Refine Security Administration Structure › Decentralized Security Administrators › ZCA, VCA or DCA Considerations
ZCA, VCA or DCA Considerations
Consider the following when planning to decentralize CA Top Secret security administration:
- ZCAs, VCAs and DCAs are most often created to perform routine maintenance.
- Temporary or permanent ZCAs, VCAs and DCAs can be created with auditing capabilities which allow the auditing staff to perform routine or periodic audits on corporate zones, divisions and departments.
- As with SCAs and LSCAs, special purpose ZCAs, VCAs or DCAs can be created with reduced authority to handle specific environmental requirements.
- You can choose to assign administrative authorities to user ACIDs. For example, you may wish to allow a user to permit access to the resources that he owns to other users.
It is recommended that you decentralize administration only when and where it is necessary. Valid reasons for decentralization include heavy maintenance activity at the central level and remote user sites which require more responsive administration than can be provided at the central level. Selective decentralization where appropriate can be the most effective way of decentralizing administration.
Copyright © 2014 CA Technologies.
All rights reserved.
|
|