Universal SSH Key Manager®
UKM technical details
More about the key features and the technology behind UKM. From the inventors of the SSH protocol.
1. Discover
- Full inventory of all active and potentially active keys - who has access to what, and where
- Discovery of keys enabling PAM and jump host bypass
- Identification of all keys violating global SSH policy capable of posing a threat
- Detailed prioritized report on policy compliance in your SSH Key environment (e.g. NIST, SOX, HIPAA, PCI-DSS etc.)
- Trust relationship map and evaluation against defined policies
2. Manage
- Highly efficient centralized key management
- Monitor and report when and where SSH Keys are used
- React to violations with alerts for unauthorized changes to SSH configurations
- Remove unused or unauthorized SSH keys and renew old and weak keys
- Prevent ungoverned distribution of SSH Keys
- Limit access to servers to authorized sources
3. Automate
- Integrate authorization processes with existing ticketing systems
- Centrally manage SSH configurations Automate key provisioning, rotation and remediation
- Automate detection and prevention of policy violations
- Configuration lock down
- Compliance process enforcement
4. Zero Trust
- Eliminate authorized keys on servers for SSH access
- Radically simplify the overhead of rotating SSH keys
- Full audit and session control
- Transparent migration to just-in-time (JIT) and Zero Trust proof ephemeral access - without permanent SSH keys to manage or rotate.
- Made by the inventors of SSH and SSH Keys
- Support for all major SSH protocol versions
- OpenSSH key discovery, including Centrify, Sun, IBM, Quest etc.
- SSH.1 and SSH-2 (inc. v1.99) key discovery
- Key configuration, change settings and update management
- Key relationships mapping
- Key activity data collection, monitoring and key activity auto-detection
- Automatic key directory discovery
- Support for interactive and non-interactive (M2M) use cases
- Self-service SSH key management (User Portal)
- SSH Key auditing and compliance tools
- Automated compliance reporting
- Support for estates with millions of keys
- Non-disruptive to SSH operations when making changes
- API for integrations
Get the data sheet
Universal SSH Key Manager is the ultimate software solution for major organizations in heavily regulated and audited industries that must have an up-to-date SSH key inventory and full key lifecycle management to pass audits.
SSH Risk Assessment®
Designed with and for the world’s biggest corporations
SSH Risk Assessment is a professional service from SSH.COM for large organizations that provides in-depth information around the use of SSH and key-based authentication in complex IT infrastructure.
We leverage our in-depth technology expertise, our industry leading IP, our custom-developed scanning and reporting software, and our wide-ranging experience with thousands of enterprises and state/federal agencies, to provide a service that is fast, efficient and effective.
Learn more about SSH Risk Assessment
Our detailed reports include technical information, visualizations and executive summaries to give your team prioritised actions for SSH compliance and audit success.
