CA has released three identity and access management (IAM) solutions that help ensure the integrity and security of critical mainframe business assets, enabling customers to reduce risk and demonstrate compliance with regulations while streamlining core user administration tasks.
The new releases of eTrust CA-ACF2 Security, eTrust CA-Top Secret Security, and eTrust Cleanup deliver strong, automated internal controls that simplify the management of users and their access rights for the z/OS environment. They also provide comprehensive reporting and auditing capabilities required to maintain compliance with regulations such as Sarbanes Oxley, HIPAA, Basel II and Canada's PIPEDA.
The three products are integrated components of CA's portfolio of IAM solutions, which enable customers to improve IT efficiency, reduce IT costs and enhance user productivity by centrally managing users and their access to assets across platforms and environments. Customers can view consolidated cross-platform security events for enhanced auditing and compliance and to ensure faster response to security risks and incidents.
eTrust CA-ACF2 Security and eTrust CA-Top Secret Security protect mainframe data sets from unauthorized access. eTrust Cleanup automatically identifies and removes obsolete, unused and rogue user IDs and access rights.
Key enhancements in eTrust CA-ACF2 Security r9 and eTrust CA-Top Secret Security r9 include:
- More robust and granular security controls including support for longer passwords, making it easier to implement a single, consistent password policy across the enterprise.
- Enhanced security auditing, enabling more granular reporting on Multilevel Security (MLS) data sets or resources including reports based on user security classification level or by access type.
- Automated performance reports and statistical gathering, enabling administrators to quickly assess the impact of new security controls on system performance.
Enhancements to eTrust Cleanup 2.2 make it easier to run consolidated reports including reports based on a single logon ID, an entire resource class, and/or all user IDs and profiles within a department, division or zone. In addition to eTrust CA-ACF2 Security and eTrust CA-Top Secret Security, eTrust Cleanup is now also available for IBM's Resource Access Control Facility (RACF).