Novell BorderManager enables you to manage all Novell BorderManager servers from a centralized location using familiar NetWare tools. Novell BorderManager provides this essential functionality by closely integrating the Novell BorderManager services with the NDS or eDirectory database. Therefore, you can enforce and monitor access consistently from a central location.
Management through eDirectory has the following features:
A single point of administration
Integration for centralized access control management
Proxy authentication
eDirectory can also be used to enforce periodic changes to passwords, specify a minimum password length, and enforce alphanumeric combinations. The eDirectory directory provides access control to restrict objects in the database.
NOTE:When configuring eDirectory, do not replicate the directory to a system that is not physically secure. An eDirectory replica on a machine that can be physically disconnected from the network is subject to offline attack.
A major task in enforcing network security is monitoring event logs on regular weekly intervals. These logs are used to check for anomalies in server traffic, such as port scans, spoofed Routing Information Protocol (RIP) packets, Domain Name System (DNS) requests, ICMP redirects, or any inconsistent routing activity. A history log file can be an excellent tool for identifying irregular patterns.
Audit your network for devices and validate their use. Check for unauthorized modems and network traffic analyzers.
You can configure Novell BorderManager Alert to notify you by e-mail when certain conditions or events occur on your Novell BorderManager server. Performance-related conditions or events include memory shortages, disk space shortages, and down servers. Security-related conditions or events include packet flooding, abnormal packet sizes, and the unloading or loading of security-sensitive modules on the server. For more information, see Novell BorderManager 3.9 Administration Guide .