Hello, and welcome. My name's Martin Cannard and I'm a Solutions Architect with Quest Software. Now today I'm going to be showing you how Quest One Privileged Password Manager can help you replace hard-coded passwords from applications and scripts with secure, scalable API calls.
I'm going to walk through a use case where an application needs access to an active directory account password. Now of course, this scenario could equally relate to any identity repository system or database that the Quest One Privileged Password Manager is managing accounts four.
So the application makes an API or CLI call to the Privilege Safe to retrieve the password for the active directory account. Now note that the passwords are requested under the authority of an API user account using DSSQ authentication. And it's also possible to restrict access from API accounts to particular IP address ranges for security.
Now when the password is returned to the application, it's able to authenticate to active directory successfully. And then after a predetermined release window, the Privilege Safe can optionally change the password of the account just used as a further layer of account protection, which is then stored in the Privilege Safe ready for future retrieval.
Now what happens if you have hundreds or even thousands of applications calling for passwords at the same time? The Quest One Privileged Password Manager Cache Appliance will each support in excess of 5,000 password requests a second.
Many of these appliances can be added for both scalability and load balancing purposes, and they're available in both hardware and virtual appliance formats. The Privilege Safe pushes changes out of each of the Cache Appliances to keep them in sync. And in order to scale to the thousands of requests a second, applications communicate with a Cache Appliance using secure web services interfaces to retrieve the password.
This concludes the short demonstration. For further information about Quest One Privileged Password Manage and API integration, please go to quest.com/quest-one-privileged-password-manager. Thanks for your time.
01:47