Remove Administrator Rights

advertisement
ILTA SOS Webinar: Remove Administrator Rights and
Secure a Law Firm’s Greatest Asset- Its Reputation
Sean M. Power
Chief Information Officer
April 2013
© 2012 Lathrop & Gage LLP
About Lathrop & Gage, LLP
 Founded in 1873, known as the oldest law firm west of the Mississippi River
 Approximately 850 desktops and laptops
 315 Attorneys
 Highly-mobile, distributed work force:
•
11 offices across the US
© 2012 Lathrop & Gage LLP
Desktop Environment Challenges
 850 desktops and laptops running multiple configurations
 Nearly 200 applications, many customized
 Extensive mobile workforce
 Previously all users ran with administrator rights
 Much trepidation by some about removing administrator rights.
 Moved to a fully locked down desktop environment with all users running as limited
users.
 Attorney’s need flexible user control of PCs
© 2012 Lathrop & Gage LLP
The Solution
 Very effective reporting on what precisely needs privilege elevation especially third
party legal review websites with Active X add-ins.
 Ability to control and manage our distributed PCs over a secure internet connection
 Elevate privileges on the fly regardless of attorney’s work location
 Policies are propagated immediately
 No need to initiate remote desktop and use RUN AS
•
Significant when running and installing programs as the user, not in the administrator
context
 Ability to flexibly manage our locked-down environment
 Easy discovery of what rights are needs to run challenging applications
 Recording of privilege elevation events for auditing
© 2012 Lathrop & Gage LLP
The Results
 Manage user access privileges effectively, efficiently, extremely timely manner
 User still does not require admin rights
 Increased productivity immensely for IT staff and end users
 Much better control for software compliance considerations
 Significant reduction in malware incidence or severe limitation in the effect of
malware if it gains a foothold, often constrained to individual profile – this is very
useful if someone is travelling and out of the office
 Application configuration files and the registry can be effectively controlled
 Allows people to focus on the job
 Case study:
www.viewfinity.com/ Resources/CaseStudies/LathropGage.aspx
© 2012 Lathrop & Gage LLP
Leading the Privilege
Management Sector
Eliminate Admin Rights with Viewfinity
Viewfinity
• Worldwide Leader in Least Privilege Management
• Only PM Vendor to offer GPO, SaaS, and Server options
• HQ in Boston with offices in The Netherlands, Germany, Israel and
Ukraine
• Strategic partnerships with Microsoft, CA, McAfee, Centrify
Our Mantra:
Eliminate administrative rights
without disrupting end user productivity!
Viewfinity Inc. Confidential
Users with Admin Rights can….
•
•
•
•
•
•
•
•
•
•
•
•
•
Install kernel-mode root kits
Install system-level level key loggers
Install ActiveX controls, including IE and Explorer extensions
Install spyware and adware
Install and start services
Stop existing services (such as the firewall)
Access data belonging to other users
Cause code to run whenever anybody else logs on to that system
Replace OS and other program files with Trojan horses
Disable/uninstall anti-virus virus
Create and modify user accounts
Reset local passwords
Render the machine unbootable …
Flexible Delivery Methods
Private Cloud*
Public Cloud
Viewfinity Server – optional deployment in DMZ
GPO Architecture
Quick Preview
•
•
•
•
Discover users with local administrative rights
Discover applications requiring administrative rights
Privilege elevation policies
Auditing & reporting for compliance validation
Discover User Accounts that Have Local
Administrative Rights
Visit our website for resources and to begin your product evaluation
WWW.VIEWFINITY.COM
2 minute flash video overview of the Viewfinity product
WWW.VIEWFINITY.COM/INTRODUCTION_FLASH.HTM
Download