Product Flyer

Fortify Your SAP* Applications with Novell® Privileged User ManagerYour administrators need privileged access to UNIX*, Linux* and Windows* servers to perform their jobs. Can you ensure these systems are secure and document regulatory compliance while providing privileged access? You can with Novell® Privileged User Manager.Increase Security and Ensure Compliance with Novell Privileged User ManagerYou are responsible for securing your organi­zation’s data, yet your biggest security threat may be sitting in an office down the hall. According to the 2010 Verizon Data Breach Report, internal sources are responsible for at least 48 percent of all security breaches. The reason: employees—and IT administra­tors in particular—are often granted higher privileges than they need. But you can prevent this risk.

You can restrict privileged access to your UNIX, Linux and Windows servers. Novell Privileged User Manager gives you the control to grant the superuser access that administrators need to do their jobs, but without needlessly giving them root­account credentials—protecting both server opera­tions as well as the health of the applications running on top of them, like mission­critical SAP* applications.

Thanks to Novell Privileged User Manager, administrators can log in with their own user

ID, 24x7, gaining just the access they need. At the same time, you can manage risk from a central location, secure data across the most­common server platforms, quickly assess risk and ensure your network is compliant with government regulations.

Managing RiskNovell Privileged User Manager eliminates the need to distribute UNIX, Linux and Windows root­account credentials to your entire administrative staff. It delegates administrative access using centralized policies that you configure to allow or deny user activity based on a comprehensive who, what, where, when model that looks at the user name, typed command, host name and time. It does this through a centrally managed database.

By managing privileges this way, you can control what commands users are authorized to run, at what time and from what location. All user activity is recorded down to the key­stroke and displayed in an intuitive interface with color­coded risk ratings, alerting you to take action when suspicious activity occurs.

Solutions: Compliance Management

Products: Novell Privileged User Manager

With Novell Privileged User Manager, organizations can reduce the cost, complexity and risk associated with managing superuser access across an enterprise’s heterogeneous network.

Managing across PlatformsNovell Privileged User Manager lets you manage access to UNIX, Linux and Windows servers from a single location (see Figure 1). You centrally define the commands that privileged users can execute, and Novell Privileged User Manager enforces those rules consistently across all three platforms to ensure that only authorized users can perform specific administrative tasks.

In a Windows environment, for example, using the Privileged User Manager interface, only authorized users can see, select and authenticate to Windows hosts. Once they are authenticated, Novell Privileged User Manager creates a secure Remote Desktop Proxy (RDP) tunnel to the target host to pro­vide the access they need. It then captures the user’s activity and conducts a risk analysis on the typed commands.

Because Novell Privileged User Manager works across platforms, you can rely on one product to secure your entire server infra­structure, rather than installing point solutions to support each platform individually.

Securing Privileged AccessWith the industry’s only GUI­based, drag­and­drop interface, Novell Privileged User Manager simplifies the rule­creation process and virtually eliminates the need for complex, manual scripting. Furthermore, an integrated test­suite tool allows administrators to model and test new rule combinations before com­mitting them to production use. Rules can simply be dragged into nested hierarchies to build sophisticated control structures that provide granular control for even the most demanding environment.

Figure 1. Manage access to UNIX, Linux and Windows servers from a single location.

Fortify Your SAP Applications with Novell Privileged User Manager

www.novell.com

Intelligently Analyzing RiskNovell Privileged User Manager balances the need for detail and volume through an intelligent risk­analysis engine. The engine analyzes user activity as it is typed and assigns each activity a risk level from zero to nine based on the command executed,

the user who executed it and the location. Commands are color coded, with high­risk commands colored red, low­risk commands colored green and other commands in varying shades in between (see Figure 2). This lets administrators instantly identify events that could pose a security risk.

Supported PlatformsNovell Privileged User Manager 2.3 is compatible with most *nix-based systems and with Windows servers, including:

SUSE® Linux Enterprise Server

Red Hat* Enterprise Linux AIX* HP-UX* Solaris* Tru64* VMware* ESX* Server Xen* Hypervisor Windows Server 2003

(32- and 64-bit) Windows Server 2008

(32- and 64-bit)

Figure 2. Each keystroke is color coded with a risk rating to easily identify high-risk commands.

Analyzing KeystrokesThe unique risk­profiling capability of Novell Privileged User Manager enables fast and easy identification of any collected user input that poses a higher level of risk, allowing you to mitigate potential damage caused by malicious activity or accidental misuse. You can play back any part of a recorded session through an intuitive DVR­like interface that streams UNIX and Linux sessions and plays second­by­second snapshots of Windows sessions (see Figure 3). In addition, you can search and select activities according to multiple criteria. You can also mask user keystroke activity, such as passwords, from the logs.

Figure 3. Review recorded sessions in the playback tool.

Staying CompliantNovell Privileged User Manager integrates with Novell Identity Manager, Novell Sentinel™ and the Novell Access Governance Suite to support continuous compliance across UNIX, Linux and Windows systems. Novell Privileged User Manager ensures that only authorized users have access to mission­critical servers, applications and services; that potential security risks are identified and mitigated; and that organizations have an indelible audit trail and appropriate reporting to prove compliance with external regulations and internal policies. The result: You can be certain you are staying compliant 24x7, not just during audits.

Protection for Your Mission-critical SAP SystemsYour SAP applications reside on servers where privileged users freely operate. These privileged users can easily do harm to your servers: bring them down, disable applications, even harm the applications running on those servers. It doesn’t have

to be intentional harm, but accident or not, any of these incidents would take your SAP systems offline. With Novell Privileged Manager, you can limit the ability to execute specific administrative commands—thereby protecting the health of your servers and ensuring that they continue to offer the SAP services your business requires.

Novell has worked with SAP for more than 10 years, collaborating on technical and engineering innovation to ensure that Novell identity and security products—like Novell Privileged User Manager—provide the ideal solution for protecting your SAP systems.

Improve Security in Your EnterpriseNovell Privileged User Manager provides a simple yet extremely powerful solution to reduce risk and improve security in your enterprise—at a cost that provides a near­immediate return on your investment. Learn more at: www.novell.com/products/privilegedusermanager

www.novell.com

Contact your local Novell Solutions Provider, or call Novell at:

1 800 714 3400 U.S./Canada1 801 861 1349 Worldwide1 801 861 8473 Facsimile

Novell, Inc.404 Wyman Street Waltham, MA 02451 USA

461-001386-001 | 02/11 | © 2011 Novell, Inc. All rights reserved. Novell, the Novell logo, the N logo and SUSE are registered trademarks, and Sentinel is a trademark of Novell, Inc. in the United States and other countries.

*All third-party trademarks are the property of their respective owners.

Novell Logo1 The registered trademark, ®,

appears to the right and on thesame baseline as the Logo.

Minimum Size RequirementsThe Novell Logo should NOT beprinted smaller than 3 picas(0.5 inches or 12.5 mm) in width.

Clear-space Requirements2 Allow a clean visual separation

of the Logo from all other elements.The height of the "N" is themeasurement for the minimumclear-space requirements aroundthe Logo. This space is flat andunpatterned, free of other designelements and clear from the edgeof the page.

3 picas(0.5 in)

(12.5 mm)

21 3

3

“Novell Privileged User Manager enhances our ability to secure our data center servers, improves compliance with a readily available

audit trail, and enables my team to provide a higher level of service.”

Russel HavensInfrastructure Management Senior Analyst

ACS