PowerBroker lets you centrally administer and delegate UNIX/Linux privileges. System administrators can delegate administrative privileges and authorization without disclosing the root password, and grant selective access to UNIX/Linux resources. PowerBroker provides complete logging down to the keystroke level, providing the accountability needed to meet SOX, HIPAA, and other regulatory compliance requirements.
PowerBroker 5.0 adds entitlement reporting and log pooling to the other features that have made PowerBroker the leading Unix/Linux access control product:

Secure Access to UNIX/Linux Administrative Privileges

Granular delegation of UNIX/Linux ROOT privileges
Secure application-generic account privileges (e.g., Oracle)
Restrict command line access to programs and applications
Control access to files and directories
Detailed UNIX/Linux Security Policies

Comprehensive access control policies using a "C-like" scripting language
Policy Scripting GUI to speed policy development
Enable access by user, UNIX/Linux group, netgroup, or host
Restrict or replace specific UNIX/Linux commands, including su and r- commands
Restrict access by day, date, and time
Restrict access to and from specified hosts, including remote hosts
LDAP querying capabilities, and ability to authenticate against LDAP and Kerberos in Active Directory
Detailed Audit Trail of UNIX/Linux Tasks

Event logs capture detailed information about each task request
Comprehensive "keystroke logs" capture complete session I/O
Keystroke replay allows monitoring in near-real time
Centralized, Secure Operations

Centralized administration across over twenty-five (25) UNIX and Linux platforms
AES encryption of PowerBroker's files and network traffic
Support for PKI using OpenSSL
Client/server architecture for fault tolerant operations