VM

 View Only
  • 1.  If I use CA VM:Secure, do I need another ESM?

    Posted Feb 10, 2017 09:52 AM

    There is a CA ACF2 for zVM as well as CA TSS for zVM. IBM has RACF for zVM. What is there role id I have VM:Secure? I am working on Security requirements for zVM.



  • 2.  Re: If I use CA VM:Secure, do I need another ESM?

    Posted Feb 10, 2017 09:59 AM

    We only user VMSECURE on the VM systems here. It can handle the directory management and the Rules Facility takes care of access control, etc.

     

    Depending on if you have z/OS systems, and if you want an interface between those systems, you may need to look at other things. Been too long since I've done that to comment with any surety.



  • 3.  Re: If I use CA VM:Secure, do I need another ESM?
    Best Answer

    Posted Feb 10, 2017 10:06 AM

    CA VM:Secure is both a directory management and External Security Management (ESM)  product for z/VM.  If you have implemented the VM:Secure rules facility, then you are using its ESM capabilities.  You can only have one ESM on your system. So no, you would not need, nor could you use, an additional ESM product with VM:Secure if you have implemented the Rules Facility.



  • 4.  Re: If I use CA VM:Secure, do I need another ESM?

    Posted Feb 10, 2017 10:16 AM

    Thanks for the input.  I will develop requirement rules that recognized all four security managers.