ActivIdentity SecureConsole

Powerful role-based access and accountability for NetWare servers

ActivIdentity SecureConsole™ is a powerful Novell® Netware® console security application that adds the highest level of control and accountability to NetWare servers.

Organizations decide which console resources administrators and help desk personnel have access to. Access rights can be assigned for individual screens (e.g. Server Console, Backup screen, NDPS® Manager screen etc.) or commands (e.g. Monitor, NWConfig, DSRepair etc.).

File server access levels can be easily set to meet the needs of each organization. A new level of control and security is implemented, allowing administrators to control which users have administrative rights to grant and revoke console access. Even users with NetWare administrator privileges can be prevented from circumventing security.

Benefits

Role Based Access

SecureConsole enables enterprises to decide which console resources administrators and helpdesk personnel can access. SecureConsole also provides enterprises with the ability to assign individual screens or commands rights to specific users.

Leverages the Power of Your Corporate Directory

SecureConsole leverages an organization’s existing infrastructure investment by providing directory-enabled access to the NetWare® console. SecureConsole forces end-users to identify themselves to the Directory (NDS or eDirectory) before being granted access to the NetWare console.

Comprehensive Auditing

One of SecureConsole's strongest features is its ability to audit the system console, as well as the Novell NLM™ activities conducted by end-users, for full accountability. Auditing can be defined by user or resource and includes a complete range of auditing parameters.

Reduced Risk of Open Console Sessions

SecureConsole features system console auto-locking and screen saver functionality which reduces the risk of unauthorized access by locking the server console after a determined period of time.

Novell Audit integration

Fully integrated with Novell Audit, SecureConsole delivers system-wide centralization of console audit logs, as well as comprehensive real-time monitoring of console activity.

Novell BorderManager® integration

Integration with the Novell BorderManager ICSA Compliance Toolkit ensures that enterprise NetWare consoles are not vulnerable to external attack. Benefit from strong return on network security investment and seamless protection of network and related resources.

Secure Remote Console Access

With SecureRemote, an administrator c an simultaneously single sign-on to multiple servers using IP and/or Novell IPX™, allowing secure and fast connections to the network server without needing to re-enter login details.

Full Disaster Recovery

SecureConsole can provide secure console access even when NDS or eDirectory is down or unavailable. This ensures business continuity, even in cases of otherwise catastrophic directory failure.

Features

Administration

• Full integration with Novell® eDirectory™/NDS® security
• Centralized and decentralized management
• Management via ConsoleOne®, NWADMIN, or SCADMIN Console administration tools
• Application-layer security to separate NetWare administration from SecureConsole administration.
• Remote server down and hardware restart capability
• Automated routine console tasks across multiple servers
• Console Security Configuration: SecureConsole provides over 70 configurable parameters to provide administrators the flexibility to control exactly how SecureConsole behaves

Controlled Security Resources

• Full integration with Novell BorderManager® ICSA toolkit
• Novell® BorderManager administration access.
• Console screens and commands
• Novell NLM™ API access (like burglar and other hacker NLMs)
• Remote console commands and console APIs
• Internal debugger and clear connections control
• Server SET command and API control
• Local drive file access
• Individual end-user file system access to NLMs

Console Identification

• Identification applied via eDirectory/NDS usernames and passwords
• Full integration with Novell SecureLogin and NMAS™ for biometric, smartcard, token and passticket support
• Hardware password token and emergency user password functionality
• Limited use access passwords functionality (for temporary staff or one-time access)
• Built-in timeout and auto logoff capability

Auditing

• Full integration with Novell Audit.
• Storage of audit data centrally or locally as a signed file, eDirectory/NDS or in 3rd party auditing systems
• Flexibility in audit reporting
• SNMP-based alerting

Server events looged for auditing

• User console command activity
• User API access from console activity
• User file system activity from console
• User DOS activity from console
• User console access
• Attempts to execute 'dangerous' console commands

SecureRemote

SecureRemote is a companion product to SecureConsole and is designed specifically to eliminate repetitive remote console tasks.

• Enable administrators single sign on access to multiple servers simultaneously
• Use as a secure alternative to the following: Rconsole, Rconj, Novell Portal Services, HP® and Compaq® hardware management boards
• Eliminate JRConsole security exposures with built-in "across the wire" encryption
• Directory-enable enterprise console access to perform multiple console tasks such as DSTRACEs, file transfers, and console based software installations across multiple servers simultaneously
• Remotely manage enterprise servers from anywhere with both Novell IPX™ and IP encrypted connectivity
• Provision remote server shutdown with either soft or hard secured reboot from the desktop - even if the console prompt has disappeared.
• Audit which users remotely access the console (by name, workstation address and time)

Authentication for Novell Networks

• NMAS Method
• SecureConsole