Fine grained access to your enterprise servers may not be enough for your auditors. It is often required to constrain WHAT commands, and OPTIONAL parameters are used with them, based on the administrator role and geographical department.
In the UNIX/Linux space many environments use the free "SUDO" utility to enable fine grained access controls. It does however have a major manual administrative overhead, creating a stovepipe of specialist knowledge not integrated with the rest of your corporate access management policies. You are then required to create separate security policies for this important area, new processes, and site-specific mitgations.
FoxT Solution
FoxT provides a replacement solution enabling you to:
Centrally define who can execute which command with what option on specific groups of servers WHEN
Create command "pools" attached to specific user or administrator groups
Define which command options are available to users or administrators
Provide a direct migration path from SUDO to the FoxT equivalent environment
Fully integrated into the other UNIX/LINUX security policies, removing the need for separate analysis and support teams
