BreakGlass Account for Vault

Products Privilege Secure Ideas
, ,
1

What is a one sentence summary of your feature request?

Emergency access to credentials

Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.

In event when PAM is down, user is unable to retrieve the latest password that was rotated or stored in vault. Hence it affected their operation when they need to access a particular server.
Would be great if there is an emergency access like a breakglass account where NPS Admin can use to retrieve the latest credentials that are managed by NPS.

How do you currently solve the challenges you have by not having this feature?

Need to backup and restore NPS

2

Hi YZ,

Thank you for the feedback. We only suggest a local user in case the connection to AD/Entra is down. If NPS itself is down (and it isn’t the database), we would need some kind of tool to get credentials out of the database. I believe competitors do have something like that. I will put this in the backlog for now.

Best Regards, Billy