Privilege access management for administrator is a very complex area. Usually, the administrators are working with shared accounts, resulting in the impossibility to track who is connected to what.
FISis approach is simple : a web portal is set inside the enterprise so that the administrators can login to this portal with their own personal credentials. From this portal, they will then see all their authorized access to devices, servers and applications.
This portal provides Single Sign On to the target device via a shared user. The credential of this user is fully managed by the solution, meaning that the password is changed dynamically and that nobody know this password.
In case an external consultant needs to access to the system, a policy can be set, so that this password is changed for example 5 minutes after the logon.
A number of policies can also be setup, such as dual control and of course Video monitoring.
The final aim is to be able to check all the accesses and who accessed to what. If necessary the video can be checked to see what the user has been doing.