We recommend that you implement an automated credential and entitlement monitoring system such as CA Cleanup, which provides a viable, cost-effective means to automatically identify and remove unused, obsolete, or expired user credentials and security entitlements.
Business Value:
Many of today's sites face challenges when dealing with user credentials and security entitlements that are unused, obsolete, and whose presence complicates security, auditing, and compliance processes.
Expired, obsolete, and unused credentials and entitlements pose a large security risk and for this reason are the target of many of the contemporary compliance laws, requirements, and regulations. The Payment Card Industry’s Data Security Standard (PCI-DSS) contains specific language concerning processing of expired or obsolete user credentials and entitlements. The v1.2 specification states that you must remove or disable inactive accounts after 90 days. This best practice helps you address these types of standards.
More Information:
The CA Cleanup products provide automated tracking of usage and can help to identify what is used, what is not used, and what you can safely remove.
For detailed product information, see the CA Cleanup documentation at http://ca.com/support.
|
Copyright © 2010 CA Technologies.
All rights reserved.
|
|