Case Study: Leibniz Supercomputing Centre (LRZ) secures student data and centralizes access management with One Identity's Safeguard for Privileged Sessions

Protecting Personal Data and Simplifying Access Management

Leibniz Supercomputing Centre (LRZ) needed to host a complex web application that processes personal data for hundreds of thousands of study applicants, so it had to prevent unauthorized data copying and simplify a fragmented SSH access and auditing regime. To meet regulatory and operational requirements while separating administration and access management, LRZ selected One Identity’s Safeguard for Privileged Sessions.

One Identity deployed Safeguard for Privileged Sessions as a central gateway and activity‑monitoring appliance, using smartcard‑embedded SSH keys for two‑factor authentication, group‑based access rights, session recording, file‑transfer tracking, and multi‑key encrypted audit trails. Implemented in about one month, the solution now controls 10 administrators and 100 servers, reduced firewall and access complexity, eased auditing and worker‑council approval, and strengthened protection and accountability for LRZ’s sensitive systems.

Leibniz Supercomputing Centre (LRZ)

Christoph Biardzki

Head of IT Infrastructure, Server and Service Group