Symantec VIP Integrations

The OTP authentication module for Microsoft ADFS, compatible with both ADFS 2019 and ADFS 2016 servers, facilitates multi-factor authentication (MFA) through a Time-Based One-Time Password (TOTP) mechanism, adhering to RFC6238 standards. This MFA solution mandates that users input a one-time passcode generated by authenticator applications like Microsoft Authenticator, Google Authenticator, or Symantec VIP to finalize their second factor authentication during the login process. Additionally, it allows for self-registration via QR codes using free mobile apps, while securely storing OTP data in Microsoft Active Directory attributes or MS SQL Server. Encryption of QR secrets is implemented using AES 256-bit technology, enhancing security further. The configuration also includes specifying network locations (both IPv4 and IPv6) from which users can scan the QR code, and it supports trust relationships across multiple ADDS forests, making it a highly versatile security solution. With these features, organizations can effectively bolster their security protocols and ensure a robust authentication process.

As each generation of computers evolves, the complexity of operating systems increases significantly. This rising complexity has resulted in a more arduous and time-consuming process for auditing these systems. All operating systems, including mainframes, can experience security vulnerabilities stemming from improper installations, customizations, and bugs associated with product maintenance. CA Auditor serves as a robust software solution that automates the technical review of both the hardware and software environments, effectively pinpointing areas of integrity risk. It detects potential security vulnerabilities arising from misconfigured implementations, allowing for a thorough evaluation of the operating system and its various components. Additionally, it offers functionality to oversee system usage and maintain the integrity of essential system files. By utilizing CA Auditor, users can effectively address significant vulnerabilities within the z/OS operating system, enabling detailed auditing, integrity checks, and necessary verifications for enhanced security measures. This comprehensive approach not only mitigates risks but also fosters a more secure computing environment.