• RDP
• Admin Checkouts
• Removing hard-coded credentials from most of our built-in Apps

It's more of a risk reduction. It takes passwords that are not being managed properly and manages them automatically which really reduces risk.

When our field engineers logged into a workstation, they had to use the local admin password. They maintain 12,000 workstations. We used ERPM to create a new local admin account that is managed by ERPM, created a management set and defined all the workstations into the set. This saves the techs from manually changing the passwords on all those systems and provides them with the ability to recover the password (which is different from all the others) for specific systems.

We have benefited as follows:

• Automation of the rotation of privileged credentials across the enterprise
• The Active Directory discovery almost always uncovers previously undiscovered accounts that are running processes in the environment
• Provides visibility of all accounts and secures them: This greatly reduces the attack surface
• Ability to manage passwords on multiple platforms – Windows, Linux, cloud-based and on-premise from a single pane: This is conducive to sound security practices.