Enforcive In-Active User Management

Defines a policy for handling in-active user profiles.

Architecture 

  • Management thru a proprietary system of users and groups, integrated with operating system parameters

Highlights

  • Different handling for different users and groups
  • Disabling of user profiles following a specified period of inactivity
  • Option for calling a user defined program
  • Handling of a system policy for users without specific definitions

Organizational Benefits

  • Allows the organization to easily implement important security best practice, which would be highly time consuming with systems with many user profiles
  • Affords the organization a means of automatically controlling and eliminating/disabling unused user profiles

IBM i In-active users management

IBM i Security Session Timeout

A flexible policy for forcing session timeouts in native green screen application sessions

Architecture

Management of session timeout events through a proprietary system of users and groups and operating system parameters

Highlights

  • Different session timeout criteria for different user groups (as opposed to "one size fits all" option provided in the operating system)
  • System defaults for users without specific definitions
  • Specification of specific idle time
  • Specification of action to take when timeout occurs
  • Optional sending of messages to the system administrator

Organizational Benefits

  • Allows the organization to easily implement important security best practices, which would otherwise be highly time consuming tasks
  • Meeting of regulatory compliance requirements (GDPR and others) 

IBM i Session Timeout

Enforcive Alert Center

Rich and unique system of alerts, following a wide range of IBM i system conditions and events. Alert delivery can take a number of different forms including email, on screen display and others

Architecture

  • Alerting of a variety of events including authorized and unauthorized access at exit point level, compliance checks, system health checks, database field changes, message queue messages and system journal events
  • Handling of collected event information by the IBM i or by windows based alert handler
  • Events covered: Exit point, system journal, file journal, message queues, Policy Compliance Manager deviations, SQL Statements

Highlights

  • Granular condition definition. Alerts can be conditioned from general to highly specific triggering criteria, such as specific SQL statements or FTP sub-functions on a specific library or file
  • Multiple alert actions including email, writing to windows event log, displaying on screen, SNMP traps and output to syslog
  • Multiple pro active alert actions including calling a program, disabling a user profile, changing user authority etc
  • Database field value change alert

Organizational Benefits

  • Automatic alerting of breeches
  • Fast reaction to security incidents
  • Automatic blocking of suspicious users
  • More control of events in the system
  • Meeting of regulatory compliance requirements

Enforcive Security Alert

Enforcive Security Alert    Enforcive Security Alert

Enforcive Report Generator

A tool for the creation of a wide range of security and audit reports

It contains a number of different report templates that define the type of information to display/print and can be tailored to the information and format you require

It incorporates report management features to run, schedule and view the reports created

Architecture

  • Combination of on-the-fly processing and use of information collected previously by Enterprise Security
  • Define reports in the GUI that run natively on the IBM i 

Highlights

  • Group definitions using report groups
  • Column selection and filtering
  • Scheduling and manual operations
  • Main selection criteria tailored to report type
  • Flexible filtering on all fields
  • Option of defining SQL manually, bypassing the wizard
  • Various export formats including Office(HTML), CSV and PDF
  • Report types include : Application audit,Administration audit,Alerts,Compliance, Custom files etc.
  • Reports can be defined to run across multiple servers/lpars
  • More than 200 predefined reports
  • Automatic send by email option
  • Pre and post run exit point to call 3rd party program

Organizational Benefits

  • Avoids the need to code/write custom reports
  • Saves time and money
  • Satisfies Auditor requirements

IBM i Enforcive Report Generator

IBM i Enforcive Report Generator

IBM i Enforcive Report Generator

 

 

IBM i Security, Tools, development, Change Control and Support 

KDP Software Limited Tel: +44(0)845 0604123

Ask a question
1000 characters left