1. Manuals
  2. Brands
  3. Novell Manuals
  4. Software
  5. PRIVILEGED USER MANAGER EVALUATION -
  6. Quick start manual

Novell PRIVILEGED USER MANAGER EVALUATION Quick Start Manual

Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
Novell Privileged User Manager
Evaluation Quick Start Guide
2.2 Release

Advertisement

Table of Contents
loading

Related Manuals for Novell PRIVILEGED USER MANAGER EVALUATION

Summary of Contents for Novell PRIVILEGED USER MANAGER EVALUATION

  • Page 1 Novell Privileged User Manager Evaluation Quick Start Guide 2.2 Release...

  • Page 2: Table Of Contents

    Novell Privileged User Manager v2.2 Evaluation Quick Start Guide Table of Contents 1.0 CONCEPTS AND OVERVIEW ......................... 3 1.1 P ................................3 REREQUISITES 1.2 O ..........................3 BTAINING VALUATION NSTALLER – P 1.3 I ................4 MPORTANT NFORMATION LEASE EFORE TART 2.1 I ..........................5...

  • Page 3: Concepts And Overview

    Evaluation Quick Start Guide 1.0 Concepts and Overview The Novell Privileged User Manager evaluation package is a collection of preconfigured databases that can be added to any standard manager installation to create an environment pre-populated with sample events and example configurations. Evaluation deployment steps involve: 1.

  • Page 4: Important Information - Please Read Before You Start

    Novell Privileged User Manager v2.2 Evaluation Quick Start Guide 1.3 Important Information – Please Read Before You Start Note We recommend that you apply the evaluation database package to a clean installation of the standard Manager. You should also uninstall the package when finished as per the instructions at the bottom of this page.

  • Page 5: Install Std Manager Package

    The AIX installation package is compressed through gzip. In order to install the package, you must unzip the package through gunzip. By default, the installation program installs the software into /opt/novell. To change this, create a directory in the required part of the file system and create a symbolic link to /opt/novell.

  • Page 6: Hp-Ux Framework Manager Install

    The HP-UX installation package is compressed through gzip. In order to install the package, you must unzip the package through gunzip. By default, the installation program installs the software into /opt/novell. To change this, create a directory in the required part of the file system and create a symbolic link to /opt/novell.

  • Page 7: Linux Framework Manager Install

    Linux hosts use the RPM packaging system for installation, upgrade, and removal. By default, the installation program installs the software into /opt/novell. To change this, create a directory in the required part of the file system and create a symbolic link to /opt/novell.

  • Page 8: Solaris Framework Manager Install

    The Solaris installation package is compressed through gzip. In order to install the package, you must unzip the package through gunzip. By default, the installation program installs the software into /opt/novell. To change this, create a directory in the required part of the file system and create a symbolic link to /opt/novell.

  • Page 9: Tru64 Framework Manager Install

    The Tru64 installation package is compressed through gzip. In order to install the package, you must unzip the package through gunzip. By default, the installation program installs the software into /opt/novell. To change this, create a directory in the required part of the file system and create a symbolic link to /opt/novell.

  • Page 10: Windows Framework Manager Install

    3. After installation is complete, check that the service is running by viewing the log file. The log file is located in C:\Program Files\Novell\npum\logs\unifid.log, if the default install location was used. You should see an output similar to the following: ======================================== Version 2.2.0 (Rev:14967,Bld:4554)

  • Page 11: Log On And Set Administrator Password

    Novell Privileged User Manager v2.2 Evaluation Quick Start Guide 2.2 Log on and Set Administrator Password Log on to the Novell Privileged User Manager Administration console In a browser with access to test machine, enter: https://testmachinename Note: When prompted, accept security certificate...

  • Page 12: Load And Install Evaluation Databases

    Change to that directory and issue the following command to load the installer into your Framework Package Manager. “C:\Program Files\Novell\npum\bin\unifi” -u admin distrib publish -f cceval-2-2.pak Note: You will be prompted for the administration password you set in section 2.2 2.3.2 Install Evaluation Databases to Host...
  • Page 13 Novell Privileged User Manager v2.2 Evaluation Quick Start Guide Now select the Evaluation Databases package as shown below and click Next When the install is complete, return to the main menu by clicking Home in the breadcrumb trail, (underneath the title-bar at the top) to complete the remaining exercises in this guide.

  • Page 14: Initial Orientation

    Novell Privileged User Manager v2.2 Evaluation Quick Start Guide 3.0 Initial Orientation Log on to the Novell Privileged User Manager administration console In a browser with access to test machine, enter: https://testmachinename Note: When prompted, accept security certificate If first use, click through the license screen and enter the default credentials of:...

  • Page 15: Orientation: Home Menu

    Novell Privileged User Manager v2.2 Evaluation Quick Start Guide Orientation: Home Menu The Home menu is where you are able to access the individual administrative „consoles‟ that are installed as part of your solution. Manage security policies for privilege management using an intuitive GUI interface.

  • Page 16: Orientation: Compliance Auditor

    Novell Privileged User Manager v2.2 Evaluation Quick Start Guide Orientation: Compliance Auditor From the Home menu, select the Compliance Auditor console New: Events have not been examined Each event record is color-coded Filters can be set on Pending: Examination in progress...

  • Page 17: Orientation: Reporting

    Novell Privileged User Manager v2.2 Evaluation Quick Start Guide Orientation: Reporting From the Home Menu, select the Reporting Console Global settings such as log file rollover and encryption settings. Many reports with custom filters can be created and stored for reuse.

  • Page 18: Orientation: Hosts

    Novell Privileged User Manager v2.2 Evaluation Quick Start Guide Orientation: Hosts From the Home Menu, select the Hosts Console Context sensitive menu provides When a host is selected, its status is displayed in the right-hand pane. options for module updates and maintenance on a single host, or group of hosts.

