Introduction › CA Chorus for Security and Compliance Management Functionality

CA Chorus for Security and Compliance Management Functionality

The following functionality is specific to the CA Chorus for Security and Compliance Management discipline. For information about other CA Chorus functionality, see the Product Guide.

• Monitor your systems for security events using the Compliance Policy Administration interface, including the following events:
  • Security events
  • Changes to security records
  • Changes to security configuration options
  • Changes to system data sets
  • Changes to z/OS configuration controls

  The Compliance Policy Administration interface helps you demonstrate regulatory compliance, mitigate the risk of negative security events, and reduce the total cost of compliance.

• The Security Administration interface lets you administer security using CA ACF2 or CA Top Secret. This interface includes many logically grouped native commands and fields, which simplify security administration.
  • For CA ACF2, use th is interface to manage logon IDs, data sets, resources, rule lines, and rules.
  • For CA Top Secret, use this interface to manage ACIDs, departments, divisions, groups, profiles, zones, resources, passwords, and options.

  Note: The Security Administration interface does not support digital certificates or compiled data profile records.

• The Investigator Launcher lets you load, edit, and delete complete paths that you have followed while viewing and managing your systems. You can view data in chart and tabular views in the Investigator. For CA Chorus for Security and Compliance Management, use the Investigator Launcher to monitor security definitions (such as systems, users, roles, scopes and rules), and security and compliance events (such as object accesses, account administration, policy administration, and others).

  The Investigator includes the following functionality:

  Topology Viewer

  Displays a pictorial view of your data. After you select data from an Investigator table, you can launch this tool.

  Time Series Facility

  Displays line charts of time-based performance data. After you select data from an Investigator table, you can launch the Time Series Facility (TSF). Predefined metrics can be viewed in the TSF charts when those predefined metrics are added to the TSF metadata and you add an entity to the Time Series.

  RACF Support

  CA Chorus for Security and Compliance Management provides support for IBM RACF. You now have the ability to collect RACF users, groups/roles, and permissions in the CIA database and view the data in the CA Chorus Investigator. This information helps you understand the state of your security environment and identify what actions to take. Unlike CA ACF2 and CA Top Secret users, IBM RACF users cannot edit object details. The edit icon in the Details pane of the Investigator and Investigation Launcher remains disabled for IBM RACF users.

  For more information about the Investigator, see the chapter "View Security Data in the Investigator."