ACCOUNT MANAGEMENT
Automated rotation across OS, databases, and cloud.
Bring privileged accounts under policy-driven control with full audit visibility. Password reset, key rotation, and reconciliation for service accounts, OS local accounts, database logins, and cloud identities. Includes credential history, full audit, and event-driven rotation triggered by access, time, or anomaly.
How it works
Rotate without breaking the systems that depend on the credential.
12Port discovers privileged accounts on Windows, Linux, network devices, databases, and cloud identities. It rotates them on the schedule you set (or on demand) and reconciles the new credential with every system, script, and integration that uses it. Credential history is full and audit-grade.
An open script library covers protocol gaps, and an event-driven engine triggers rotation on session end, role change, suspicious activity, or compliance schedule. Configurable password formulas enforce per-target complexity policies.
What gets rotated
Four capabilities. One workflow. One audit.
Operating systems
Windows local + domain accounts. Linux root, sudo, and service accounts. AIX, Solaris, HP-UX. Account state reconciled with the OS authoritative source after every rotation.
Database accounts
PostgreSQL, MySQL, SQL Server, Oracle, MongoDB, MariaDB. Native and AD-integrated authentication. Replicated to standby and read replicas where applicable.
SSH key rotation
Public + private SSH key pairs. Discovered, vaulted, rotated, and pushed to authorized_keys. Old keys revoked and audited; no orphan keys left behind.
Cloud identities
AWS IAM users + access keys, Azure AD service principals, GCP service accounts. SaaS admin tokens (Office 365, Salesforce, GitHub, Atlassian) where the platform exposes a rotation API.
How rotation runs
Trigger, rotate, reconcile, audit.
Event-driven rotation
Rotate on session end, role change, anomalous activity, or compliance schedule. Each trigger is a configurable rule, not a hardcoded policy.
Open script library
Customize rotation logic with PowerShell, Python, or Bash scripts. The library is open and source-controlled. Add support for any system that has a rotation API.
Configurable password formula
Per-target complexity policy: length, character classes, dictionary exclusions, history depth. Compatible with regulated systems that mandate specific formats.
