Keeper Security is adding password rotation to KeeperPAM, its privileged access management solution.
The new feature, which supports both locally installed solutions and resources hosted in Amazon Web Services and Microsoft Azure, comes in direct response to input from partners, according to Darren Guccione, the vendor’s CEO and co-founder.
“Rotation of credentials is one of the top requests that we have heard for quite some time,” he says.
Keeper teased the forthcoming release of password rotation in a blog post late in March. Like functionality in the company’s other products, including the remote access solution it rolled out a year ago, the new feature employs a “zero knowledge” model that hides credentials from both technicians and end users.
Introduced earlier this year, KeeperPAM is the latest addition to a portfolio that began with password management and expanded from there into secure management of API keys, database passwords, and other “machine credentials” and then remote connection management. According to Guccione, privileged access management is a logical next step for the company.
“As the platform was evolving to add comprehensive visibility, security, and control around human credentials and machine credentials and secrets, we started getting these questions,” he says. “You already have the credentials and the secrets in the platform. Why can’t we just enable zero trust network access within the platform? Why do we have to buy a third-party solution for that?”
Keeper is working toward providing centralized access to all of its solutions through a single management console. It’s also developing more functionality for KeeperPAM based on partner feedback, according to Craig Lurey, the company’s CTO and other co-founder.
“PAM does a thousand different things,” he says. “Some of them customers don’t care about, so we’ve really done a lot of surveying and talking to our customers about what are the most critical aspects of PAM that they’re looking for, and we’re knocking those out one at a time.”
Lurey expects multicloud identity and access management to be the next major addition to Keeper’s platform.
“You can foresee different types of services emerging, like around management of cloud services, around tools, especially on the DevOps side, to manage the automation and provisioning and deprovisioning of users and identities,” he says.
