IBM Security Guardium system

The IBM Security Guardium system can gather and report information from multiple agents running on multiple z/OS systems.

Note: In environments where multiple agents connect to a common IBM Guardium system or appliance, the z/OS agent started task names (AUIASTC, AUILSTC, AUIFSTC) must be unique. Unique started task names enable the IBM Security Guardium S-TAP for IMS policies that are pushed from the IBM Guardium system to be attributed to, and monitored by, the correct z/OS agent.

IBM Security Guardium system components

The IBM Security Guardium system:

Provides the user interface, which processes requests and displays the resulting information.
Enables you to create collection policies, which specify the types of data to be collected by the agent.
Stores the collected data.

IBM Security Guardium system and S-TAP agent communication

The IBM Security Guardium system and the IBM Security Guardium S-TAP for IMS agent communicate using a TCP/IP connection. The policies you create, using the user interface, tell the agent what data to collect. The policy specifies filter information, such as which data sets are to be monitored for data accesses.