Rights Reserved. 3 Multi-factor Authentication for Servers ENTERPRISE DATA CENTER Shared Account Sessions and Auditing Audit DB JumpBox Centrify Identity Platform Centrify Cloud Connector Multi-factor Authentication for Linux Login SERVER SUITE Privilege Elevation Block cyber attacks • MFA for Linux login and privilege elevation • Unique zone-based policies control step-up authentication through role assignment • Servers communicate securely with on-premises Cloud Connector to initiate MFA Authentication methods • Centrify Mobile Authenticator • Phone call to user’s Active Directory published number • OTP to SMS or email • Security question Multi-factor Authentication to Cloud Service Multi-factor Authentication for Login and Privilege Elevation
4.
© 2016 Centrify
Corporation. All Rights Reserved. 4 MFA for Linux login and Privilege Elevation Coming in Server Suite 2016
5.
© 2016 Centrify
Corporation. All Rights Reserved. 5 Local Account Provisioning Local account and group management • Consolidate application and service accounts into Active Directory • Identity life-cycle management strengthens security Manage user identities and local accounts • Enabled: Create locally if it does not exist • Disabled: Prevent login • Remove: Delete the entry from /etc/passwd or /etc/group Zone-based Application Identity Management
6.
© 2016 Centrify
Corporation. All Rights Reserved. 6 Secure Local Account Passwords Centrify Agent uses a notification cli callout for all actions: • Example script enables CPS to manage the password • Supports 3rd party password managers Credential Management with Password Managers • New accounts have a random password set and registered with CPS • Unlocked accounts have a new random password set • Removed accounts will be deleted from CPS Secure and Manage Passwords Admin • Defines Local Accounts in a Zone • Defines local groups in a Zone Centrify Agent • Create/Delete Local Accounts • Create/Delete Local Groups • Notification to manage passwords Notification.cli callout script Password Manager
7.
© 2016 Centrify
Corporation. All Rights Reserved. 7 Report Services for Standard Edition New Report Services infrastructure replaces Report Center • Enterprise class service leverages SQL Server Report Services • Significantly improved reporting performance • Web accessible reports New Compliance Reports • SOX & PCI reports included Scheduled Reports • Schedule reports to be delivered via email or shared Visual report creation • Leveraging SQL Server Report Services (SSRS) Simplifies data access • Enables usage of external BI Tools for data visualization
8.
© 2016 Centrify
Corporation. All Rights Reserved. 8 Agenda Server Suite Editions Standard Enterprise DirectControl 5.3.0 ü ü DirectManage 5.3.0 ü ü Windows Agent 3.3.0 ü ü DirectAudit 3.3.0 ü
9.
Centrify DirectControl 5.3.0
10.
© 2016 Centrify
Corporation. All Rights Reserved. 10 Centrify DirectControl 5.3.0 • Multi-Factor Authentication (MFA) • Local Account Management • Report Services • Agent components • General • Support Platforms update
11.
© 2016 Centrify
Corporation. All Rights Reserved. 11 Multi-Factor Authentication (MFA) • Supported for AD users in hierarchical zone on Linux systems • Can be enabled for PAM (ie login) and dzdo • Requires Centrify Cloud (CIS) & Cloud Connector • Can be configured to require the following methods in addition to password: • Centrify Mobile App (iOS/Android) • SMS message • Phone call • Email verification • Answer Security Question • Rescue/Backup login can be enabled in the event of cloud connectivity issues
12.
© 2016 Centrify
Corporation. All Rights Reserved. 12 Multi-Factor Authentication (MFA), PAM (Login) Example
13.
© 2016 Centrify
Corporation. All Rights Reserved. 13 Multi-Factor Authentication (MFA), dzdo & Mobile Example
14.
© 2016 Centrify
Corporation. All Rights Reserved. 14 Local Account Management • Hierarchical zones can now provision & manage local users/groups on AD joined *nix systems • Examples: oracle, db2, other service accounts • Automation ready with capability to register users in Centrify Privilege Service (CPS) or other password management solution • Can call script to setup password, create home directory, etc
15.
© 2016 Centrify
Corporation. All Rights Reserved. 15 Centrify Report Services • Brand new component, included with DirectManage • Leverages SQL Reporting Service (SSRS) to deliver a robust web-based reporting solution for your AD users • Securely synchronizes a subset of AD user, group, and zone data into a Reporting DB • Pre-canned reports included • PCI & SOX • Support for custom reports • Access Manager no longer required
16.
© 2016 Centrify
Corporation. All Rights Reserved. 16 Centrify Report Services Control Panel & Client
17.
© 2016 Centrify
Corporation. All Rights Reserved. 17 Centrify Report Services Report Sample
18.
