Privileged access management for operational technology (OT) including embedded HTTP web applications, SSH, and Remote Desktop.
Secure remote management of devices with Multi-Factor authentication, secure password vaults & brokered authentication
Dedicated
Secure Access Gateway for Operational Technology adding logging,
time-based access
and secure authentication
ENROLL
FORGOTTEN
DEVICES
Centralise authentication for all devices including outliers that aren't backed by
remote authentication like
Active Directory or RADIUS
Provide instant access to legacy embedded device applications, file transfer and remote management protocols
CENTRALISE
MANAGEMENT
Rapid privileged remote access to OT equipment. Add in-depth logging, multi-factor authentication and attack detection to equipment that is insecure out the box.
Remove the requirement for network access and provide granular access to single devices or groups based on
maintainence time-windows
Centralised Zero Configuration authentication for 1000s embedded devices
The Silverhawk Gateway sits in between your system administrators and OT technology to broker authentication, network access to ensure authorization and logging of all actions. It was built to tackle the problem of OT / IT assets that are left out of third-party vendor's unified platforms.
Administrators log in to the Silverhawk Gateway, using Multi-Factor Authentication, to view the inventory of devices they are able to access. Engineers & administrators never have access to device credentials or the network.
Most industrial OT environments comprise of technology from a wide number of vendors. Silverhawk is the first solution to offer a unified gateway through which embedded applications can be managed.
Network switches, access points, CCTV cameras as well as industry specific technologies including ICS, SCADA and IoT sensors.
SECRETS REMAIN SECRET
All device credentials are stored in an
encrypted password vault, engineers cannot access authentication secrets.
Credentials are used by Silverhawk and passed on to the device during authentication.
The authenticated session is passed onto the user's browser
Automation
Common functions such as device backup, firmware update & password cycling can be automated across the estate
Privileged access
Remove direct network access and give permissions based on teams and times.
Silverhawk controls all authentication to devices across the network, access is provided only to those who need it.
Engineers never access the credentials or the network, only authenticated access to management applications.
http cache
Application files such as CSS, JS & images can be cached to speed up load times of interfaces on devices remote areas
Audit Logs
All device activity is logged including authentication, device interactions and configuration changes.
The Silverhawk OT Gateway only requires network access in order to provide Privileged Access Management to your equipment
Network routes through VPN and jump hosts can be spun up instantly when connecting to remote devices
PROTOCOLS &
DEVICES
The gateway supports the majority of devices as it is built to be vendor agnostic
Tried and tested on devices including Cisco, Panasonic, Moxa, HP and GE for authentication & comms over:
Embedded HTTP Web Apps
SSH
Telnet
Remote Desktop
SMB, TFTP, FTP/SFTP
AGENTLESS
Watch a short demo of some of features of the Silverhawk Gateway
Case Study
Read our story of how we centralised management of Northern Rail's on-board train equipment, improving security and speeding up maintenance.
Learn more or schedule a chat
Drop us a message to find out more about rail technology offerings from Modux