SplitSecure – Launch Demo
Learn how SplitSecure simplifies access to organizational resources. Request access to AWS admin credentials through a browser interface, authenticate with MFA, and get approval from your manager, all without credentials being persisted.
Chapters
00:00
Introduction to SplitSecure
00:22
Requesting Access
Requesting admin credentials for an AWS account.
00:46
MFA and Security Confirmation
MFA push notification and security sensitive action confirmation.
01:19
Manager Approval
Boss's approval for access to AWS account.
01:46
Access Granted
Access granted and logged into AWS.
02:00
SplitSecure Key Features
Key takeaways about SplitSecure's functionality.
Transcript
00:00
Hi, I'm Tristan and today I'm going to show you splitsecure.
00:04
So splitsecure has two components.
00:06
There's the browser view here on the left, and there's the mobile view here on the right.
00:11
When you want to use SplitSecure, first you go to the browser view just by loading our website and you'll immediately come to this page.
00:17
This is a list of all of the resources in your organization you can request access to.
00:22
So in this demo I'm going to request admin credentials on this AWS account.
00:27
So I just click authenticate for the resource I want.
00:31
It's going to ask me for some data.
00:32
This is just used by the service provider.
00:34
Like what role am I requesting access to from this dropdown?
00:38
What's the session name?
00:39
And how long do I want my ephemeral session to last?
00:43
So I will hit request access.
00:46
You will see the MFA push notification on my phone.
00:51
the browser is considered untrusted, so it's asking me to confirm the security sensitive action to request access.
00:58
I'm going to hit approve.
01:01
All right.
01:02
Now my organization's policy for how I can request access to this resource is being automatically enforced in the background.
01:09
If, this required automatic approval, like being in an okta group, that would be happening.
01:13
If this required manual approval, another human has to authorize me, that would be happening.
01:19
in this example we say that my boss needs to approve my access.
01:23
for the sake of the demo, we've set this same phone as also being my boss's device.
01:28
You will see that the approver has received a notification saying they are now approving access to this AWS account with this role for 15 minutes, I'm going to approve that Face ID engages.
01:42
Now, my organization's requirements for access to that resource have been met.
01:46
So my access is granted and my credentials are made available to me in the form of this link which I click on and I'm logged into aws.
01:58
So very, very simple demo.
02:00
Not particularly flashy, but I hope you take the key takeaway with SplitSecure.
02:03
You open it in the browser, you see a list of the resources you can request access to.
02:08
You click on the one you want and as soon as you click, whatever your organization's access control policy is is automatically enforced in the background.
02:15
And all of this happens without the credentials ever being persisted or or revealed at any point.
02:21
Thank you very much.
Comments
No comments yet