IBM InfoSphere Guardium
IBM® InfoSphere® Guardium® products provide a simple, robust solution for preventing data leaks from databases and files, helping to ensure the integrity of information in the data center, and automating compliance controls. You can install, use, and maintain the IBM InfoSphere Guardium products on the IBM PureData® System for Operational Analytics.
Overview
- Automatically locate databases, and discover and classify sensitive information within them
- Automatically assess database vulnerabilities and configuration flaws
- Ensure that configurations are locked down after recommended changes are implemented
- Enable high visibility at a granular level into database transactions that involve sensitive data
- Track activities of users who access data indirectly through enterprise applications
- Monitor and enforce a wide range of policies, including sensitive data access, database change control, and privileged user actions
- Create a single, secure, centralized audit repository for large numbers of heterogeneous systems and databases
- Automate the entire compliance auditing process, including creating and distributing reports, and capturing comments and signatures
Installation summary
All of the information that you require to install the IBM InfoSphere Guardium products are available in the IBM InfoSphere Guardium Information Center. The following paragraphs contain information that is intended to be only a summary of the installation procedure. Important points to consider during the installation procedure are also highlighted here.
- Collector
- Database Activity Monitoring or Vulnerability Assessment: A server that collects the data sent by the Guardium S-TAP® agents that are installed on the monitored database hosts to monitor traffic and collect data. The Collector monitors and analyzes database activity to provide continuous fine-grained auditing and reporting, real-time policy-based alerting, database access controls, and is separate from the IBM PureData System for Operational Analytics.
- Central Manager/Aggregator
- A server that acts as the single point of management for the entire IBM InfoSphere Guardium deployment, and is separate from the IBM PureData System for Operational Analytics.
Guardium requires the modification of the user and group environments in the IBM PureData System for Operational Analytics environment. To ensure that the user and group environment is consistent in the IBM PureData System for Operational Analytics environment, create the users and groups before the Guardium installation. First, create the Guardium group, for example, gdmmon. Second, create a user, such as the gdmuser user, with the gdmmon group as its primary group. Finally, update the groups list of the bcuaix core warehouse instance owner to include the gdmmon group before the installation of any Guardium products. The choice of user name and group name might be dependent upon the Guardium product that is selected and might be referenced during the Guardium installation and configuration steps.
- Guardium Installation Manager Client installer is included in DB2 server products
- System Requirements for IBM InfoSphere Guardium v9.1
- Installing your Guardium system
- Installing an S-TAP on UNIX
- Introducing Guardium Vulnerability Assessment
- Guardium Installation Manager
- Important: To avoid a Guardium S-TAP agent failure to monitor database activities when either the S-TAP agent is restarted or monitored databases are unavailable, set the wait_for_db_exec configuration parameter to a value greater than 0. For more information about this parameter and how to edit the S-TAP configuration file, see:
Restartability
section in the S-TAP administration guide.- Editing the S-TAP configuration file.