IBM zSecure Manager for RACF z/VM

Execute queries in seconds and implement mass changes with less administrative overhead.

Read and update the RACF database directly from an OS-formatted disk or a copied or unloaded RACF database. Answer questions such as: “Who has access to this file?” and “Which system special users have not changed their passwords?” Analyze System Management Facility (SMF) information from the live SMF data or from archived SMF data. View information using live data interactively almost immediately after an event has occurred.

Identify RACF problems on the z/VM operating system, such as missing or inconsistent definitions, enabling you to fix or prevent mistakes before they become a threat to security and compliance. Monitor privileged users to help ensure that old accounts are properly deleted and that products have been well integrated, helping to avoid vulnerabilities that can be exploited by other users.

A short list of report capabilities include: generating reports in XML format, importing report data into databases and reporting tools, viewing data with Microsoft Internet Explorer or Microsoft Excel, allowing managers to view, sort and annotate audit reports and producing reports centrally for automatic distribution to decentralized groups.

Copy or move users, groups, resources, applications, or whole databases, and rename IDs within the same database. Produce reports in email format daily, on a custom schedule, only when specific events occur, or when there is a security breach. Modify displays and reports using CARLa Auditing and Reporting Language (CARLa).

Filter external supplementary information from existing data sources and corporate applications (such as unit, department, and personnel data) and present it alongside the technical data from z/VM and IBM RACF in automatically generated reports.