IBM Security zSecure Command Verifier

Enforce RACF policies and protect the security of your mainframe environment

IBM Security zSecure Command Verifier helps reduce the risk of security breaches and failed audits caused by internal errors and noncompliant commands.

  • Proactively enforce policy compliance on IBM RACF®
  • Decrease database pollution by preventing noncompliant RACF commands from being run
  • Conserve programming and administrative resources by eliminating RACF database cleanup time and reducing audit concerns
  • Reduce the risk of security breaches and failed audits caused by internal errors and noncompliant commands
  • Raise alerts when risky commands are executed to help reduce chances of outages
  • Product formerly known as IBM Tivoli zSecure Command Verifier
  • Operating systems supported: z/OS

Läs mer

IBM programvara
See what smarter software can do for you.

Buy IBM Security zSecure Command Verifier

IBM Software Subscription and Support is included in the product price for the first year

Download software online after purchase - no shipping costs.

Not available to purchase online. Other ways to purchase or learn more.

Contact IBM

MoreLess


Features, advantages and benefits
FeaturesAdvantagesBenefits
Supports policy definitions to provide mandatory and default values when RACF does not provide appropriate defaults. Automates the process of ensuring mandatory values are used and prohibiting inappropriate default values. Enables preventative controls for important policy and naming requirements to improve your security posture.
Prevents noncompliant administrative command execution. Automatically verifies command keywords against your specified policies as soon as a RACF command is issued —from Time Sharing Option (TSO), Interactive System Productivity Facility (ISPF), batch jobs, or the operator console. Proactively enforces compliance on RACF to help reduce the risks of security breaches and database "pollution."
Command Audit Trail feature stores changes to profiles in the RACF database. Easily discover when a change to a profile was made and which administrator issued a particular command. Eliminates labor intensive searches and investigation of log files and guessing about which changes occurred and by who.
Independent installation on all systems on which you want to enforce policies. Implemented as part of the RACF Common Command Exit as a standard RACF application programming interface (API). Eliminates designing, coding and maintaining assembler routines to handle parsing of keywords. You can use it independently of Security zSecure suite solutions and as an add-on to other third-party RACF tools that lack this functionality.
Grant users granular access to specific commands they would normally be unable to access. Allows selective distribution of command access. By providing access to the specific commands users require to do their jobs, you reduce the risks associated with accidental or malicious actions of privileged users.

Business benefits

Mainframe policy enforcement solution adds granular controls for RACF to help prevent errors and noncompliant commands.

Enkla sätt att handla eller läsa mer.

Vill du ha hjälp?

Enkla sätt att handla eller läsa mer.

IBM Security zSecure Command Verifier