Page tree
Skip to end of metadata
Go to start of metadata

The full text of this page is only available to our customers.

Please login or sign up. You may also need to provide your support ID if you have not already done so.

Product Name
Tivoli Security Compliance Manager
Publisher Page
IBM
Category
Secure Content and Threat Management
Release
TKU 2019-04-1
More Information
Publisher Link
IBM

Product Description

IBM Tivoli Security Compliance Manager  is designed to help an organization audit and report on corporate IT security. By providing the ability to flexibly manage and group corporate IT systems (laptops, desktops, servers, and so on); the ability to define corporate security policies in a centralized location; the ability to easily deploy these policies to a multitude of platforms; and the ability to collect a wide variety of compliance information; Tivoli Security Compliance Manager offers extensive audit and reporting capabilities on a wide range of corporate targets while being more cost effective than alternative solutions

Architecture

Known Versions

  • 5.1

Software Pattern Summary

Product Component

OS Type

Versioning

Pattern Depth

TivoliSCMServerUnix/WindowsActive,File,PackageInstance-based 
TivoliSCMClientUnix/WindowsActive,File,PackageInstance-based 

 

Platforms Supported by the Pattern

The patterns discovers IBM Tivoli Security Compliance Manager deployed on both UNIX and Windows platforms.

Identification

Software Instance Triggers

Pattern

Trigger Node

Attribute

Condition

Argument

TivoliSCMServerDiscoveredProcesscmdmatchesregex "(?i)\bjava(?:\.exe)?$"
and
argsmatchesregex "(?i)com\.ibm\.jac\.server\.BootStrap"
or
argsmatchesregex "(?i)com/ibm/jac/server/BootStrap"
TivoliSCMClientDiscoveredProcesscmdmatchesregex "(?i)\bjava(?:\.exe)?$"
and
argsmatchesregex "(?i)com\.ibm\.scm\.client\.SCMClient"
or
argsmatchesregex "(?i)com/ibm/scm/client/SCMClient"

 

Simple Identification Mappings

The trigger process is given a simple identification mapping:

Name

Command

Arguments

"IBM Tivoli Security Compliance Manager Client"

regex "(?i)\bjava(?:\.exe)?$"

regex "(?i)com(?:\.|/)ibm(?:\.|/)scm(?:\.|/)client(?:\.|/)SCMClient"

"IBM Tivoli Security Compliance Manager Server"

regex "(?i)\bjava(?:\.exe)?$"

regex "(?i)com(?:\.|/)ibm(?:\.|/)jac(?:\.|/)server(?:\.|/)BootStrap"

Obtaining install root

The patterns obtain install root from process arguments using regexes :

  • '-DSCM_SERVER_INST_DIR=(\w:[^:]+\\server)'
  • '-DSCMHOME=(/\S+/server)\s
  • '-DSCM_CLIENT_INST_DIR=(\w:[^:]+\\client)'
  • '-DSCMHOME=(/\S+/client)\s'

Obtaining the version information

Active

TivoliSCMServer pattern uses commands :

  • '%install_root%/scmserver version'
  • '"%install_root%/jacserver" version'

TivoliSCMClient pattern uses commands:

  • '%install_root%/jacclient version'
  • '"%install_root%\\jac" version'

File

TivoliSCMServer pattern looks for the following file to extract version from:

  • %install_root%/motd.txt

TivoliSCMClient pattern looks for the following file to extract version from:

  • %install_root%/jacclient.log

Package

TivoliSCMServer pattern extracts version from package using regex :

  • "(?i)^SCMServer$"

TivoliSCMClient pattern extracts version from package using regex:

  • (?i)^SCMClient$

Obtaining database details

TivoliSCMServer pattern obtains IBM DB2 DB details from %install_root%/server.ini configuration file.

After information was extracted pattern looks for IBM DB2 Server using rdbms_functions.jdbc_search function.

Application Model Produced by Software Pattern

Architecture

BMC Atrium Discovery uses the following approach for modeling IBM Tivoli Security Compliance Manager components.

Software Pattern Model

Pattern Trigger

The TivoliSCMServer pattern triggers on java process with arguments that match regex "(?i)com\.ibm\.jac\.server\.BootStrap" or regex "(?i)com/ibm/jac/server/BootStrap".

The TivoliSCMClient pattern triggers on java process with arguments that match regex "(?i)com\.ibm\.scm\.client\.SCMClient" or regex "(?i)com/ibm/scm/client/SCMClient".

SI Depth

The patterns create an instance-based Software Instance with the key based on SI type, and the host key.

Software Instance Modeling

Software Instance details of the IBM Tivoli Security Compliance Manager Server generated with this pattern:

Software Context view

The image below is an example of software context view of the IBM Tivoli Security Compliance Manager and related software:

Relationship creation

The pattern creates the following relationships:

model.rel.Communication : (Client=IBM Tivoli Security Compliance Manager Client, Server=IBM Tivoli Security Compliance Manager Server)
model.rel.Communication : (Server=IBM DB2 Server, Client=IBM Tivoli Security Compliance Manager Server)

Subject Matter Expertise

Subject Matter Expert input will be welcome on any other potential approaches not discussed to improving product versioning coverage and depth of
IBM Tivoli Security Compliance Manager model.

Information Sources

Open Issues

There are no known open issues with this pattern.

The full text of this page is only available to our customers.

Please login or sign up. You may also need to provide your support ID if you have not already done so.