Detailed, granular access rights management capabilities allow you to configure the exact user permissions you need to support segregation of duties, rule of least privilege, and organizational security standards.
Servergraph supports integration with Microsoft Active Directory for user account and access rights management. This allows your organizational security policies, including password and other authentication standards, to apply to Servergraph application access.
Within the application, Servergraph offers detailed, customizable role-based access permissions that can be associated with your various users and backup systems. Each user can be assigned to one or more “Scopes” that grant access to specific backup processes, devices, reports, and functions. This allows you to restrict users to only the data and actions necessary to perform their job function, and supports specialized roles just as application administrator, report reviewer, or auditor, all of which can be further restricted to only certain elements of your backup environment.
System administration is further segregated from the application and is only accessible to users with the administrative maintenance client application.
When Rocket API calls to your mainframe, it is restricted by access permissions the mainframe grants. But you can enhance and expand upon those access control capabilities by adding Rocket API’s application-layer access security.
API allows you to configure more detailed access rights than may be available from your mainframe. You can restrict specific API calls by user, by function, by data being accessed, and more. These capabilities can help you achieve specific security and compliance criteria by further defining what type of access is authorized and denying unauthorized access attempts.
LegaSuite provides an interface between your website and your mainframe, extending all of the user credentials, access rights and detailed permission, and authentication mechanisms defined by your mainframe to the web platform. LegaSuite also provides capabilities to further restrict access by limiting the data values and form types that are presented to users based on the context of the web application.