Previous PDF

swipe to navigate

Organizations that are either considering deployment of Hitachi ID Identity and Access Management Suite, or have already deployed it, need to understand how to secure the Hitachi ID Suite server. Hitachi ID Suite is a sensitive part of an organization's IT infrastructure and consequently must be defended by strong security measures.

It is important to protect not only the Hitachi ID Suite server, but also the sensitive data it stores:

  • Administrator credentials used by Hitachi ID Suite to connect to target systems.
  • Console user passwords used by the Hitachi ID Suite administrator to sign into, configure and manage Hitachi ID Suite itself.
  • Passwords to managed accounts on target systems.
  • Password history and security question data for end users.

This document is organized as follows:

  • Basic precautions

    Some common-sense security precautions.

  • Physical access and security

    Provides suggestions on how to control physical access to the Hitachi ID Suite server.

  • Employee training

    Explains the importance of security awareness training for all employees.

  • Hardening the operating system

    Explains how to configure a secure Microsoft Windows server for use with Hitachi ID Suite.

  • Web server

    Explains how to select and configure the web server that serves the Hitachi ID Suite software.

  • Password and key management

    Provides guidance on password management.

  • Communication defenses

    Explains how to protect the data transmitted to and from each Hitachi ID Suite server.

  • Auditing

    Explains why auditing is important and provides guidance on monitoring access, events, and changes to Hitachi ID Suite.

  • Microsoft Security Compliance Manager Toolkit

    Information on Microsoft Security Compliance Manager.

Previous Next PDF