Enterprise Password Vault

Secure highly sensitive information with Cyber-Ark.
Learn More

Our patented Digital Vault provides premier security.
Learn More

EPV 4.5 Enhancements for Application Identity Management (APM))

Application and Scripts Credential Management

Secure Cache for Performance and Availability
EPV 4.5 introduces an advanced local password cache which greatly improves the solutions performance, scalability and availability to thousands of calling applications and scripts. In addition, the cache ensures that applications that need a password are able to retrieve it despite network, connection, or other operational failures that could prevent access to the central Password Vault. The local cache is encrypted and protected , with access to passwords from the cache is fully tracked and audited.

With several flexible settings, customers can customize their preferred method of deployment to best fit performance, security and auditing requirements of the solution. The Cyber-Ark Application Password Provider , which manages and protects the local cache, is able to identify applications and provide the required password for a wide range of platforms, such as Java, .NET, C/C++ as well as command line interfaces.
New Application Password SDK
Version 4.5 introduces the next generation of the Application Password SDK that introduces more flexible options for calling applications to handle password retrieval. With options for error detection, timeout periods and other finely tuned options, applications can now optimize secure, efficient and auditable password management.

Transparent Credential Management
Cyber-Ark's patent pending approach to eliminating hard-coded credentials in applications includes specific options for leading Application Servers ,allowing transparent solutions for applications using connection pooling. The unique advantage of this solution is that no code changes are required in applications that use the Application Server's connection pooling, which provides dramatic cost and operational risk reductions during implementation and mitigation. With out of the box support for IBM WebSphere and BEA Weblogic, EPV 4.5 ensures that critical passwords required for mission critical applications running on Application Servers are always available but are never exposed or vulnerable. By using the Cyber-Ark Application Password Provider, all passwords are protected and cached to ensure they are up to date, available, delivered to calling applications instantly, and with all accesses monitored and auditable.
Eliminating Downtime During Password Change Process
EPV 4.5 introduces a novel approach to password replacement for pooled credentials that does not require the Application Server to be restarted in order to synchronize its connection pools. With many customers using mission critical production Application Servers, the ability to avoid restarting them as part of a password replacement process provides huge benefits in reduced administrative overhead, operational risk mitigation and no downtime.

More secure credential files
Cyber-Ark's unique approach of credential files security is even more robust with EPV 4.5. The new credential file capabilities introduce additional verification settings to ensure more granular control, security and usage. It is now possible to limit a credential file for usage with specific Cyber-Ark components, such as the CPM or SDK, or limiting credential files to be used only from specific IP addresses or be invoked by specific executable or operating-system users. These new filters allow a higher level of security for unattended programs and services and limit the possibilities to hijack or abuse credential files.

For more information or to schedule a demonstration of EPV 4.5, contact sales@cyber-ark.com today.