Security

AIX Security Guide
This book provides system administrators with information about user, group, file, system and network security for the AIX operating system. It is the central reference point for both overview and detailed security information.

IBM eServer Security planner
The IBM eServer Security Planner will ask you some basic questions about your business environment and security goals. Then, based on how you answer, the planner will provide you with a list of security policy recommendations that you can use to begin protecting your operating system resources right away.

Tips on Documenting Your Security and Other IT Processes (link resides outside of ibm.com)
This article provides some tips for documenting processes and will provide some help in passing your next audit. This is the first in a two-part series.

Document Structure for Audits (link resides outside of ibm.com)
Out of standards comes a process that documents the steps a user must go through to get all of the necessary approvals, as well as the steps administrators go through to process the request. An examination of how this document should be structured.

LPAR security on POWER5 processor-based systems
Securing a system is a trade off between flexibility and security. The IBM POWER5 systems core function provides a robust platform with strong hypervisor controls on the separation of partitions from one another. The optional components of the POWER5 systems provide additional functionality and flexibility to virtualize devices, dynamically move resources. Each of these functions affects the security posture of the system.

AIX 5L Version 5.2 Security Supplement
This Redbook provides additional detailed information about virtual private networks (VPN), Kerberos security, the use of secure remote commands (RCMDS) and pluggable authentication modules (PAM), as well as examples of how to restrict users.

pSeries Security - Building on Strength (link resides outside of ibm.com)
Read this article for an overview of the major elements of AIX security.

Strengthening AIX Security: A System-Hardening Approach
This paper provides a baseline of AIX security for system administrators and offers guiding principles to help you begin securing your system.

Get the latest version of OpenSSH for AIX
Why use OpenSSH? When you're running over insecure public networks like the Internet, you can use the SSH command suite instead of the insecure commands telnet, ftp and r-commands.

Introduction to Security in a CSM 1.3 for AIX 5L Environment
This IBM Redbook contains information about the first official release of the new clustering software IBM Cluster Systems Management (CSM) on AIX 5L Version 5.2, including a complete set of base security functions based on IBM host-based authentication (HBA) and offered through an abstraction layer in the CSM software.

Is Your AIX Environment Secure?
This article addresses common security problems in UNIX environments.

OpenSSH is now bundled with AIX
OpenSSH is a free software tool that supports SSH1 and SSH2 protocols. Now it's easy to get OpenSSH already compiled and ready to install on AIX.

Logical Partition Security in the IBM pSeries 690
The purpose of this white paper is to address security concerns related to logical partitioning by providing an overview of the pertinent design aspects of LPAR technology on pSeries.

Configuring the AIX Security Subsystem to Use IBM's SecureWay Directory (LDAP)
This white paper provides an overview of the mksecldap command, which sets up an AIX cluster that consists of one or more servers and one or more clients that use the SecureWay Directory (LDAP) for security authentication and user and group management.

Configuring an AIX Client System for User Authentication and Management Through LDAP
This paper focuses on configuring AIX systems as clients of directory servers, both IBM Directory servers and third party LDAP (Lightweight Directory Access Protocol) servers.

Configuring an IBM Directory Server for User Authentication and Management in AIX
The goal of this paper is to provide details about configuring IBM Directory Server to support user authentication through LDAP.

Additional AIX Security Tools on IBM eServer™ pSeries, IBM RS/6000 and SP/Cluster
This Redbook describes additional tools and techniques you can use to enhance the security of your pSeries environment.

Using LDAP for Naming Services in AIX
This white paper explains the NIS_LDAP naming service and how to configure AIX systems to use it.

Improving the Security of Open UNIX Platforms
This article takes a look at a shell application that uses an innovative approach to increasing open UNIX security. A step-by-step analysis of the code is provided.