Professional Documents
Culture Documents
Features Summary
Version 1.13
Table of Contents
Vanguard Security Solutions Version 1.13 Features Summary ................................ 3
All Vanguard Products: IBM z/OS Compatibility and Support ................................................. 3
Vanguard Administrator .......................................................................................................... 3
User Certificate Report (New).................................................................................................. 3
Rename Group Command Option Added ................................................................................ 3
REBUILD Command Request Redesigned.............................................................................. 4
Expanded Internal Storage Capacity ........................................................................................ 4
Extract Supports Secured Signon Encrypted Keys................................................................... 4
Enhanced OBSOLETE Process ................................................................................................ 4
Enhanced Clone Group and Clone User Processing ................................................................ 5
Improved Clone Group User Interface ..................................................................................... 5
New Report: WORKATTR Account with Connect Groups .................................................... 5
Vanguard Advisor.................................................................................................................... 5
Larger SMF Record Capacity ................................................................................................... 5
Support Added for OPN and SPC Log Reason Codes ............................................................. 6
Improved the Extract File Create Process ................................................................................ 6
Improved Log Stream Unavailability Processing and Notification .......................................... 7
Vanguard ez/SignOn................................................................................................................ 7
New Distribution Method ......................................................................................................... 7
Adds Support for Microsoft Platforms ..................................................................................... 7
Vanguard ez/Token.................................................................................................................. 7
Supports Authentication per Application ................................................................................. 7
Vanguard Enforcer .................................................................................................................. 8
Enhanced Active Alert 14 ........................................................................................................ 8
Enhanced Baseline Build User Interface .................................................................................. 8
Improved Diagnostics............................................................................................................... 9
Enhanced Baseline Build.......................................................................................................... 9
Vanguard inCompliance .......................................................................................................... 9
Enhanced Reporting ................................................................................................................. 9
Exception Migration and Database Backup/Restore Utility Created ..................................... 10
Performance Improvements on Load and Analyze ................................................................ 11
Improved Memory Utilization for IRRDBU00 Usage ........................................................... 11
Enhanced Global Settings....................................................................................................... 11
Improved Upgrade Migration Path ......................................................................................... 12
New Messages ........................................................................................................................ 12
Vanguard PasswordReset ...................................................................................................... 12
Enhanced Email Options ........................................................................................................ 12
Masking Available for Authentication Questions .................................................................. 13
Page 1
Page 2
Vanguard Administrator
User Certificate Report (New)
Vanguard Administrator now has a new report, referred to as the User Certificate Report,
that captures and reports on digital certificate expiration information. It provides reporting
insight into the expiration status of digital certificates that have expired, or will be expiring,
in a number of specified days. This report, available through batch job VRADCRP1,
provides advanced notice of certificate expiration which enables security personnel to avoid
operational outages and ensure the seamless continuation of secure data transmissions. The
sample JCL is available in member VRADCRP1 of the Vanguard Sample Library.
Benefits
Page 3
Benefits
Improves processing.
Improves performance.
Ensures that profiles required by WebSphere Application Server for z/OS are
not inadvertently deleted.
Page 4
Vanguard Advisor
Larger SMF Record Capacity
The Vanguard Advisor Detail Report Table now enables additional event
reporting to improve the batch report process.
The Summary Table, produced for Standard Summary Reports, can now be
adjusted through a new parameter, referred to as the SUMTABMAXSTOR in
the VSROPT00 member of the Options library. This parameter enables the
internal table to be adjusted for size so it controls the amount of internal
Page 5
The number of events in a Detail Report is now only limited by the amount of
available DASD space; thus, decreasing the risk of data loss.
The size of the Summary Table can now be adjusted through a new
SUMTABMAXSTOR parameter enabling greater control over internal storage
utilization.
OPN indicates that the user has the Operations attribute and SETROPTS
NOOPERAUDIT in effect.
SPC indicates that the user has the Special attribute and SETROPTS
NOSAUDIT in effect.
Benefits
When the VSRSMF2 (2nd phase of the process) input file was not created by
VSRASMF1 (1st phase of the process).
Benefits
Increases the number entries during the Extract File Create process.
Allows users to process additional log files by increasing the amount of storage
Page 6
available to process.
Avoids outages caused by users attempting to use a log stream with multiple
processes.
Vanguard ez/SignOn
New Distribution Method
Vanguard ez/SignOn can now be installed easily and more efficiently across the enterprise.
ez/SignOn now uses a Group Policy Object (GPO) distribution method that will deploy
software across the network even if the File and Printer sharing networking feature is
disabled.
Benefits
Vanguard ez/Token
Supports Authentication per Application
When ez/Token is implemented, applications that users log on to such as TSO, CICS, IMS
and others will now, by default, authenticate through ez/Token two-factor authentication in
lieu of a RACF password only. Users now also have the ability to limit the applications
authenticating through ez/Token (i.e., opt out of the default setting).
