Novell Privileged User Manager

Reduce Cost and Errors through Demonstrable Compliance Audits

Account sharing, privilege creep and lack of accountability are common problems that are all too often addressed through reactive mechanisms. Novell Privileged User Manager's unique approach of coupling user privilege management with proactive audit workflow, allows organizations to rapidly implement a controlled process for assessing, risk-prioritizing and authorizing user activity.

By shaping the system around the security needs of the enterprise by setting of multi-platform business rules, Novell Privileged User Manager provides the means to centralize all aspects of privilege control and compliance auditing, in a modular architecture that adapts and scales to any organization. Everything that meets not only the spirit of regulatory bodies, but a best-practices security solution to ensure the security of your business is being managed most effectively and economically.

Regulatory legislation places increasing demands on organizations to maintain audit trails of system transactions and user activity. Many other SUPM applications provide raw log data, which require auditors to manually collect and filter through hundreds of thousand of records. This manual, error-prone process increases administration costs and exposes the organization to security risks, as reviewers may overlook events that pose a serious threat to the organization and therefore be unable to prove audit compliance.

Novell Privileged User Manager streamlines the process of demonstrating compliance with internal policies and external regulations. By providing an automated, consistent process for auditing user events system wide, you can prove compliance with permanent audit records 24x7x365, not just around compliance audits.

Automatically Filter Data

The Compliance Auditor component of Novell Privileged User Manager enables automatic data filtering to specify which records are pulled for analysis at hourly, daily, weekly or monthly intervals. Further, auditors can apply additional filtering criteria to display only high-risk events that have occurred within a specified time period. For example, administrators can filter events with a risk level greater than 3 each hour, allowing them to focus on those events that pose the greatest risk to the organization.

The information is displayed in an intuitive, color-coded interface that enables managers and auditors to view security transactions, play back recordings of user activity and sanction events.

Create an Indelible Audit Trail

Novell Privileged User Manager generates detailed logs of user activity. These records provide key information that is both required and valuable for proving compliance and ensuring consistent best practices in the operation.

The Compliance Auditor component applies business logic to standard event logs. Based on rules which can be customized through a graphical user interface, it assesses the potential risk of user activity and system events, and then assigns the appropriate risk level. Each event is pulled into a powerful audit reporting and management tool that gives auditors enterprise-wide visibility, allowing them to prioritize responses to any anomalous activity. The auditor can record a status of Pass, Fail or Raise against each record, with each change being automatically added to the audit trail for a permanent record.

Event records are displayed in an easy-to-read tabular format that show user activity down to the keystroke level. Auditors can even view recorded user sessions in an easy-to-use interface with playback controls.