In Perm SafeInspect authentication systems began to apply Polytechnic University

The New Security Technologies (NST) company — the Russian software developer for increasing the level of security of information systems and management of critical IT infrastructure — announced in September, 2016 system implementation of control of privileged users of SafeInspect at the Perm National Research Polytechnical University (PNRPU).

Having analyzed all risks of information security connected with use of exclusive accounts by internal users and third-party contractors specialists of the Perm Polytechnic University came to a conclusion about need of implementation of the specialized solution providing monitoring of actions of users and minimization of possible negative effects.

The main criterion in the choice of a control system of privileged users was the possibility of control of remote connections to separate nodes of information infrastructure of the university under the RDP and SSH protocols. Ensuring unification of process of authorization of users using accounts of LDAP with further substitution of parameters of authorization on a final node was one of requirements to a system that allows to increase convenience of work of users and security of infrastructure, due to safe storage of parameters of authorization. In addition, the possibility of manual confirmation of remote connection of the privileged user from a security administrator during the work with especially important nodes of information infrastructure of educational institution was one of necessary conditions.

The solutions meeting the described requirements were unrolled on pilot platforms. Based on tested specialists of the Perm Polytechnic University stopped on the software of SafeInspect.

"SafeInspect provides full control of remote connections under the RDP and SSH protocols, gives enhanced capabilities of access control of users and control of their actions, allowing to filter potentially dangerous actions, for example, - the safety systems engineer of PNIPU Roman Rashevsky tells. - The broad functionality of SafeInspect allowed to carry out solution integration taking into account all features of our information infrastructure and requirements of security policy".

Using SafeInspect in PNIPU monitoring of all connections using exclusive accounts of internal users is performed. Besides, SafeInspect at a stage of a pilot project was used for the organization of control of remote connections of third-party contractors when implementing new projects in information infrastructure of the university.