© 2016 Centrify
Corporation. All Rights Reserved. 18 Agent components • Centrify LDAP Proxy • ldapsearch adds extendedDN to the –e or –E option to return the extended distinguished name of the object • Centrify OpenSSH • Updated to OpenSSH 7.1p1 • Still supports SSH protocol version 1 unlike stock OpenSSH • New parameter 'Krb5ccUnique‘ to control how to generate Kerberos credentials cache. Default is “yes” • Some parameter updates (see release notes) • No longer installed by default by install.sh, must use custom installation to install • Will upgrade if prior version installed • Still required to address known AIX issues: • For use with DirectAudit to audit local users • Matching local/AD user
19.
© 2016 Centrify
Corporation. All Rights Reserved. 19 General • New right introduced “User is visible” • Similar to “listed” role in previous versions • New option “adinfo –y cloud” to view cloud status • New option “adkeytab –t” to report the last password change attempt time and results • New option “adflush –c” to refresh cloud connector info • OpenSSL updated to 0.9.8zg • cURL updated to 7.44.0 • Support to append CA root certificate to the system default store on RHEL
20.
© 2016 Centrify
Corporation. All Rights Reserved. 20 Support Platforms Update Newly Added •Fedora 23 (x86, x86_64) •CentOS 6.7 (x86, x86_64) •Oracle Enterprise Linux 6.7 (x86, x86_64) •Red Hat Enterprise Linux Desktop 6.7 (x86, x86_64) •Red Hat Enterprise Linux Server 6.7 (x86, x86_64) •Red Hat Enterprise Linux Server 6.7 (ppc64 – no Power8) •Red Hat Enterprise Linux Desktop 7.2 (x86_64) •Red Hat Enterprise Linux Server 7.2 (x86_64) •Red Hat Enterprise Linux Server 7.0, 7.1, 7.2 (ppc64 – no Power8) •Scientific Linux 6.7 (x86, x86_64) •Ubuntu Desktop 15.10 (x86, x86_64) •Ubuntu Server 15.10 (x86, x86_64) •SUSE Linux Enterprise Desktop 11 SP4 (x86, x86_64) •SUSE Linux Enterprise Server 11 SP4 (x86, x86_64, ppc64,ia64) •SUSE Linux Enterprise Server 12 (ppc64 – no Power8) •Oracle Solaris 11.3 (x86_64, SPARC) End of Life (EOL) •All 32-bit Windows platforms •Fedora 19 (32-bit and 64-bit) •Oracle Enterprise Linux 4.x (32-bit and 64-bit) •openSUSE 12.1,12.2, 12.3 (32-bit and 64-bit) •Oracle Solaris 8 SPARC Sun setting •Debian Linux 6.x (32-bit and 64-bit) •Fedora 20 (32-bit and 64-bit) •HP-UX 11.11, 11.23PA-RISC (Normal and Trusted modes) •HP-UX 11.23 Itanium (Normal and Trusted modes) •Oracle Solaris 9 (32-bit and 64-bit) •Ubuntu Desktop 14.10 (32-bit and64-bit) •Ubuntu Server 14.10 (32-bit and 64-bit) Pre-sunset •Fedora 21 (32-bit and 64-bit) •Ubuntu Desktop 15.04,15.10(32-bit and 64-bit) •Ubuntu Server 15.04, 15.10 (32-bit and 64-bit) •SUSE Linux Enterprise Desktop 10 (32- bit and 64-bit) •SUSE Linux Enterprise Server 10 (32-bit and 64-bit) •openSUSE 13.1 (32-bit and64-bit)
21.
Centrify DirectManage 5.3.0
22.
© 2016 Centrify
Corporation. All Rights Reserved. 22 Centrify DirectManage 5.3.0 • Access manager • New requirements: Windows 7 SP1/Windows 2008 R2 • Documentation no longer installed during install wizard, still present in /Documentation folder in download • Support for managed service accounts (MSA) • Ability to delegate zone control to multiple zones at once • “Generate Centrify Recommended Deployment Structure” Wizard now integrated with the Setup Wizard • Report Center • Disabled by default in Access Manager • Replaced by Report Services introduced in this release
23.
© 2016 Centrify
Corporation. All Rights Reserved. 23 Centrify DirectManage 5.3.0, cont’d… • Access Module for PowerShell • Based on .Net Framework 4.5 • Support for ZPA • Support for “user is visible” system right • Get-CdmManagedComputer enhancements: • Preferred Site • Subnet Site • Zone Provisioning Agent (ZPA) • Support for managed service accounts (MSA) and group managed service accounts (gMSA) as the service account • Group Policy Extensions • ADM templates no longer shipping, only ADMX templates are available
24.
