The following additional components help you to integrate the core products of the Novell Compliance Management Platform:
Identity Manager Driver for Sentinel and the Identity Vault Collector: The Identity Manager Driver for Sentinel (Sentinel driver) and the Identity Vault Collector gather identity information for use by Sentinel. The Sentinel driver and the Identity Vault Collector work with many different systems.
In some systems, its possible for a single user account to be identified in multiple ways. For example, a Microsoft Active Directory account can be identified by its SAM account name (jsmith), its user's principal name (jsmith@company.com), and its LDAP distinguished name (cn=John Smith,cn=users, dc=company, dc=com). The Identity Manager Driver for Active Directory gathers these account identifiers and stores them on an Identity Vault user account that is associated with the Active Directory account. The Sentinel driver sends the identity information to the Identity Vault Collector. Whenever an Active Directory event occurs that contains one of the identities, the Identity Vault Collector injects the common identity (Identity Vault user identity) into the event so that events tracked through any of the identities are correlated with a single user in Sentinel views and reports.
For more information about the Sentinel driver and the Identity Vault Collector, see the Identity Manager Driver for Sentinel 6.1 and the Identity Vault Collector Implementation Guide.
The Identity Manager Driver for Sentinel and the Identity Vault Collector are part of Identity Manager Advanced Edition. To download Identity Manager Advanced Edition, see the Novell Identity Manager 4.0.1 download page.
Identity Tracking Solution Pack: The solution pack provides controls (views and reports) of events associated with users. Through these controls, you can monitor and report on account management activities (creation, deletion, and modification); suspicious user activities such as failed authentication, denied access, denied or increased account privileges, and impersonated account logins; account usage by users; and password management activities. Because of the identity injection provided by the Sentinel driver and Identity Vault Collector, events are associated to individual users.
The Identity Tracking Solution Pack requires the latest available version of Sentinel 6.1 RD.
For more information on the Identity Tracking Solution Pack, see Section 2.2, Using the Identity Tracking Solution Pack.
To download the Identity Tracking Solution Pack, see the Novell Downloads page.
User Application CMP Extension Package: The User Application CMP Extension package includes these resources:
Rogue Administration Work Flow
"Login Disabled" attribute on the User DAL entity
The workflow includes the ability to set three GCV values (Rogue Administration - Security Review Timeout (In Minutes), Rogue Administration - Escalation Timeout (In Minutes), and Rogue Administration - Escalation Addressee DN).
To take advantage of these features, you need Version 1.0.6 or higher of this package. When you install the latest 4.0.1 packages for the User Application Driver, you will get this package automatically. You can use in Designer to be sure if you have the latest version.
For more information on using the User Application CMP Extension package, see Section 2.5.6, Adding the CMP Extension Package to the User Application Driver.
EAS Sentinel Link Configuration Utility The EAS Sentinel Link Configuration Utility is a new feature of CMP 1.1. This utility configures the receiving server in the Event Auditing Service to listen for events forwarded from Sentinel via Sentinel link.
To download the EAS Sentinel Link Configuration Utility, see the Novell Downloads page.