Previous Topic: Documentation ChangesNext Topic: Terminology


Introduction

Architecture and Setup Overview

The following diagrams provide an overview of the CA Chorus for Security and Compliance Management discipline architecture. After installation and setup, use it to manage security resources across your z/OS enterprise.

Observe the following:

To install and configure this discipline you must:

The diagrams illustrate the basic architecture:

LPARs

Identify logical partitions of a mainframe (z/OS system), on which you execute your External Security Manager (ESM) as a back-end engine for this discipline. Multiple LPARs are supported.

CA Chorus Application Server

Contains the CA Chorus system. Includes the following components:

CA Chorus Application

Provides the browser support and components to communicate with the back-end engines for the various disciplines, such as the security engine.

Quick Links Module

For this discipline this module includes the Administer Compliance Policy, Administer Security Definitions, and Simulate Access Attempt interfaces.

Security Command Manager Module

Issues native commands to backend security engines from the CA Chorus interface.

CA Chorus Listeners

Provides the service for receiving Alerts sent by the various backend security engines.

CA Chorus Time Series Facility (TSF)

Provides the facility for receiving, storing, and querying metrics about objects managed by the security backend engines. Because all metrics are date- and time-stamped, a series can be graphed over time to show trends, and to project into the future.

CA Chorus Database Multi-User Facility (MUF)

Provides the infrastructure for storing and retrieving TSF.

Security Engines

Composite of the ESM and compliance products that together provide the input to this discipline. Includes but is not limited to CA ACF2, CA Top Secret, Compliance Policy Administration interface, and CA LDAP Server for z/OS.

Shared Storage

Represents all storage devices that are shared across the CA Chorus disciplines.

Private Storage

Represents storage devices that are shared only across this discipline.