Host Access Management and Security Server

Features

Leverage IAM access controls
Leverage IAM access controls

Use existing IAM platforms (e.g., Active Directory, NetIQ eDirectory, and RACF) to validate user credentials and grant access to host resources using group/role definitions. No schema changes are required.

Move from weak to multifactor host authentication
Move from weak to multifactor host authentication

Ditch risky eight-character host passwords ASAP. Leverage your IAM system to quickly and economically replace them with strong, complex passwords. Ratchet up security further with multi factor authentication.

Encrypt data in motion
Encrypt data in motion

Secure host data with SHA-256 digital signatures, AES 128/256, TLS, and cryptographic modules validated for FIPS 140-2 – one of the U.S. government's top security standards.

Audit host sessions
Audit host sessions

Log and monitor access to host resources from a central metering server. Create license pools to control access to sessions and hosts. Address specific needs with granular logging options – ensuring that you know who and when someone is accessing your critical systems.

Deliver automatic mainframe sign-on
Deliver automatic mainframe sign-on

Leave mainframe passwords in the past. Now authenticated, authorized users can skip the mainframe logon step entirely. Host Access Management and Security Server (MSS) works with the IBM Digital Certificate Access Server to do the job for them.

Add layers of security with MSS add-ons
Add layers of security with MSS add-ons

Gain additional critical functionality when you pair MSS with these products:

  • Security Proxy Add-On: Deliver end-to-end encryption and enforce access control at the perimeter with patented security technology.
  • Advanced Authentication Add-On: Enable multifactor authentication to authorize access to your valuable host systems.
  • Automated Sign-On for Mainframe Add-On: Enable automated sign-on to IBM 3270 applications via your identity and access management systems.
  • PKI Automated Sign-On Add-On: PKI-enable automated application sign-on to your critical enterprise systems.
  • Terminal ID Management Add-On: Dynamically allocate terminal IDs based on username, NDS name, IP address, or address pool.

Team up with MSS

Interaction
Integrate the host and IAM

Streamline and secure your host-access operation by teaming Reflection, Rumba+, or InfoConnect emulators with MSS. Working with your Identity and Access Management (IAM) system, MSS seamlessly propagates changes to application settings and user-specific content from a central server.

Lock key
Take centralized control

Manage host-access operations from your central MSS console. Lock down 100s (or 1,000s) of far-flung desktops with ease. Grant or deny access based on group or role. Apply changes quickly to align with business needs.

Password 1
Reinforce security as you remove passwords

Finally, you can bring your host into the IAM fold. That means you can replace weak, eight-character passwords with strong, complex ones. Implement best-fit multifactor authentication methods.

release-rel-2019-11-1-3171 | Wed Nov 13 04:28:31 PST 2019
3171
release/rel-2019-11-1-3171
Wed Nov 13 04:28:31 PST 2019