This section provides a brief overview of the security aspects of BMC Discovery. It is intended to provide network administrators with the information required to run BMC Discovery in their environment. It also provides the information required to enable security teams to verify that BMC Discovery is secure and does not compromise the security of their network.
To mitigate the logjam vulnerability, the
openssl-1.0.1e-cve-2015-4000 patch is excluded from the openssl RPM that is shipped with the monthly OSU. This update prevents compatibility issues with existing BMC Discovery deployments. For more information about this update, see OSU documentation.
The following topics are covered in this section:
- Security in BMC Discovery
- An appliance-based solution
- Appliance hardening
- Understanding security audits
- Information security
- System communications
- Discovery communications
- Firewall Port Summary
- DISA Secure Technical Implementation Guidelines
- Running in FIPS compliant mode
- PCI Data Security Standard compliance