Page 7
Benefits
Vanguard Enforcer
Enhanced Active Alert 14
Vanguard Enforcer now has the ability to detect and notify personnel when particular user
IDs are revoked. This new active alert saves time and alleviates frustration when user IDs
are revoked without authorization by providing an instant notification associated with the
event.
Benefits
ISPF panels are now fully point-and-shoot compatible (text fields on an ISPF
dialog screen are cursor-sensitive - if a field is selected (cursor placement and
pressing the ENTER key), the action described in that field is performed).
Fields that are point-and-shoot enabled can be displayed by using the ISPF 0
selection and then selecting the Colors action bar item and then the Point-andshoot selection.
Enforcer now starts from an ISPF command line entry (not the VSSSPF or
VRASPF menus).
Benefits
Page 8
Improved Diagnostics
Changes to the Vanguard Enforcer PTF Analysis now provide extensive problem
diagnostics to ensure an efficient and simpler resolution. Examines all data sets allocated
by ISPF session and shows the PTF level of each member found as well as the DD name
and DS name of where it was found. Additionally, the PTF level of each object member is
shown, not just the PTF level of the load module.
Benefits
Error information does not need to be re-built during new baseline build.
Vanguard inCompliance
Enhanced Reporting
A new Reports web page enables users to configure reports, specify email options, set
daily automation settings for report generation and generate reports immediately. Vanguard
inCompliance can now generate and email reports as PDF files.
The following five system reports are now available:
General Summary Report (for all Systems)
The General Summary Report is a high-level report that details which systems are being
audited, the last Review Result (FAILED, BORDERLINE or PASSED), Tests Performed,
Tests Not Compliant, Exclusions, Test Compliant, Zero Tolerance, Compliant Categories,
Not Compliant Categories, Active Categories and Inactive Categories.
Summary Report by Category (for all Systems)
The Summary Report by Category (for all Systems) utilizes data from the General
Summary Report, that provides a report for each system detailed by Category (Users,
Groups, Data Sets, General Resources and System Resources) with information on Total
Tests Performed, Not Compliant, Exclusions, Compliant and Zero Tolerance by Category.
Summary Report by Subcategory (for all Systems)
The Summary Report by Subcategory (for all Systems) contains all information from the
General Summary Report plus a breakdown by Category into Subcategories the Total Tests
Performed, Not Compliant, Exclusions, Compliant and Zero Tolerance. This report
provides a more detailed view by Subcategory, where the Subcategories are based on the
category.
Page 9
Provides the ability to set the start time for the report automation process.
Allows users to specify which email addresses the reports will be automatically
emailed to.
Enables users to include summaries and detail information; provides the ability
to limit the number of records for Not Compliant and Exclusions.
Provides the ability to generate a system detail report for each system that
inCompliance is configured to.
Eliminates the need to redefine Category Settings and redo Exclusions after
reinstalling inCompliance through a backup utility.
Page 10
Provides a 30% reduction in time over the same work load previously.
SMTP Mail Server New field to enter the address of the SMTP server used to
send email messages at an organization. The entry can be in DNS or IP format.
Start Time For Daily Automation Process New field to select the Hour and
Minute in 24-hour time format which the Windows Service will use to start the
daily automation process.
Benefits
Enables administrators to easily find and change system wide settings by being
better informed.
Greater ease-of-use.
Page 11
Benefits
New Messages
New messages have been added to Vanguard inCompliance for INC Web and the ICMG
Started Task.
The new INC Web messages are reporting messages for the Reports web page. These
messages, for example, inform administrators when report settings have been updated, an
invalid email address was entered or an incorrect email address format was input.
The new ICMG Started Task messages are started task messages such as: ICMG055 - Load
library is not APF authorized and ICMG056 - Attach of IRRDBU00 failed.
Benefits
Vanguard PasswordReset
Enhanced Email Options
Vanguard Password reset can now be configured to recognize and require a particular
corporate email domain (i.e. @mycompany.com) as the default for email accounts. This
ensures that only corporate email accounts are used to register with PasswordReset.
Additionally, users now have the ability to log in to PasswordReset using only the local
part of an email address (for example, jsmith, without the @mycompany.com) to increase
efficiency.
Page 12
Benefits
Page 13
Controls which users are authorized to execute the SEARCH command and
associated parameters.
Prevents users from displaying RACF classes that contain large quantities of
profiles, such as the USER class.
Prevents users from displaying resource information that could be used for
malicious purposes.
Page 14
Streamlines the datecode process to make the licensing process easier for users.
Customers can now load multiple datecodes into the GS.DATECODE profile.
Vanguard SecurityCenter
Microsoft Certifications Earned
Vanguard SecurityCenter has attained the following Microsoft certifications:
Benefits
Provides a quick and easy method of counting the number of access list entries
for Data Set, Group and DB2 profiles.
Page 15
Easier installation.
Page 16