"PowerBroker for Servers, a legacy Symark product, restricts access to mission-critical systems of Global 2000 enterprises, delineating specific access for certain users for specific reasons," said Saurabh Bhatnagar, vice president of product development at BeyondTrust. It also keeps copious log-in records of who accessed what part of the network and when. The logs are protected and not alterable or deletable by administrators so that they can be relied upon as an audit platform and forensic trail, if needed.
PowerBroker Express is being offered for environments that are not mission-critical, offering some, but not all, of the features of PowerBroker for Servers. "A lot of our customers said to us, 'Hey, we love the PowerBroker for Servers products, but we have a lot of our infrastructure that is not very mission-critical. They are asking for a logging and monitoring-centric product," Bhatnagar said. While vague on pricing, he said PowerBroker will be significantly discounted from the main product when it goes on sale sometime in July.
The streamlined PowerBroker Express addresses a key pain point for customers, said Sally Hudson, research director of security products and services at IDC in an e-mail interview. "PowerBroker is essential for compliance, but companies need something less complex and less expensive for their non-critical apps than the standard PIM packages --- most would be overkill in this area," she says.
Also new from BeyondTrust is a privileged-access management tool for virtual environments called PowerBroker Virtualization. It maintains access privileges management on a virtualization hypervisor, primarily industry leading VMware's ESX hypervisor, as well as virtual servers running on that physical server. While the virtualization tool also runs on Sun Solaris and IBM AIX hypervisors, it does not yet support Microsoft's Hyper-V, although it does work in Windows host and guest server OSes.