Quick-EDD/CTL is delivered with an extensive Rules Library which allows companies to develop a complete access control policy with only minor adjustments, as 95% of the needs are met by the templates
If necessary however, it is possible to rewrite the settings of the control engine entirely to adapt it to your security policy. Additional models are available for the main ERPs on the market.
STANDARD CONTROLS: - Log of any connection outside business hours.
- Log of standard profiles and profiles with extensive authority.
TELNET :
- Authorise connections according to combinations of IP Address Range/ Device Name.
FTP et ODBC : - Automatic detection of DB2 or IFS codification.
- Authorise combinations User / Library / Object Name / Type of Access
There are two types of authorization: without leaving a trace in the log, or by leaving a trace in the log for the events you consider sensitive.
Remote command (FTP, ODBC, DDM):
- Authorise combinations User / Command / Parameter Value (with or without log).
IFS :
- Authorise external access depending on the user, access type and path.
- Control 5250 access (WRKLNK) according to the same rules.
DFU :
- Obligation to qualify the file library.
- Authorise DFU on test libraries - Authorise only some profiles to production libraries, it is recorded in the log and an email is sent to the ISSM.
SQL :
-For all jobs running a SQL query on sensitive files, all the
statements run are logged. An email is sent to the ISSM for
updating queries (UPDATE, DELETE).
authority.