Skip to main content

IBM Systems  >   System p  >   Operating systems  >   AIX  >   Security >

IBM Tivoli Access Manager for System p

Contrary to popular belief, employees—not hackers or viruses—present the biggest threat to IT security. In fact, internal users account for the majority of cyber-theft: they know where the most valuable data resides and the times at which it is most vulnerable. Super-users of UNIX and Linux systems are traditionally exempt from access control restrictions and are often able to modify audit logs to hide their activities. Tivoli® Access Manager (TAM) for System p these common compliance audit issues by providing controlled super-user access and tamper-proof auditing, providing more secure and complaint server systems for running mission-critical applications.

TAM erects a secure perimeter around sensitive resources to restrict access regardless of a user's administrative authority. It establishes controls that even extend to administrative "root" users. TAM tracks users throughout their use of system resources and applies a comprehensive security policy to protect applications. Unlike competitive offerings, TAM provides these controls without adding the administrative burden of changing your business processes. To help you comply with audit requirements, TAM provides Persistent Universal Auditing—a secure and flexible auditing tool that maintains secure 24x7 audit logs on users, programs, files, ports, resources and systems.

Highlights

  • Defends against the top security threat that enterprises face: malicious or fraudulent behavior by internal users and employees
  • Combines full-fledged intrusion prevention-host-based firewall, application and platform protection, user tracking and controls—with robust auditing and compliance checking
  • Provides Persistent Universal Auditing to document compliance with government regulations, corporate policy and other security mandates
  • Provides best-practice security policy templates to minimize implementation effort and time
  • Delivers mainframe-class security and auditing in a lightweight, easy-to-use product

Integration with Tivoli Identity Manager extends UNIX and Linux user management by allowing UNIX and Linux identities, passwords and permissions to be managed along with those of other platforms and directories.

Availability

IBM System p is making TAM for System p available at no additional charge on all System p servers sold in the United States. Beginning in August 2006, the TAM client (agent) will automatically be pre-installed on all System p servers. The TAM server component will be pre-installed by default on all IBM System p5-570, 590 and 595 servers; pre-install of the TAM server on all other System p servers is available by request (i.e. by default it will NOT be installed). There is no additional charge to customers for this product. IBM plans to expand availability of TAM to other geographies (subject to legal restrictions).