Securing the IBM Spectrum Protect server
Secure the IBM Spectrum® Protect
server and data by controlling access to servers and client nodes, encrypting data, and maintaining
secure access levels and passwords.
Security concepts
You can protect IBM Spectrum Protect from security risks by using communication protocols, securing passwords, and providing different access levels for administrators.
Managing administrators
An administrator who has system authority can complete any task with the IBM Spectrum Protect server, including assigning authority levels to other administrators. To complete some tasks, you must be granted authority by being assigned one or more authority levels.
Managing command approval
You can enable command approval to require an approval administrator to authorize restricted commands before they run.
Changing password requirements
You can change the minimum password limit, password length, password expiration, and enable or disable authentication for IBM Spectrum Protect .
Securing IBM Spectrum Protect on the system
Protect the system where the IBM Spectrum Protect server runs to prevent unauthorized access.
Protecting the storage environment against ransomware
Storage environments that are connected to the internet can be the target of ransomware attacks. You can take steps to help protect your storage environment against ransomware and help ensure that you can recover your servers and clients if an attack occurs.
Securing communications
Your data and passwords are more secure when they are protected by using Secure Sockets Layer (SSL) or Transport Layer Security (TLS), a form of SSL.
Authenticating IBM Spectrum Protect users by using an LDAP server
Within an IBM Spectrum Protect system, users must authenticate to the server by providing a user ID and password. If your organization uses a Lightweight Directory Access Protocol (LDAP) server to manage user IDs, you can use the LDAP server to authenticate IBM Spectrum Protect user IDs.