Compliance Automation overview
Administrators must typically enforce compliance with corporate, industry, and regulatory requirements. Maintaining compliance can be a time-consuming manual activity. Compliance audits are disruptive and expensive.
In the BMC BladeLogic Automation Suite, Compliance Automation provides a uniform, closed-loop solution that lets administrators use consistent policies, processes, and tools across physical, virtual, and cloud environments. By taking advantage of the use cases in Compliance Automation, administrators can determine whether they are following the rules and procedures necessary to ensure operational or regulatory compliance across their servers, applications, and network devices.
For example, an administrator might determine that a business service requires that a particular application should be deployed on a group of servers. The administrator can use discovery to determine what software is currently installed on the server group. He or she can set up a compliance policy to test for the presence of the software application. A Compliance Job can run regularly to ensure that the servers in the group have the correct application installed. If a server is not in compliance, the system can automatically generate a change ticket so the correct software can be deployed to the server after the proper authorizations are received. Finally, dashboard reporting lets IT managers and administrators monitor overall trends in compliance for the business service in question.
When the products involved in Compliance Automation detect violations, administrators can significantly increase compliance and dramatically reduce the effort and time needed for audits by enforcing controls and policies across geographic boundaries and complex IT environments.
Compliance Automation functional architecture
Configuration Automation provides the ability to perform automated audits of configurations, comparing them to policies or gold standards and remediating noncompliance. The use cases described in this release only cover cross-product solutions for Compliance Automation. For a general description of all the Compliance Automation capabilities, see Compliance Automation functional architecture.
Compliance Automation use cases
There are many options for automating the process of maintaining compliant configurations in the data center. Some of the most common use cases are:
- Enforce continuous compliance for servers
- Enforce continuous compliance for networks
- Enforce continuous compliance for databases
- Assess server software compliance
- Report on compliance status and trends
These use cases are accomplished by integrating the BMC Server Automation monitoring, auditing, compliance, and remediation processes with IT management systems such as BMC Application Discovery and Dependency Mapping and BMC Remedy ITSM. The integration of BMC Server Automation with BMC Remedy ITSM is accomplished through BMC Atrium Orchestrator and standard APIs.
Related information and Product Availability and Compatibility
The following table lists the products involved in the Compliance Automation use cases and provides access to related documentation (such as technical bulletins, release notes, and other product documents) for those products. Click a product in the "Products involved" column to go to the related product page on the BMC Support site.
To see a list of BMC BladeLogic Automation Suite products and the use cases to which they apply, see Products involved.
Report on compliance status and trends
Product Availability and Compatibility
To find information about platforms currently supported by the products involved in the use cases, see the Product Availability and Compatibility section of the BMC Software Customer Support site.