Notice: quest.com will be retired soon. Please visit our new site at software.dell.com

Privilege Manager for Sudo

Embracing and enhancing sudo through centralized management

Privilege Manager for Sudo, now a part of the Privileged Access Suite for Unix, helps Unix/Linux organizations take privileged account management through sudo to the next level. The Privilege Manager for Sudo plug-ins enhance sudo 1.8.1 (and newer) with a central policy server, centralized management of sudo and the sudoers policy file, centralized reporting on sudoers access rights and activities, as well as keystroke logging of activities performed through sudo.

Privilege Manager for Sudo makes administering sudo across the entire enterprise easy, intuitive and consistent — eliminating the box-by-box management of sudo that is the source of so much inefficiency and inconsistency.

Features

Quest One Privilege Manager for Sudo
  • Extend Sudo 1.8.1 – Enhance sudo with new capabilities that embrace and extend sudo by providing plug-ins (central policy server and keystroke logging) that fit into the sudo 1.8 modular framework.
  • Central Sudo Policy – Use a central service to enforce policy, removing the need for administrators to manage the deployment of sudoers on every system. This improves security and reduces administrative effort by centrally administering sudo and sudo policy for privileged account management across any number of Unix/Linux servers.
  • Centralized Reporting – Centralize reporting on sudo using a single platform: the  Management Console for Unix. Available reports include access and privilege reports that analyze the sudo configuration file, user accounts and group memberships. Reports also provide a list of the access and privileges that have been granted to users and systems through sudo. The console also lets you track changes made to sudoers, including versioning, and the ability to revert to any previous version. This allows for a report that shows you who made what changes to the sudo policy file, and when. It also includes the ability to track who ran what sudo command across all managed systems, and whether the command was accepted or rejected based on the policy.
  • No Training Required – Avoid training and minimize calls to the help desk. Because plug-ins extend sudo’s capabilities, users will take advantage of their existing sudo knowledge and realize a faster time-to-value. Other privileged management solutions require learning new commands and syntax, resulting in more training and calls to the help desk.
  • Keystroke logging – Track and log keystrokes for administrators that perform activities through sudo using the Privilege Manager for Sudo Keystroke Logging plug-in. The keystroke log provides a comprehensive view of what activities are performed and the commands that are executed across all systems. The report can be filtered in many ways to help you quickly find the data you need. For example, you can filter on specific commands or for commands run during a specific time period.
  • Separation of Duty Enforcement – Enforce the concept of separation of duty (SoD) using the Management Console for Unix. The console enables users to be assigned to a role, and based on the role, only be allowed permissions to perform certain tasks. For example, the administrator may be allowed to modify the sudo policy, but not be allowed to view keystroke log recordings.
  • Sudo Offline Policy Cache – Provide continuity of service in the event of a network or server outage with Sudo Offline Policy Cache.
  • Script Compatibility – Ensure compatibility with existing script files that include embedded sudo commands. Because other privileged management solutions use different commands and syntax, existing scripts will likely fail to run, resulting in potentially huge costs to test and fix scripts across multiple Unix systems.
  • Centralized Management – Manage sudo using the Management Console for Unix.The console provides a single point of administration for multiple Dell solutions to simplify administrator- and auditing-related activities across the entire Unix environment.

Sys Reqs

The Privilege Manager for Sudo plug-ins require sudo 1.8.1 or later and will run on the following systems that have sudo installed.

The Management Console for Unix is browser-agnostic (supporting Internet Explorer, Firefox or Safari) and can be run from any Windows, Mac, Unix or Linux workstation.

Operating System

Supported Version

Linux

Red Hat®

Enterprise Linux 5 (Intel x86/x86 64, PowerPC 32/64 bit, IBM zSeries)
Enterprise Linux 6 (Intel x86/x86 64, PowerPC 32/64 bit, IBM zSeries)

CentOS

CentOS 5 and 6 (Intel x86/x86 64)

Fedora

16,17, and 18 (Intel x86/x86 64)

SUSE® Linux

OpenSUSE 10 and 11 (Intel x86/x86 64)
Enterprise Desktop 10 and 11 (Intel x86/x86 64)
Enterprise Server 10 and 11 (Intel x86/x86 64, PowerPC 32/64 bit, IBM zSeries)

Debian/Ubuntu

Debian GNU/Linux 6 (Intel x86/x86 64)
Ubuntu 10.04 LTS, 11.10, 12.04, 12.10 (Intel x86/x86 64)

Oracle Linux

Oracle Linux 5 and 6 (Intel x86/x86 64)

Oracle VM

Oracle VM 2

XenServer

XenServer 5.6 and 6.0

VMware ESX Server

vSphere (ESX 4.0 and 4.1)

Solaris

Sun® Solaris

8, 9, 10, 11 11/11, and 11.1 (SPARC 32/64 bit / Intel x86/x86 64)

HP-UX

HP® HP-UX

11.11, 11.23, 11.31 (PA-RISC 32/64 bit)
11.22, 11.23, 11.31 (IA64 32/64 bit)

AIX

IBM® AIX

5.3, 6.1, and 7.1 (32/64 bit)

Mac OSX

OSX 10.7 and 10.8

Videos

Quest One Privilege Manager for Sudo Overview Video

 

Screenshots

Sudo Access Report

Sudo Access Report

This report untangles the sudoers policy file by providing a simple-to-read report on what sudo privileges users have on what systems including an examination of aliases and group memberships.

Sudo editor

Sudo editor

Quickly and easily edit the sudoers policy.

Sudo editor version

Sudo editor version

Easily view the different sudoers policy versions, when they were changed and who changed them, along with any comments.

Sudo events 2

Sudo events2

View all commands executed based on host and user with optional replay of keystroke logging.

Sudo events 3

Mailbox Inventory Report

Search event logs based on user, host, time, policy group and even keywords.

Sudo keystroke replay

Sudo keystroke replay

Replay session logs down to the keystroke level (optional).

Sudo local user events

Sudo local user events

See a bird’s-eye view of all your Unix accounts, manage them, and quickly search on any account for its sudo activities across multiple systems.

Sudo readiness check

Sudo readiness check

Check basic network conditions, connection to the policy server, support for offline policy cache and the current sudo installation.

Sudo version report

Sudo version report

See a detailed view of all sudo policy changes.