We started SamaraTech with the vision of helping organizations leverage IT solutions to achieve the highest standards of performance and business efficiency. We believe that our expertise and experience across a broad range of markets and missions will help our customers achieve business and organizational objectives. We will go the extra mile to provide a solution to every Oracle challenge an organization is facing—including those that involve machine identities.
We’ve had many larger customers wake up one day and say, "Wait a minute, we've got 1,500 Oracle HTTP Servers (OHS) out there. We're doing self-signed certificates on some. On others, we're not doing anything. Help! We've had certificate outages. We've had attacks."
A man-in-the-middle (MitM) attack is dangerous! It’s when an attacker intercepts communication between two parties either to secretly eavesdrop or modify traffic traveling between the two. And these attacks are most likely to occur in connections that are not encrypted or use substandard or expired machine identities. Attackers might use MitM attacks to steal login credentials or personal information, spy on the victim, or sabotage communications or corrupt data.
SSL/TLS Certificates and Their Prevalence on the Dark Web
It is not uncommon for organizations to have a hundred servers today, and tomorrow they may have a thousand servers. Then the next thing they know, they have another business unit that is going to throw in another 10,000 servers. We’ve seen it! Since its inception SamaraTech has focused on Oracle Solution and IT consulting services, delivering complex end-to-end solutions in Cloud, IoT, Big Data & Engineered systems with 24×7 Managed support services. We have completed over 400 successful projects.
Throughout the Global 5000, Oracle applications have formed a core part of the operating infrastructure. OHS is a commonly used web application in Oracle deployments. We saw our clients struggle with no way for security and operations teams to understand how to properly use machine identities—TLS certificates—and no way to automate the machine identity lifecycle. That made us very excited to work with Venafi, who are the leader in machine identity management. Together with Venafi, we have now got machine identity management for Oracle deployments covered.
The joint solution, which is delivered as an Adaptable Application Driver, handles typical machine identity management activities for Venafi generates CSRs for those servers according to InfoSec policy, then procures and implements the approved certificates. The solution allows the Venafi Trust Protection Platform to maintain an inventory of these certificates with their validating information and trigger the renewal events as applicable. The Venafi platform can also perform onboard discovery among multiples of VMs, if required, to further streamline the automation process. The joint solution also handles the decommissioning process when a copy of OHS gets uninstalled from one of those servers.
Visibility, intelligence and automation of certificates may not seem to be a big deal for internal users, but it is a big deal when you talk about external hackers who are sniffing into their systems. No CXO wants to hear about someone using a man-in-the-middle (MitM) attack to sniff onto any of their Oracle infrastructure component servers because of an expired certificate! Our machine identity management solution is designed specifically for OHS and can help take MitM attacks and costly outage prevention out of the equation—no more sweating and losing a night's sleep about it.
Of course, there are some teams that are maybe aware of the problem with machine identities—security aware, that is—but just don't have the wherewithal or the time or the tools to address it. With automation tools, like the joint solution that we provide, organizations can move from no assurance to secure machine identities.
We’ve heard from customers that the driver works; it's in production. It is managing tens of thousands of certificates using the Venafi Trust Protection Platform. It's one of the mission critical use cases for the Global 5000: moving from no security to some security, to full security using machine identity management best practices.
The SamaraTech Oracle HTTP Adaptable Driver is available for download now. You can learn more from the Venafi Marketplace.
This blog features solutions from the ever-growing Venafi Ecosystem, where industry leaders are building and collaborating to protect more machine identities across organizations like yours. Learn more about how the Venafi Technology Network is evolving above and beyond just technical integrations.
Why Do You Need a Control Plane for Machine Identities?
Related posts
- Venafi Study: Are Financial Service Organizations More Likely to Suffer Certificate-Related Outages?
- Majority of Businesses Still Experience Outages: Are You Protecting Your Certificates?
- GAO Report: Expired Certificate Allowed Extended Exfiltration
- How Big Is Your Risk of Certificate-based Outages?