DMX-3 security features
185
Data Integrity, Availability, and Protection
Symmetrix Audit Log
The Symmetrix Audit Log logs EMC maintenance activities taking
place on the Symmetrix service processor, as well as with
host-initiated actions and physical component changes. Host
commands may then be used to retrieve information from the
Symmetrix Audit Log file, using the new Auditor role (just one way to
restrict Audit Log access) specified within Solutions Enabler that
accompanies Enginuity 5772 and higher. Another critical security
feature is that logged entry contents cannot be altered.
The audit log resides on the Symmetrix file system (SFS) within the
array. Once the 40 MB capacity limit is reached, rotating log files
begin to overwrite themselves. There is no need for organizations to
maintain this file, unless they want to capture records before the
circular 40 MB space recycles. It is important to note that
organizations will need to regularly monitor and capture Audit Log
contents should they need to retain history beyond the 40 MB
capacity.
Note: Access to the Audit Log can be restricted in an open systems
environment by utilizing Symmetrix Access Control or the new user
authentication features of Solutions Enabler. Utilizing these methods, hosts
or users that have been explicitly granted access will have the ability to view
audit log entries.
RSA enVision log
security
RSA enVision supports log collection from Symmetrix. The RSA
enVision compliance and security information management platform
consolidates and analyzes enterprise-wide security logs from sources
such as firewalls, access controls, servers, applications, and storage
devices. The platform then correlates events to identify hacker attacks
or other security threats, and generates reports for compliance with
regulatory requirements such as Sarbanes Oxley.
The Solutions Enabler event daemon can be configured to
automatically push Symmetrix Audit Log entries to RSA enVision at
scheduled intervals. This integration saves time and resources by
simplifying log management. It also helps the user track Symmetrix
events in the context of the larger environment while improving
compliance reporting on Symmetrix activities.
To Next Page
Loading...
Need help?
General
