Thycotic will be closed Thursday and Friday, Nov. 26th and 27th for the Thanksgiving holiday. More info »

  • 16 NOV 12

Sneak Preview: HSM Data Encryption with SafeNet

We’re working with SafeNet, an industry leader in data protection, to bring hardware data encryption to Secret Server. We’re adding support for SafeNet’s Hardware Security Modules, or HSMs. Pictured: SafeNet LUNA PCI HSM SafeNet’s Luna PCI HSM (pictured) is FIPS 140-2 Level 2 and 3 compliant, bringing a new level of data protection to your

  • 13 SEP 12

Secret Server and DoubleLock

Do you have a need for additional security when storing your most sensitive data? Where do you store the company’s banking account numbers and other critical financial data?  …top-level credentials for your customer database that contains Credit Card and Social Security numbers?  …credentials for classified system access? When you need that additional layer of security

  • 27 AUG 12

SSL Certificates, License Keys & More in Secret Server

Do you have copies of your SSL Certificates, Licensing Data, and Support Documentation? Of course! Can you easily search for all of those files with a single term? Maybe. Is it well-organized, access-controlled, and verified? Maybe not. Secret Server supports the functionality above by simply building a Secret Template with the proper settings. For example:

  • 24 AUG 12

Using Secret Server Links to Securely Transmit Sensitive Data

Having been a Systems Engineer, I’m familiar with the problem of sharing credentials.  My method for sharing login credentials with a colleague consisted of access to a spreadsheet with everything or a Post-it that would be shredded (hopefully).  However, with Secret Server, System Admins are easily able to share credentials with colleagues by sending them

  • 20 AUG 12

Unlimited Administrator Mode Suggestions from a Secret Server Admin

While responding to a different but related forum question, a Secret Server Admin made a good point:  Split the ability to enable Unlimited Administrator Mode and the ability to use it.  This is outlined in the Secret Server Best Practices Guide.  Here is a quote from the forum post: 1.) I encourage this on all

  • 07 AUG 12

Secret Server SMTP Authentication

As a tie-in to our previous blog post Secret Server and Secure LDAP, SMTP Authentication was another important feature released in Secret Server version 7.8.000036. SMTP Authentication was implemented as a direct result of customer requests. Many of our clients work in environments that require secure messaging. In this release and beyond, Secret Server now

  • 23 JUL 12

Secret Server and Secure LDAP

In April 2012, we released Secret Server v7.8.000036. This was the first release to include support for Secure LDAP often referred to as LDAPS (and not to be confused with SLAPD!) Subsequent releases of Secret Server will support LDAPS. Since the release of LDAPS, it has remained a bit of an unintentional secret (no pun

  • 29 JUL 11

Inheriting Permissions Based on Folders

Inheriting Permissions based on Folders It is possible for Secrets in Secret Server to inherit permissions from the folder where they are placed. For example, if you install a new managed switch in your network, instead of setting an Active Directory group or users for every network-based Secret, you set the Active Directory group or

  • 15 MAR 11

Secret Server iPhone app does not use keychain

There have been some movies going around lately showing how to compromise an iPhone and reveal all the stored passwords in the Apple keychain in minutes. David from our engineering team talks about how the Secret Server password app for iPhone is not susceptible to this type of attack because it uses its own files

  • 06 MAY 10

Folders are coming to the Secret Server iPhone app

Take a sneak peak at folder capabilities in the iPhone.