wallix.com

Inventory

Needs

The company wants to improve the traceability of the administration operations for its servers and its applications – with details namely of who is connected to which application and when, as well asrecording the entire content of the administration session.

In addition, in order to improve the security of the information system without reducing the productivity of the administrators, the following constraints have been defined by the computing team:

- The traceability must be practically transparent for the administrators,
- There must not be any changes in the ways in which the administrators work,
- It must be possible to define the working hours for each administrator (e.g.: every weekday –
09:00 to 18:00),
- It must be possible to apply filtering for the IP address used by the administrators,
- The administrators must be able to use “standard” PCs if required,
- It must be possible to trace the details of all operations carried out by the administrators –
going beyond the information already contained in the application’s logs,
- No agents must be installed on the servers nor any specific software installed on the
workstations used by the administrators.

Solutions

This company has implemented the Wallix AdminBastion (WAB) solution in combination with the installation of a Windows TSE server on which the various client administration software programs will be installed. In administering an application (e.g.: Oracle, VMware), the administrator just has to connect and log on to the WAB through a RDP client software, select the Windows TSE server and then start the administration software for the target application.

Future developments