
Solutions	\| User provisioning \| Job scheduling \| \| Output management \| \| Operations workflow management \| Security \|
Products	\| COSuser \| COSbatch \| COSprint \| COSduty \| \| OSM toolset \| Secure shell auditing \|
Customer service	\| Support and maintenance \| Education and training \| \| Consulting \|
Resource library	\| Datasheets and brochures \| White papers \| Case studies \| \| Article reprints \| Presentations \| Demo software \| \| Press releases \|
Partners	\| Already a partner \| Become a reseller \| \| Locate a partner \| Technology partners \|
About OSM	\| Our company \| Our customers \| Contact us \| \| How to find us \| Employment \| \| Legal information \|


	home \| contact \| COSuser \| COSprint \| COSbatch

Manage, monitor and audit privileged (sysadmin) users in a distributed systems environment

Thank you for taking a moment to look at our advice about controlling and recording the activities of your privileged system administration users. In the absence of such facilities, IT managers have no evidence to show that they are fulfilling their information protection obligations that flow from their organization's responsibility to comply with recent legislation on corporate governance.

There are two white papers whose titles are:

They cover similar ground from different points of view, so choose the one that would appear to suit your situation best.

If you click on the titles (above) or the images (below), the next page will be a short form containing, most importantly, a space for your email address to which we shall send a link to the document itself.

White paper: Controlling privileged use in a distributed systems environment, while producing a positive Return on Investment ("RoI")

White paper: Protecting your investment in systems administration skills in a distributed systems environment

Abstract

The recent spate of legislation in both the Americas and Europe, such as Sarbanes-Oxley and the European Directives, has made compliance a big issue for publicly listed companies. In certain cases such legislation also affects privately held companies who conduct business with the listed sector. The essential requirement of the legislation is to protect the integrity of the financial information that is provided to the public, or at least to show due diligence in attempting to protect it. It is difficult to prove this when privileged users, typically administrators, have unlimited access rights to critical IT systems.

This white paper describes a method of ensuring that the use of privileged accounts is reduced to the absolute minimum by:

encapsulating the majority of privileged routines in menu/forms driven procedures
enforcing administrators to request privileged sessions on particular systems for particular periods of time
allocating only that subset of commands required to carry out a requested function
auditing all activity and reporting on those audit trails

There is a major commercial benefit in that encapsulated routines can be delegated in a controlled, audited manner to less technically aware staff to perform.

Abstract

Too often, end user organisations spend large sums of money on contracted, skilled systems administration staff only to find that the knowledge they bring to the site disappears with the contractors when they leave.

This white paper describes a method of encapsulating that knowledge in software so that best practice, developed during their stay, continues to be carried out after they leave. Of equal importance is that the resultant encapsulated procedures may be subsequently carried out by relatively unskilled personnel, with full auditing and control of their activities.

The result is:

the encapsulation of procedures to ensure best practice and policy enforcement
the reduction in dependence on skilled systems administrators
the reduction in operations costs by delegation of complex procedures to less skilled personnel
the reduction in operational errors due to enforced standards
greater job satisfaction for skilled technicians who are released from routine housekeeping tasks
service level accountability through auditing of all duties
improved security