© 2016 Centrify
Corporation. All Rights Reserved. 24 Centrify DirectManage 5.3.0, cont’d… • Deployment Manager • Support for public key authentication using AES-128-CBC • During “Manage Software” wizard installed components will now be automatically selected • During “Manage Audit” wizard it now supports change of DirectAudit Installation name on computers allowing locally configured installation
25.
Centrify DirectAudit 3.3.0
26.
© 2016 Centrify
Corporation. All Rights Reserved. 26 Centrify DirectAudit 3.3.0 • General • Documentation no longer installed during wizard install • Agent more resilient to brief disconnects from the collector • Agent can be configured to prefer collectors in the local AD site • Option to enable/disable video capture now supported on a per-system basis • Better control of host names as they are displayed in DA Analyzer • Now bundled with MS SQL Server 2008 R2 SP 2 Express with Advanced Services • Improved Audit Trail despooling performance • Collector • Support for new reg key "SkipFirstSnapshot“ to help reduce overhead for smaller audit sessions • Command recognition enhancements
27.
© 2016 Centrify
Corporation. All Rights Reserved. 27 Centrify DirectAudit 3.3.0, cont’d • Audit Analyzer • Auditors with full control over a session can assign one or more AD users as Reviewers of that session using Audit Analyzer or PowerShell cmdlet. • A user who was granted Reviewer using this method will be allowed to replay the session and update the review status (Audit Role assignment not required). The reviewer will not have delete rights under this method. • Audit Manager • No new enhancements this release • DA Agent for *nix • Configure disconnect timeout "dad.collector.connect.timeout“ • “dareload –b” to request bind to another collector if available • Better protection against simultaneous edits made to NSS/PAM files during “decontrol –e|-d” • “dainfo –q [info]” introduced to control output
28.
© 2016 Centrify
Corporation. All Rights Reserved. 28 Centrify DirectAudit 3.3.0, cont’d • Database • New scheduled task in the Audit Management Server service to collect DirectAudit licensing info from, the DA databases and store in Active Directory to permit more open execution of Deployment Report. • New and enhanced database indexes to improve query performance and reduce CPU on SQL server • FindSessions.exe Tool • Improved performance when handling multiple Audit Store databases • DA Agent for Windows • New GP settings "Set maximum size of the offline data file" and "Set maximum recorded color quality" • Audit Module for PowerShell • New Cmdlets: • "Set-CdaAuditSessionReviewer", delegate session reviewer directly to an Active Directory user or group • "Get-CdaAuditSessionReviewer", get the AD users and groups who were delegated as session reviewers
29.
Centrify Windows Agent
3.3.0
30.
© 2016 Centrify
Corporation. All Rights Reserved. 30 Centrify Windows Agent 3.3.0 • Access Component (formerly DirectAuthorize) • Contextual menu renamed from "Run as Role" to "Run with Privilege“ • Documentation no longer installed during wizard install • Privileged desktop now supported on Windows 8/8.1/2012R2 • "Centrify Start Menu" button added to privileged desktop (similar to the Windows Start Menu) • Desktop label on privileged desktop replaced by a brief systray notification • Can be controlled via Group Policy • New command, "dzjoin“ added to facilitate joining a zone via CLI or Scripting • Simplified Run with Privilege (ie only one Role present) • Support removed for switching to privileged desktop as a privileged AD user • Still supported if group is used
31.
© 2016 Centrify
Corporation. All Rights Reserved. 31 Windows 8/8.1/2012 Privilege Desktop Example
32.
© 2016 Centrify
Corporation. All Rights Reserved. 32 Windows Agent – Old Desktop Label
33.
© 2016 Centrify
Corporation. All Rights Reserved. 33 Windows Agent – New Desktop Label
34.
© 2016 Centrify
Corporation. All Rights Reserved. 34 Centrify Windows Agent 3.3.0, cont’d • Audit Component • New Group Policy settings • “Set maximum size of the offline data file“ • "Set maximum recorded color quality“ • "Use the host name specified by the agent“ • "Centrify DirectAudit Settings/Common Settings" • Support for auditing Metro UI and tile applications in Windows 8/Windows 2012 • Support for "Agents must prefer collectors in the same site as the agent“ option in Audit Manager • Audit Trail despooling performance enhancements
35.
In Closing
36.
© 2016 Centrify
Corporation. All Rights Reserved. 36 Where to next? • What's New in Centrify Server Suite 2016 • https://www.centrify.com/support/customer-support-portal/whats-new/server-suite/ • Centrify Server Suite 2016 Release Notes • http://www.centrify.com/support/documentation/server-suite/#2016-notes • Centrify Download Center • https://www.centrify.com/support/customer-support-portal/download-center/ • This presentation will be provided to customers
37.
© 2016 Centrify
Corporation. All Rights Reserved. 37 Questions? • Join the conversation at http://community.centrify.com/ • Login using your Centrify customer login • Free registration • Use the “Centrify Server Suite” location
Download now