| |
|
|
BoKS Access Control for Servers — Key Values
The following benefits are supported with ONE FoxT Agent installed on your servers:
Centralized Access Management and Single Sign On Experience
- Knowledge of the user's role, and what server he or she is attempting to connect to before a session is established proactively secures your infrastructure
- Tracking of activities across your IT infrastructure
- Centralized logging of all sessions
- Avoid sharing administrator passwords with policy-driven password prompting for access to administration accounts; uses the user's OWN password, not the administration account
- Where allowed, a SSO experience across your infrastructure for your IT operations staff
Unified Access Control Across Your Diverse Server Environment
Using a common infrastructure across your server environment greatly simplifies both day-to-day administration and IT audits. FoxT's BoKS Access Control for Server Agent is available for all major UNIX, LINUX, z Series LINUX, and Windows Servers, including virtualized infrastructures from HP, IBM, SUN, and VMWARE.
Secure Communications, Delegation and Monitoring
- Positive enforcement of Secure Communications policies requiring SSHv2
- Granular policy choices (e.g. the user can securely login, but cannot transfer files)
- After login, tight control of which system commands may be executed
- Based on your access control policies, you can apply session-specific keystroke logging
- An effective migration path for organizations that use SUDO extensively, but are finding its administration overhead too large
Automate Your Data Center - Without Turning Off Your Auditor
Even for environments using freeware Secure Communication (SSH) products, auditors are requiring host-to-host automatic command execution to be turned off. This can frustrate your attempts to automate and streamline data center operations, and prevent you from running batch operations at times when processing loads are low. FoxT solutions provide dynamic access to central security policies (in the BoKS Manager). This enables organizations to turn host-to-host command execution functions back on, and continue to pass IT Operations audits.
|
|
|
