How to monitor CA Endevor SCM data sets for inappropriate access.

Document ID : KB000010857
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

If the recommended security best practices are implemented, CA Endevor SCM data sets are protected from inappropriate outside access. Best practices include the implementation of the alternate ID and the proper configuration of a security software product to restrict data set access by any other IDs, except for a few trusted administrators. If the best practices are not implemented, then monitoring your data sets can add a layer of protection.

Background:

When the alternate user id is implemented, updates to CA Endevor SCM libraries are performed using the alternate user, not the userid.

This allows to protect CA Endevor SCM libraries and prohibits users to update them outside of CA Endevor SCM  processing.

If CA Endevor SCM libraries aren't protected, you might experience synchronization issues that will cause inventory corruption. Such situation is also time consuming when you will have to fix them.

Security at all level is mandatory to keep your inventory safe.

Instructions:

The CA Endevor SCM administrator can monitor CA Endevor SCM data sets for inappropriate access using the PDS Monitor feature of the Change Monitor component in CA Compliance Event Manager (CEM). 

You can configure a PDS Monitor policy to monitor and record any modifications to CA Endevor SCM data sets. In the policy, you can specify which data sets and user IDs to monitor. You can also set alerts to notify administrators if such activity occurs. 

If an inappropriate access occurs against a CA Endevor library; the PDS Monitor feature can send an automatic email in real time with the detail related to who, what and when did the update.

Please look for the CA Compliance Event Manager component in the CA Endevor SCM v18 download area. To get your free license key for CA Compliance Event Manager, follow the instructions in the file called "IMPORTANT INFORMATION ABOUT OBTAINING YOUR LICENSE KEY" or "PRODUCTKEYS2017.pdf", which is located in the CA Endevor SCM v18 Product Download.

Detailed instructions for CA Endevor SCM customers on how to install, deploy, and configure CA Compliance Event Manager are available in our documentation:

https://docops.ca.com/ca-endevor-SCM/18-0/en/securing/monitor-data-sets

 

Additional Information:

Please also check out our new video on how to configure CA Compliance Event Manager to use it with CA Endevor SCM

https://www.youtube.com/watch?v=v5Xlo5y1JuE