HOT Website

What is HePM? and What can I do with HePM?

HOT endpoint Password Manager (HePM) - A centralized Enterprise Application to manage / secure / automate / control and audit the Local Administrative User ID Passwords and hence the Confidential Data on Endpoints (Desktops & Laptops). By managing Passwords of Privileged IDs of endpoints on Domains and / or Workgroups, which is transparent to end users (end user work is not suffered), HePM Automates following 3 main IT Operational activities and makes them Auditable:

1.Password Generation - Random, Cryptographically Strong & Unique Password (e.g.: #2z!5uwjXc)N or X9mc1]zF^q2t )
2.Password Change - Changes Passwords, Encrypts them (AES256 bit Encryption) and Stores in a Secure Vault
3.Subsequent Password Usage - Any password fetched from the Vault generates Audit log and if fetching is based on Approval process, it can control misuse to a great extent.

What is the flow of HePM software? / How does HePM work?
- The Flow:
  - List endpoints in Domain / Workgroup
  - List all PIDs on selected endpoints alongwith Password Age
  - Randomly generate Cryptographically strong password (unique for each PID)
  - Change / Reset Passwords for selected PIDs at once
  - Store encrypted Passwords in centralized Secure Vault
  - Use Master Vault Password to fetch Passwords stored in Vault
  - Retrieve Passwords from Vault on need basis
  - Change it immediately after each use and Securely store back in the Vault
  - Generate Audit trail for each action
  - Replicate Secure Vault for BCP purposes
What are Features & Benefits of HePM?

What are other alternates to HePM?

Generally, organizations manage Local Admin Passwords using Group Policy - Active Directory Domain. However it is not recommended even by Microsoft as it is vulnerable to Password Discovery attack. Managing Local Admin Passwords manually is not advisable at all.

For details of why managing Local Admin Passwords using Group Policy is vulnerable and what the Password Discovery vulnerability is, read the LinkedIn post - Microsoft Says: NOT to use Group Policy to set Local Admin passwords - visit the link below:

https://www.linkedin.com/pulse/microsoft-says-use-group-policy-set-local-admin-bhaskar-divecha

What pain points are addressed by HePM?

What are Cost Benefits / ROI of HePM?

HePM reduces the overall cost of these 3 operational activities (Password Generation, Password Change and Password usage) like Resource Costs, Administratives / Operational Costs (Generating unique Passwords, Password Envelope Maintenance, Changing Passwords, ...) and other indirect costs (PID Inventory, Audit Logs for each & every activity, Password Replication, ...), etc.

The intangible and indirect costs savings & value add that HePM provides in terms of Data Security and Compliance are beyond compare.

It has potential to save Rs. 5 lakh per annum on Resource Cost alone (for 500 user setup) apart from other tangible and intangible benefits which are much more than Resource cost.

Does it Support BCP? / Does it have DR capabilities?
- Yes, with backup of appropriate data (files, Database and Registry), the Passwords stored in Vault can be accessed from alternate location (DRsite).

What size of organisations uses HePM?

HePM : Universal Secure Automation Weapon - Beyond Verticals & Beyond Size
Takes the Endpoint Security to the next Level towards closing the Endpoint Security Loop
HePM would be useful for any setup having more than 30 Computers and any segment SME or Corporate (BFSI, Pharma, Automobile, Manufacturing, Education, Chemical, Construction, Government, HealthCare, Retail, FMCG, Hospitality, Logistics, Media, Telecom, IT, ...).

How does the HePM Licensed?
- HePM licensing is based on number of target user IDs for which the Password has to be managed. So License cost is per user / year.

Hari Om Tatsat Technologies Technology Automation • Training • Security • Animation Techniques — TATSAT

Hari Om Tatsat Technologies
Technology Automation • Training • Security • Animation Techniques — TATSAT