Trials and Tribulations of the Password Guy
I was just re-visiting a customer site to continue helping them with their Privileged Password Management deployment when I passed someone in the break room who called out “How’s it going, Password Guy?”
Password Guy? Well, I guess I have been talking about passwords for 10-plus years now, so I guess I can’t complain too much… but it did get me wondering… how is it that I’ve been talking about passwords for 10 years? Has this problem really been going on for 10-plus years? Actually, as you are about to learn, it’s been going on for much longer, and isn’t going anywhere any time soon.
The model of using a “privileged” AD account still has the inherent risk that it has a wide level of access. In a large organization, one AD account might be able to access hundreds or even thousands of servers. So some companies are taking the approach that even this access presents too much exposure in the world of APTs that may be able to move quickly to spread from machine to machine.