Skip to main content

Hello, is PASM able to do this : The solution must support backend database activity monitoring, including the ability to capture and log all database updates, including modifications made directly to the backend via SQL queries. The solution must be capable of tracking and recording executed SQL code, with sufficient detail to identify the nature of the changes. The solution functionality must include filtering and reporting capabilities based on date ranges, enabling administrators to view SQL activity executed within a specified timeframe.

 

Thank you.

Although Password Safe is not specifically build to track database changes but based on your use case there are some ways to achieve this. You can configure integration with Servicenow for Password Safe and setup either RDP/Application session to SSMS with ESA enabled. When a user wants to perform an update to the SQL database they will need to raise a request through Servicenow and then from the Password Safe perform a session request, with ticket validation enabled Password Safe can verify the CMDB raised within Servicenow against the Managed System in the session request. Upon checking the session will either be approved or deny. When approved the user will establish a RDP/Application Session to SSMS and ESA will perform all mouse click recording during the session this will also include the keys typed.

 

   

Within Password Safe completed session you can search for keystroke. Review the ESA features.
https://docs.beyondtrust.com/bips/docs/ps-sessions#enhanced-session-auditing 

 

Although Password Safe is not specifically build to track database changes but based on your use case there are some ways to achieve this. You can configure integration with Servicenow for Password Safe and setup either RDP/Application session to SSMS with ESA enabled. When a user wants to perform an update to the SQL database they will need to raise a request through Servicenow and then from the Password Safe perform a session request, with ticket validation enabled Password Safe can verify the CMDB raised within Servicenow against the Managed System in the session request. Upon checking the session will either be approved or deny. When approved the user will establish a RDP/Application Session to SSMS and ESA will perform all mouse click recording during the session this will also include the keys typed.

 

   

Within Password Safe completed session you can search for keystroke. Review the ESA features.
https://docs.beyondtrust.com/bips/docs/ps-sessions#enhanced-session-auditing 

 

Hello, What if i don’t have ServiceNow/ don’t want to use any 3rd parties ?

The ServiceNow helps with validation of request and access and if your organization wants much more auditing and control you need to have more systems in-place. With Password Safe you can still have features of ESA (Enhanced Session Auditing).  

Reply


Badge Earners

  • BCIE: Password Safe
    Lakshmi Parvathihas earned the badge BCIE: Password Safe
  • BCIE: Privileged Remote Access
    1000Wasserhas earned the badge BCIE: Privileged Remote Access
  • BCA: Endpoint Privilege Management - Mac
    vimal88has earned the badge BCA: Endpoint Privilege Management - Mac
  • BCSE: Privileged Remote Access
    Kevin MUhas earned the badge BCSE: Privileged Remote Access
  • BCA: AD Bridge
    ErenYenerhas earned the badge BCA: AD Bridge
Show all badges
Terms & ConditionsCookie settings