zSecure Admin enables you to automate time-consuming IT security management tasks by quickly identifying, analyzing, and preventing problems in IBM RACF. You can also monitor privileged users to help ensure old accounts are properly deleted and products have been integrated appropriately. zSecure Admin integrates smoothly with zSecure Audit for end-to-end monitoring and remediation.
zSecure Admin can administer multiple systems with a single application interface. You can compare profiles, efficiently merge security rules from different databases, or rename IDs within the same database. When merging profiles from different databases, zSecure Admin performs extensive consistency checks and reports potential conflicts before generating commands, helping ease the burden of consolidation efforts ad compliance automation.
For network access control, zSecure Admin provides capabilities for reporting on actual usage of profiles and authorizations and relates that to the information defined in the current RACF database. This highlights profiles and authorizations use in production, exposes user-to-resource relationships, and identifies unused or obsolete profiles and authorizations in access control lists.
Automate recurring administrative tasks such as password resets, password authority delegation, old account management, and user, group, resource application, or database movement between systems.
Merges security rules from different databases quickly and efficiently. Copies or moves users, groups, applications, or whole databases between systems. Keeps multiple RACF databases synchronized.
Generates commands to clean databases. Reviews commands to confirm cleanup actions do not affect definitions that must be retained. Increases system security by removing obsolete profiles.
IBM zSecure Admin enables the automation of recurring, time-consuming administrative security tasks. You can delegate password reset authority to staff, resume a user and grant specific accesses without granting full administrative privileges. This capability enables frequently requested user support tasks to be managed by the support staff closest to the user, freeing up your senior security personnel for mission-critical tasks.
Compare profiles and efficiently merge security rules from different databases using zSecure Admin. You can copy or move users, groups, resources, applications, or whole databases between systems and rename IDs within the same database. When merging profiles from different databases, zSecure Admin performs extensive consistency checks and reports potential conflicts before generating commands, helping ease the burden of consolidation efforts.
Quickly identify and analyze problems in IBM RACF to minimize threats, such as missing or inconsistent definitions, enabling you to fix or prevent mistakes before they become a threat to security and compliance. You can also monitor privileged users to help ensure old accounts are properly deleted and products have been integrated appropriately. zSecure Admin integrates smoothly with zSecure Audit for end-to-end monitoring and remediation.
zSecure Admin provides capabilities for reporting on actual usage of profiles and authorizations and relates that information to the information defined in the current RACF database. This helps you to understand how profiles and authorizations are being used in production, while also providing user-to-resource relationships. Identify unused or obsolete profiles and authorizations in access control lists, as well as potential identity governance issues due to over-entitlement.
zSecure Admin can administer multiple systems with a single application interface. The offline function can be used in a variety of circumstances, such as combining workloads from newly acquired companies or providing a simulated environment to aid in release-to-release RACF migrations.