 |
|
|
|
 |
Guardium for Mainframes Database Auditing Solutions |
|
|
Guardium for Mainframes FAQ
Q: What does Guardium for Mainframes do?
A: Guardium for Mainframes is a database activity monitoring solution for databases running on IBM mainframe servers. It allows you to define flexible audit policies and gives you visibility into activities occurring on your database. With Guardium for Mainframes, you know who is accessing data, what your privileged users are doing, and when anomalous accesses are attempted. The product includes integrated workflows, reporting, investigation, and compliance features to provide a comprehensive database auditing solution.
Q: What are the minimum requirements?
A: Guardium for Mainframes runs on IBM z/OS version 1.6 or later. It supports DB2 versions 7 and 8 and requires IBM TCP/IP version 3.1 or later to support communications between the mainframe and the Z2000 appliance.
Q: Do I need to change any application configurations to have my apps audited by Guardium for Mainframes?
A: No. Guardium for Mainframes monitors activity going through the database server on the mainframe. No changes to any database, application, or operating system configuration are required. This includes all custom applications as well as common third-party packaged solutions like ERP or CRM applications.
Q: I run several LPARs, each with its own DB2. Can Guardium for Mainframes monitor activity on that kind of environment?
A: Yes, and you could do it a couple of different ways. You’ll need to start a Z-TAP agent on each LPAR, but then you could either have the Z-TAP agents communicate with a single appliance, or each Z-TAP could communicate with its own appliance. In Guardium’s hierarchical architecture, multiple appliances then feed a Central Server, which aggregates the data to provide a single, unified view for all of the databases in an enterprise.
Q: What kind of trace information is captured by Guardium for Mainframes?
A: Guardium for Mainframes can capture as much information as you care to analyze and retain. Information is captured about every SQL statement so you can monitor when insertions, updates, and deletions occur, as well as capturing identity information, timestamp information, and the network address of the person making the change. Before and after images can be captured as well (however, binary data is not retained for BLOB columns).
Q: Does Guardium for Mainframes send all of the trace information available to it onwards to the appliance?
A: No. The lightweight mainframe-based agent intelligently applies rules to limit the data sent to the appliance so that performance is optimized while still capturing all data needed to enforce an audit policy. Your audit policy settings directly affect the data volume sent from the mainframe to the Z2000 appliance.
Q: Where does the audit data get stored and how can we access it?
A: Collected data is securely stored on the Z2000 appliance or aggregated to the Central Server and is accessed by running reports through the Guardium interface. Product features are available to help you with forensic analysis in the event of a breach and there are ways to export raw SQL from the repository.
Q: This FAQ didn’t answer my question. What do I do?
A: If you’re already a Guardium for Mainframes customer, there’s a good chance the answer is in the product documentation. If you’re not yet a Guardium for Mainframes customer and want to know more about how the product can secure your data and help you pass audits, contact a NEON sales representative. Email sales@neonesoft.com or call 888.338.6366 or 281.491.6366.
|
|
|
|
|
|
|
For more information
about Guardium for Mainframes, please call 1.888.338.6366 or email us. |
|
|
