IBM i Screen Cam Software Watches Privileged Users’ Every Move

While the IBM i security infrastructure includes auditing capabilities for green screen commands, Authority Broker extends IBM i auditing into non-command-based environments, including SQL, DFU, QSHELL, and System Service Tools (SST).

 

“Authority Broker brings visibility into non-traditional environments that the OS can’t easily audit such as SQL or QSHELL” explains Robin Tatam, director of Security Technologies for PowerTech. “In the past, IBM i auditing became less effective once a user navigated into system applications. Fortunately, screen capture creates a visual log of a user’s activity in all of these environments, in addition to the comprehensive command reporting that auditors require.”

 

Authority Broker 4.0 captures each screen that a swapped user encounters during a role swap, which temporarily grants greater security privileges to users. Administrators can monitor the user’s activity in near real-time, play back screens on the system, or automatically receive an indexed PDF of screen captures via email.

 

In addition to providing new visibility of privileged users, Authority Broker also audits who views the recorded screens. Any time a screen is viewed or emailed, an audit entry is recorded to the audit journal. The entry documents both that the swap activity was reviewed and who reviewed it. This provides a more complete audit trail and makes it easier for organizations to meet compliance rules and regulations.

 

“Being able to audit who is looking at these screens is critical for our customers with formal regulatory compliance,” Tatam notes.

 

PowerTech is a Help/Systems company.