Bpmgnqvm 400x400

Leiberman RED Identity Management Review
Runs pre-configured operations with little human intervention.

Valuable Features

The solid-state aspects of the platform. Once properly built out, the ERPM environment will run pre-configured, complex operations with little human intervention.

Improvements to My Organization

We have benefited as follows:

  • Automation of the rotation of privileged credentials across the enterprise
  • The Active Directory discovery almost always uncovers previously undiscovered accounts that are running processes in the environment
  • Provides visibility of all accounts and secures them: This greatly reduces the attack surface
  • Ability to manage passwords on multiple platforms – Windows, Linux, cloud-based and on-premise from a single pane: This is conducive to sound security practices.

Room for Improvement

The included session recording is not very robust.

The session recording feature is supplementary to the core product. It is an implementation of Microsoft Expressions and IIS Media components, freely available from Microsoft, that plugs into the ERPM product.

With this enabled, sessions that are launched through the ERPM Application Launcher can be recorded, using those free MS components and the exposed ERPM web service.

It records simple, flat Windows Media Viewer format files, and is suitable for very basic recording needs. It is not a very scalable or robust offering and offers no session management capabilities.

ERPM can run without this component enabled. ObserveIT integrates very well with the product and provides true robust recording and management capabilities. The product integrates successfully with Balabit as well.

Use of Solution

I have used the product for thirty months.

Stability Issues

We did encounter a few issues. Versions 5.5.0 and 5.5.1, which were feature releases, experienced some issues. These seemed to be alleviated by Version 5.5.2.

Scalability Issues

We did not encounter any scalability issues. Through zone processors and proper hardware scaling, I never saw any limits to the capacity of the product. It is built to be scalable to a virtually infinite capacity. One customer tests this almost daily and is able to support large environments with ERPM.

Customer Service and Technical Support

I would give technical support a rating of 10/10. They are 100% U.S. based in Austin Texas. Their guys are top notch.

Previous Solutions

I didn’t use another solution previously.

Initial Setup

The initial setup was mixed. The product requires a SQL backend and SSL certificates. This is simple enough to provide, but most organizations manage those assets outside of the group that ends up implementing ERPM.

There is usually some internal pain getting all the people that need to be involved on-board. But once these pieces are in place, along with the SSL certificates and SQL backend, the setup is a snap.

Pricing, Setup Cost and Licensing

Do a full PoC in production. The AD discovery data alone usually shows people the true scope of their password issues. It will also reveal how many licenses will be needed.

Workstations, which are often an afterthought, are an attractive attack surface. I would include them in the PoC as well. The licensing for workstations is pennies on the dollar compared to servers.

Other Solutions Considered

We evaluated Lumension, but everyone in my organization was pretty sold on ERPM.

Other Advice

Do a full PoC, compare it to other products, and ensure that ERPM or competing products will integrate well into your current security operations and owned systems.

ERPM has a full suite of API integrations, and any competing products considered should have that as well.

Disclosure: I am a real user, and this review is based on my own experience and opinions.


Anonymous avatar x30

Have A Question About Leiberman RED Identity Management?

Our experts can help. 239,922 professionals have used our research on 5,963 solutions.
Why do you like it?

Sign Up with Email