SSO Iraje Solution for Datacentre

50 %
50 %
Information about SSO Iraje Solution for Datacentre
Business-Finance

Published on October 20, 2008

Author: asiatecdistribution

Source: authorstream.com

Slide 1: © Iraje. All rights reserved. Iraje – SSO Enterprise Datacenter Security Vision : © Iraje. All rights reserved. To comprehensively secure sensitive information assets at security conscious Bank/Financial/Multinational Organizations to emphatically meet regulatory compliance such as SOX, PCI, HIPAA & GLB and prevent corporate data fraud with vault security while revolutionizing Datacenter efficiency Vision Compliance : © Iraje. All rights reserved. SOX (Sarbanes Oxley) – Assure accuracy of Financial Information and Disclosure PCI (Payment Card Industry Security Audit Procedures) – Cardholder Data must be protected at all times HIPAA (Health Insurance Portability & Accountability Act) – Health Information Data must be protected GLBA (Gramm-Leach Bliley Act) – Financial Institutions must protect personal information collected about individuals Implication - All the laws have a common requirement: Strict Access Controls, Audit and Storage of privileged level accounts and passwords Compliance Iraje Solution : © Iraje. All rights reserved. Access Audits Access Controls Password Management Script Management Iraje Solution Access Audits : © Iraje. All rights reserved. Full Audit of SSH sessions on Unix/Linux Full Audit of Telnet sessions on Unix/Linux/Windows Full Audit of SSH/Telnet sessions on Routers (Cisco, Juniper, other CLI) Access Audit of RDP sessions on Win2k, Win2k3 Auto password-feed support for su, rlogin, sftp/ftp, “ssh –l” BI interface for Access LOG analysis Access Audits Access Controls : © Iraje. All rights reserved. Proxy based access as per granted privileges Command Restrictions: Standard command restrictions such as “passwd”, etc. User Configurable unlimited command restrictions Role Based Access Controls (RBAC) Template based User Provisioning Template based Server/Router Access Provisioning Access Controls Password Management : © Iraje. All rights reserved. Password Storage in Secure Encrypted Password Vault Password Change (Unix/Linux/Windows): Triple level authorization for change password, group based Complex 12 digit password generation Time based (30-60 days) password change trigger Change password for Server groups (same password) “Change Password As” - for dependent command line executables Change Password support for Tasks/Services on Windows Electronic Password Seal/Open Dual level authorization for open password, access based Time based password authorization (for a pre-determined time-span) Password Management Password Management : © Iraje. All rights reserved. Password backup: Sealed in PIN mailers User/Server/Router Provisioning: Template based User Provisioning Template based Server/Router Access Provisioning Password Management Script Management : © Iraje. All rights reserved. Run scripts on Servers/Routers obtaining passwords from the Password Vault Scheduler for script execution (one-time, regular intervals) Script Management tool for editing/saving into vault Centralized audited script execution (replacement of server based Cron) Resilience in script execution: multiple agent/machine architecture for script execution Script Management Q & A : © Iraje. All rights reserved. End Q & A Contact Me.At 97342622Mr. ChenReferral Solutions for DatacentreSecurity SSO Global Management : © Iraje. All rights reserved. Contact Me.At 97342622Mr. ChenReferral Solutions for DatacentreSecurity SSO Global Management

Add a comment

Related presentations