• The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
Menu
  • The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
  • Raz-Lee Tackles Excessive Authorities with Free Software

    April 26, 2017 Alex Woodie

    You can’t do anything on IBM i without the proper authority. Unfortunately, instead of using the tools IBM includes in the OS to set fine-grained policies, most IBM i shops run wide-open when it comes to user authorities. Now Raz-Lee Security hopes reign in this free-for-all with a free tool it just released.

    For a glimpse at how bad the use of authorities in IBM i has gotten, check out our coverage of a recent security study of the IBM i marketplace. It’s no secret that there’s widespread abuse of special authorities, such as ALLOBJ and SECADM, among the majority of IBM i shops. Many user profiles and even group profiles run with these special authorities baked into them because it’s easier that way (if less secure).

    While abuse of special authorities arguably gets more press, a more widespread problem may be the misuse of authorities when it comes to object security.

    IBM empowers administrators to set access authority levels on public objects, including the data and programs used by common applications. About nine in 10 IBM i shops run with this public authority level set in a way that basically allows any user with a valid ID and password to access any piece of data in a given library, according to the previously mentioned study.

    IBM responded to this sad state of object-level security with a new capability in IBM i OS version 7.3 called “authority collection.” This capability essentially identifies which users have access to what data and determines what level of access they have and what level of access they should have.

    Unfortunately, getting useful information out of the authority collection is easier said than done. Without the capability to write complex SQL queries, most IBM i users will be out of luck when it comes to understanding the authority data collected.

    That’s where Raz-Lee Security hopes to make an impact with Authority Inspector, a new solution designed to help IBM i professionals better understand the information collected by the authority collection facility.

    Authority Inspector makes it easier for users to view and understand the data collected by IBM’s authority collection.

    According to Raz-Lee, Authority Inspector simplifies the information by presenting a summary of the authority collection data in easy-to-read tables and graphs. The software, which runs on a PC, replaces encoded field values with meaningful titles to further aid in understanding.

    Authority Inspector helps users create filters by selecting values directly from the screen, which further reduces the amount of data presented. Users can also export the data to Excel with a single click.

    Raz-Lee CEO Shmuel Zailer says the company decided to make this solution free as a way to pay back the community that has made the company so successful. “Raz-Lee has decided to give all customers its Authority Inspector product for free, with no license or maintenance charges, during 2017,” he says in a press release. “Simply visit our booth at COMMMON in Orlando or in Brussels, get the free code and download the product from our website and enjoy.”

    The New York-based company shared several other pieces of product news ahead of the COMMON Annual Meeting and Exposition, which is slated for May 7-10 in Orlando, Florida. The focus is on several new features in Raz-Lee’s iSecurity suite, including:

    • Better SIEM integration, including support for transforming IBM i log data into the specific formats preferred by IBM QRadar, HPE ArcSight, and Splunk;
    • A new report generator and scheduler that can incorporate any user or system command and spool file output as a report;
    • New real-time action alerts;
    • Compression of screenshots captured as part of monitoring to save disk space;
    • New restrictions to prevent reports from being emailed to specific addresses or domains.

    Raz-Lee will be exhibiting in booth 418 in the COMMON expo.

    RELATED STORIES

    State Of IBM i Security: Seven Areas That Demand Attention

    IBM i Priorities For 2017: Pivot To Defense

    IBM i 7.3: High Time For High Security

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Tags: Tags: ALLOBJ, IBM i, SECADM, Special Authority

    Sponsored by
    LaserVault

    Integrate Virtual Tape to Automate Your Backups And Strengthen Your Ability To Recover From Cyber Attacks And Disasters

    With most IT departments stretched thin, finding something that can quickly free up IT time is definitely a bonus. That’s why it’s important to stop and take a look at integrating virtual tape into your backup and recovery. Virtual tape is one of those technologies where once you have it, you’ll wonder why you didn’t do it sooner. See a demo and get a $50 gift card.

    But what is it about using virtual tape that makes it so worthwhile? Why is it that so many IBM i shops are already using or considering using virtual tape for all or part of their backup and recovery systems?

    Virtual tape and virtual tape libraries offer a way to both simplify and strengthen backup and recovery operations. By incorporating virtual tape technology, automation of backups becomes possible resulting in hundreds of hours saved annually for IT departments and personnel.

    “We needed to find a replacement that would lower the maintenance cost and reduce complexity of our backup and recovery functions without a major disruption to our operations.” David Fray, Director of Enterprise Systems, ABC Financial

    LaserVault ViTL is a virtual tape and tape library solution developed specifically for use with IBM Power Systems (from AS/400 to iSeries to Power 9s). With ViTL you can:

    • Replace physical tape and tape libraries and eliminate associated delays
    • Automate backup operations, including the ability to purge or archive backups
    • Remotely manage your backups – no need to be onsite with your server
    • Save backups to a dedupe appliance and the cloud
    • Recover your data at lightspeed greatly improving your ability to recover from cyberattacks
    • And so much more

    Sign-up now to see a ViTL online demo and get a $50 Amazon e-gift card when the demo is complete as our way of saying thanks for your time. Plus when you sign-up you’ll receive a free facts comparison sheet on using virtual tape vs tape so you can compare the functionality for yourself.

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Four Hundred Monitor, April 26 Surround Tech Keeps IBM i Websites Hip to the Times

    Leave a Reply Cancel reply

TFH Volume: 27 Issue: 28

This Issue Sponsored By

  • New Generation Software
  • COMMON
  • Profound Logic Software
  • ASNA
  • Manta Technologies

Table of Contents

  • Optimism Abounds in VAI’s Inaugural Survey
  • Surround Tech Keeps IBM i Websites Hip to the Times
  • Raz-Lee Tackles Excessive Authorities with Free Software
  • Four Hundred Monitor, April 26
  • IBM i PTF Guide, Volume 19, Number 15

Content archive

  • The Four Hundred
  • Four Hundred Stuff
  • Four Hundred Guru

Recent Posts

  • IBM Mulls Using DataMigrator as Cloud Warehouse Pipeline
  • PowerTech AV Automatically Detects Ransomware Activity
  • Infor Puts CM3 Project On Hold
  • Four Hundred Monitor, June 29
  • IBM i PTF Guide, Volume 24, Number 26
  • Guild Mortgage Takes The 20-Year Option For Modernization
  • IBM i Licensing, Part 3: Can The Hardware Bundle Be Cheaper Than A Smartphone?
  • Guru: The Finer Points of Exit Points
  • Big Blue Tweaks IBM i Pricing Ahead Of Subscription Model
  • We Still Want IBM i On The Impending Power E1050

Subscribe

To get news from IT Jungle sent to your inbox every week, subscribe to our newsletter.

Pages

  • About Us
  • Contact
  • Contributors
  • Four Hundred Monitor
  • IBM i PTF Guide
  • Media Kit
  • Subscribe

Search

Copyright © 2022 IT Jungle

loading Cancel
Post was not sent - check your email addresses!
Email check failed, please try again
Sorry, your blog cannot share posts by email.