v-GO Shared Accounts Manager

v-GO Shared Accounts Manager provides secure and auditable access to all accounts in an organization that must be shared. Whether it is an administrator needing a root operating system account, or an application needing a service account for database access, v-GO Shared Accounts Manager can manage the access and usage of the account. This provides increased accountability which reduces an organizations compliance exposure due to shared accounts.

How It Works

A user requiring access to a privileged account makes an online request to check out a specific username and password. The request is approved or denied based on the user's role and group membership in the corporate directory (e.g. Active Directory) and/or an approval workflow in the enterprise's identity management system. The system then issues the username and password to the user subject to policy-based usage controls, such as a two-hour credential expiration or a limited number of logins.

The id/password, the associated authorization profile, and expiration information are all granted and tracked by v-GO Shared Accounts Manager. When the user accesses the desired system, v-GO Shared Accounts Manager automatically logs the user on without ever revealing the username and password. Since the user doesn’t know the password, they cannot share it with others which prevents the account from being used without v-GO Shared Accounts Manager auditing its usage.

Once expired, the username and password are automatically deleted from the user's credential store and checked back in to v-GO Shared Accounts Manager. Usernames and passwords can only be checked out to one user at a time, establishing a single point of accountability for all activity on the target application.