Fino Bank
Background:Fino Paytech (FINO Bank) is an institutional investor-driven company owned by international and Indian investors. The company has emerged as a thought leader, innovator and implementer of technology solutions for institutions like banks, micro-finance institutions, government entities and insurance companies. As an alternate banking channel, Fino Paytech enables seamless end-to-end customer sourcing and servicing.
Products Deployed
- MF Privilege Account Manager
- MF Advanced Authentication
Challenge
- The customer required deploying security based solution in record time to comply with RBI regulations
- There was no standard process via which the users are created in Active Directory
- Passwords were not synchronized in different target systems (Unix , Windows)
- No services for end-user “self-service” was available for regular user requests like password reset
- No audit mechanisms were defined for Privileged Users accessing Linux and Windows servers
- No audit or monitoring mechanisms were defined for users accessing databases
- Most Support Engineers had Full Admin privileges to the Windows / Linux users
- No standardised password policy was adhered to across users in different systems.
- Account lockout policy implementation was not consistent with the bank’s security policies
- No biometric or multi-factor authentication was configured for engineers accessing critical production servers
Deployment Overview
- Deployed MF Privilege Account Manager (PAM)
- Integrated MF PAM solution with 300 + devices which includes
- Windows Servers,
- Linux Servers and
- Database Servers.
- Implemented the below use cases for PAM
- RDP Relay Access
- Command Management for Windows / Linux / DBs
- SSH Relay Access
- Database Monitoring
- Deployed MF Advanced Authentication (AA)
- Integrated MF AA with PAM
- Dual auth via Email – OTP and LDAP auth for RDP Relay
- Dual auth via Email – OTP and LDAP auth for SSH Relay
