UPM creates an indelible audit trail

Privilege Manager is capable of recording all activity that passes through it, down to the keystroke level if required.

The power to accurately log root and other account activities in a safe environment allows you to implement a secure system administration regime with an indelible audit trail. You always know exactly what is being run as root, as well as who did it, when it happened and where.

Since root can modify any file, special precautions must be taken to ensure that Privilege Manager logs are indelible. Privilege Manager can be configured to receive user requests from the submitting machine, execute tasks on the execution machine, and log all activities on a third, very secure machine.

The machine containing the log files can be made physically inaccessible to users and isolated from remote login over the network if necessary. In addition, the logs can be printed to hardcopy on a secure printer or recorded to a WORM drive, if required.

This secure machine can also be assigned a root password which is unknown to the person who has physical access to it, but known to someone else without physical access. Two people would have to conspire to subvert system security. These and other techniques may be used to achieve a high degree of security around Privilege Manager itself, as well as the logs of root activity that it creates.