IBM i Security Session Timeout

A flexible policy for forcing session timeouts in native green screen application sessions

Architecture

Management of session timeout events through a proprietary system of users and groups and operating system parameters

Highlights

• Different session timeout criteria for different user groups (as opposed to "one size fits all" option provided in the operating system)
• System defaults for users without specific definitions
• Specification of specific idle time
• Specification of action to take when timeout occurs
• Optional sending of messages to the system administrator

Organizational Benefits

• Allows the organization to easily implement important security best practices, which would otherwise be highly time consuming tasks
• Meeting of regulatory compliance requirements (GDPR and others) 

Enforcive Alert Center

Rich and unique system of alerts, following a wide range of IBM i system conditions and events. Alert delivery can take a number of different forms including email, on screen display and others

Architecture

• Alerting of a variety of events including authorized and unauthorized access at exit point level, compliance checks, system health checks, database field changes, message queue messages and system journal events
• Handling of collected event information by the IBM i or by windows based alert handler
• Events covered: Exit point, system journal, file journal, message queues, Policy Compliance Manager deviations, SQL Statements

Highlights

• Granular condition definition. Alerts can be conditioned from general to highly specific triggering criteria, such as specific SQL statements or FTP sub-functions on a specific library or file
• Multiple alert actions including email, writing to windows event log, displaying on screen, SNMP traps and output to syslog
• Multiple pro active alert actions including calling a program, disabling a user profile, changing user authority etc
• Database field value change alert

Organizational Benefits

• Automatic alerting of breeches
• Fast reaction to security incidents
• Automatic blocking of suspicious users
• More control of events in the system
• Meeting of regulatory compliance requirements

Enforcive Report Generator

A tool for the creation of a wide range of security and audit reports

It contains a number of different report templates that define the type of information to display/print and can be tailored to the information and format you require

It incorporates report management features to run, schedule and view the reports created

Architecture

• Combination of on-the-fly processing and use of information collected previously by Enterprise Security
• Define reports in the GUI that run natively on the IBM i 

Highlights

• Group definitions using report groups
• Column selection and filtering
• Scheduling and manual operations
• Main selection criteria tailored to report type
• Flexible filtering on all fields
• Option of defining SQL manually, bypassing the wizard
• Various export formats including Office(HTML), CSV and PDF
• Report types include : Application audit,Administration audit,Alerts,Compliance, Custom files etc.
• Reports can be defined to run across multiple servers/lpars
• More than 200 predefined reports
• Automatic send by email option
• Pre and post run exit point to call 3rd party program

Organizational Benefits

• Avoids the need to code/write custom reports
• Saves time and money
• Satisfies Auditor requirements