Morgan Holm

Configure PBMS as a Data Source in Cygna Auditor

Since Cygna Labs took over the BeyondTrust Auditor Suite (PowerBroker Management Suite) at the beginning of this year we have taken on support, maintenance, and enhancements for the products. We are uniquely positioned to do this because we are the same group of industry veterans who also developed the Blackbird Management Suite, which was acquired by BeyondTrust in 2012.
Our main goal is to provide a smooth transition for those customers over to the Cygna organization and products. To that end we have recently released an updated version of Cygna Auditor that integrates PowerBroker Management Suite (PBMS) as data source in the Cygna Auditor global reporting feature. This provides the ability to view and filter PBMS data combined with many other sources such as Office / Microsoft 365 in a simple yet powerful web-based console.
The process to setup this configuration is straightforward.

 

Select PowerBroker Management Suite Tile

  • From the Cygna Auditor Configuration page Select the PowerBroker Management Suite tile.

 

Configure PowerBroker Management Suite

 

 

Configure PBMS Connection Properties

  • Enter the database server name and instance (if not default) for the existing PBMS database
  • Select the SQL authentication type and enter an account and password that has access to the PBMS database
  • Select the name of the PBMS database under Initial Catalog
  • Typically there is no need to adjust timeout or retry setting values
  • Push the Verify connection string button to confirm the settings are correct and if so, then select the Save button

 

PowerBroker Management Suite Database Connection Settings

 

PBMS Dashboard Elements

  • Once connected, a PBMS tile will be added under Events by Source and there will be a Top PBMS AD Users chart

 

PowerBroker Management Suite Dashboard Elements

 

PBMS Events

  • PBMS audit events now appear in the interactive audit views and can be saved in reports
  • You can specify the audit sources of interest

 

PowerBroker Management Suite Event Source

 

 

  • The PBMS audit events appear among audit events from other sources including Microsoft 365
  • The displayed events can be focused to only return the desired audit data across specified sources greatly simplifying your auditing efforts

 

PowerBroker Management Suite Events in Cygna Auditor Global Reporting

 

Mikael Grondahl

The threat from within – Who supervises the supervisor?

All organizations constantly worry about external attackers, but truth to be told is that most threats these days come from malicious insiders. This is something that most organizations are not prepared to handle.

That insider could be your trusted colleague sitting across the desk from you, and that person may or may not even know he or she is a threat.

Read more…

Mikael Grondahl

The IT Audit – Ready or Not – Here I come…

Monday morning 8:15, you start feeling that weird sense of guilt and nervousness, you feel the beads of sweat forming on your forehead, 15 minutes left before the auditor arrives…

You ask yourself – “How long could this possibly take? What are they looking for? What if I can’t provide the answers to all their questions? Should I look for a plane ticket to a faraway country where they don’t have an extradition treaty?”

Read more…