  • Page 19: Orientation: Package Manager

    Once applications have been downloaded and deployed, a single click checks for available updates. An account is required to connect to Novell‟s update servers, these credentials together with optional proxy server information are entered under Settings. All packages available for deployment are listed together with platform and version information.

  • Page 20: Orientation: Command Control

    Novell Privileged User Manager v2.2 Evaluation Quick Start Guide Orientation: Command Control From the Home Menu, select the Command Control Console Privilege management policies are created by dragging „trigger‟ objects such as user groups and commands into rules that determine whether a submitted command is authorized to run and with what parameters, such as runuser account, keystroke logging etc.

  • Page 21: Orientation: Manage Users

    Novell Privileged User Manager v2.2 Evaluation Quick Start Guide Orientation: Manage Users From the Home Menu, select the Framework User Manager Console Users that will log onto the administration console are defined in this section Groups can be created that have specific roles allowing their...

  • Page 22: Step By Step Exercises

    Novell Privileged User Manager v2.2 Evaluation Quick Start Guide 4.0 Step by Step Exercises Reviewing keystroke activity proactively a) Select the Compliance Auditor Console from the Home Menu b) Notice the events that have been pulled from the Command Control event logs.
  • Page 23 Novell Privileged User Manager v2.2 Evaluation Quick Start Guide c) Double-click the record colored red You will see that it is not currently possible to edit the record and that icon bottom right is grayed out. d) Please double-click the icon marked Keystroke (or „View Keystroke Report‟ in menu).
  • Page 24 Novell Privileged User Manager v2.2 Evaluation Quick Start Guide The keystroke replay is displayed for the event, please see below for descriptions. Each line is color-coded according to command risk. Stdin Stdout Any string can be searched for within the keystroke log...
  • Page 25 Novell Privileged User Manager v2.2 Evaluation Quick Start Guide The Output screen allows the auditor to replay every keystroke typed by the user using the navigation buttons at the bottom. The playback speed can be varied accordingly and the terminal type manually adjusted if required.
  • Page 26 Novell Privileged User Manager v2.2 Evaluation Quick Start Guide g) Click the Edit Record icon, you will see the following. Checkboxes to authorize the user activity If a decision can‟t be made, the event can be escalated by changing this value to an appropriate escalation group.

  • Page 27: Reviewing Keystroke Activity Forensically

    Novell Privileged User Manager v2.2 Evaluation Quick Start Guide Reviewing keystroke activity forensically a) Select the Reporting Console from the Home Menu b) Click on the Command Control Reports icon, then the Sample report icon c) Click on the LogFiles tab Notice that when rollover is enabled the old log files will all appear in the list and it is possible to still access any previous database and use it as part of the report.
  • Page 28 Enter *usvi* in the Command Filter field and check the Search audited commands box as below, then click Apply. Note that usvi is Novell‟s locked down version of vi, and gets called automatically when the user uses vi. e) Now click back to the Report Data tab Notice how the list of events has been filtered to include only those sessions where vi has been executed.
  • Page 29 Novell Privileged User Manager v2.2 Evaluation Quick Start Guide Double-click the event to bring up the keystroke player as below. g) Now type vi into the search field and click the Find button as below Notice that the highlight bar moves to the first instance of vi.
  • Page 30 Novell Privileged User Manager v2.2 Evaluation Quick Start Guide Click on the Filter tab Clear the Command Filter field and uncheck the Search audited commands checkbox, then click Apply. Click on the Report Data tab Notice how all events are now showing in the list.

  • Page 31: Use Command Control To Access A Privileged Shell

    Novell Privileged User Manager v2.2 Evaluation Quick Start Guide Use Command Control to access a privileged shell a) On your test system, create 2 user accounts: User account called cusr1 with /usr/bin/crush as the shell User account called rusr1 b) Login as cusr1 and notice how you are dropped straight into a shell.

  • Page 32: Review Novell Privileged User Manager System Logs

    Select your host by selecting it in the domain tree, then click View Host Log as below. This is the end of Review Novell Privileged User Manager System Logs To return to the Home Menu, click Close, then click Home near the top of the screen...

  • Page 33: Download Novell Updates And Deploy To Your Host

    Select the Package Manager console from the Home Menu b) Select Settings from the left-hand menu Enter the access credentials (supplied by Novell), into the User name and Password boxes as shown below, If applicable, enter any proxy host information, and then click Finish.
  • Page 34 Novell Privileged User Manager v2.2 Evaluation Quick Start Guide c) From the main Package Manager Console, select Add Packages from the left-hand menu. A selection list will be displayed as below. Make sure you select the checkboxes shown on the left for the Types and Components groups, at a minimum.
  • Page 35 Novell Privileged User Manager v2.2 Evaluation Quick Start Guide e) Verify that the Package Manager looks similar to the following: Click Home on the top menu to return to the Home Menu, then select the Hosts Console In this next step, we will check to make sure that there are no updated components in the Package Manager that need to be deployed to our test environment.
  • Page 36 Novell Privileged User Manager v2.2 Evaluation Quick Start Guide g) Update installed Framework host modules From the main console menu, select Hosts. You may have one or more hosts in your Framework depending on your evaluation, select the Hosts node at the top.
  • Page 37 Novell Privileged User Manager v2.2 Evaluation Quick Start Guide To select a range Click on the top item and then click on the bottom item while holding the shift key down. To select single items Hold the Ctrl key down while clicking individual rows to alternately select or deselect Once your updates have been selected as below, click Next.

This manual is also suitable for:

Privileged user manager 2.2

Table of Contents