| Customer-Administered Products |
|
|
|
 |
| Description |
|
Security Services: Customer-Administered Products
Customer-Administered Products are software that provide additional computing security over SDC-provided controls, or products that simplifie the administration of access controls in a computing environment.
Security administration products are used by customer organization staff with security and access control responsibilities to fulfill their administrative duties. They are typically used to:
- Set up new users
- Reset passwords
- Group users with similar access needs
- Define access to data and resources
- Monitor unauthorized access attempts
Anti-Virus products are needed by customers to prevent the spread of infected files or data coming into the environment through customer workstations. Typically these have a client-server configuration where new anti-virus signatures are downloaded to workstations from servers.
The major customer-administered security products that the SDC supports are:
Product name
|
Vendor
|
AIX
|
Linux
|
Novell
|
OS/400
|
Windows
|
Z/OS
|
Access Control Server for Windows
|
Cisco
|
|
|
|
|
X
|
|
ACE (Secure-id) - Detect IT
|
R S Ace
|
|
|
|
X
|
X
|
|
Active Directory
|
Microsoft
|
|
|
|
|
X
|
|
Ad-Aware
|
Lavasoft
|
|
|
|
|
X
|
|
Administrator/Advisor
|
Vanguard
|
|
|
|
|
|
X
|
Border Manager
|
Novell
|
|
|
X
|
|
|
|
Bsafe
|
Bsafe Information systems
|
|
|
|
X
|
|
|
Cisco Security Agent Mgmt Center
|
Cisco
|
|
X
|
|
|
|
|
Client Access/400
|
IBM
|
|
|
|
X
|
|
|
eDirectory
|
Novell
|
|
|
X
|
|
|
|
ENTERPRISE SECURITY
|
TRUSECURE
|
X
|
|
|
|
|
|
GWAVA (Groupwise AntiVirus Agent)
|
Beginfinite
|
|
|
X
|
|
|
|
Inoculan Antivirus
|
CA
|
|
|
|
|
X
|
|
iSeries Access
|
IBM
|
|
|
|
X
|
|
|
McAfee AntiVirus
|
McAfee
|
|
|
|
|
X
|
|
Netsentinal Server Security
|
Rainbow Technologies, Inc.
|
|
|
|
|
X
|
|
Password Setting
|
Dell
|
|
|
|
|
X
|
|
PSDetect (I-series security)
|
NetIQ
|
|
|
|
X
|
X
|
|
RACF
|
IBM
|
|
|
|
|
|
X
|
RSA Ace
|
RSA Security Inc.
|
|
|
|
|
X
|
|
Security Agent Mgmt Center
|
Cisco
|
|
X
|
|
|
|
|
Security Manager
|
NetIQ
|
|
|
|
X
|
X
|
|
Security Server Administrator
|
Unicom System Inc
|
|
|
|
|
X
|
X
|
TACACS+ Access Control
|
Cisco
|
|
X
|
|
|
|
|
Tivoli Identity and Access Manager
|
IBM
|
X
|
|
|
|
|
|
(See Appendix A for additional security products)
|
|
|
| SDC Responsibilities |
|
- Acquire product and manage licenses and license compliance
- Install on SDC-managed hardware platform with a basic configuration and test for basic operation (i.e., startup, shutdown, exercise toolbars and major commands)
- Maintain current product release levels[1]
- Perform any configuration tasks that require administrative privileges (e.g., global sysadmin, SYSTEM)
- Manage administrator privileges and administrator access
- Define and manage any associated log and archive files (e.g., monitor space; appropriately secure; extract customer-specific messages in a shared environment on request)
- Monitor, troubleshoot, and tune environments for optimum performance and availability
- Consult with vendor technical support staff to escalate issues that cannot be resolved internally
- Notify customers of requested customer and SDC upgrades and changes
- Patch and upgrade products
[1] SDC policy on supported software versions will be developed at a later time
|
|
|
| Customer Responsibilities |
|
- Determine customer security requirements for information residing within and transmitted through the SDC-managed WAN
- Determine which products will be used and determine which users will have access to the products selected
- Configure the product for customer use were such configuration does not require administrative privilege on the system
- Define user and groups
- Manage all administrative functions involving normal user accounts, workstations, printers, peripheral, objects, policies, access and rights
- Review content of logs and reports that show unauthorized or suspicious activity
- Perform impact analysis of proposed changes on the customer’s applications and end-user commitments
- Test new functions and capabilities prior to general release to customer end-users
- Coordinate schedules of upgrades and product releases so that important customer activities (e.g., application rollouts, application upgrades, training sessions or live service) are not affected by the changes
- Define data security, storage, and backup and reorganization requirements associated with the use of this product
|
|
|
| Who to Call |
|
Your account manager can help answer any questions you have about this service, contact the SDC Service Desk at (503) 373-1000 or e-mail SDC Service Desk.
What to ask for:
-
Assistance with security administration
-
Anti-Virus filtering
-
Troubleshooting access control
|
|
|
| Other |
|
Service Levels:
Service levels to be provided in later revisions of this document.
Special Change Management Procedures:
None
.
Related Policies:
None
Revision History:
Draft - June 18, 2007
|
|
|
|
