Chatta subito con l'assistenza
Chat con il supporto

Security Analytics Engine 1.0 - User Guide

Security Analytics Engine Overview
Introduction
Launch the Security Analytics Engine Administration web site
Web site components

Introduction

The Security Analytics Engine from Dell™ provides an additional level of security that can be customized to fit the needs of every application. The Security Analytics Engine works by monitoring users and browsers to ensure they are not accessing applications from locations, networks, etc. that are potentially unsafe, thus reducing the threat of a malicious user or browser gaining access to your application.
How the Security Analytics Engine works
When a user attempts to access an application which uses the Security Analytics Engine, they are evaluated by a customizable risk policy to determine the risk of allowing the user access. Each risk policy is made up of conditions which have assigned scores. For each access attempt these conditions are evaluated, and the scores for the conditions that are triggered during the attempt are combined to create a risk score.
For example, suppose an application has a risk policy containing the following conditions:
For an access attempt outside of the user’s login time pattern (Abnormal Time), assign a score of 4.
For an access attempt from a whitelisted IP address range (Whitelist), assign a score of -2.
For an access attempt from a restricted country (Restricted Country), assign a score of Major Threat.
A user attempting to access the application from a whitelisted IP address range at 10 p.m., instead of their regular access time of 9 a.m., is assigned a risk score of 2 (-2 for the IP address and 4 for the time of access). This risk score is then turned into a threat level (a numeric value between 0 and 7), which is sent to the application. For this example, the risk score of 2 would also be a threat level of 2 since it already falls within the threat level range. However, if the user is also attempting access from a restricted country they would receive a threat level of 7 since triggering a condition assigned the score of Major Threat will increase a risk score by 1000.
The application then uses the threat level to determine whether to allow access, request additional authentication information before allowing access, or deny access. A user may also contact a help desk operator for further assistance if they are unable to access an application due to a high threat level.
* 
NOTE: Help desk operators should see the Security Analytics Engine Help Desk User Guide for more information.

Launch the Security Analytics Engine Administration web site

You can access the Security Analytics Engine Administration web site from any computer that has network access to the server.
To launch the fallback login page of the Security Analytics Engine Administration web site:
* 
NOTE: The first time the Security Analytics Engine Administration web site is launched, you are prompted to create a fallback password that is required for all future fallback logins. The fallback password can later be changed using the Fallback Password page of the Security Analytics Engine Administration web site.
Once logged in using the fallback password, the Security Analytics Engine can be configured to accept Active Directory® or LDAP credentials from the Security Settings page of the Administration web site.
1
Open your web browser and enter the URL for the fallback login page of the Security Analytics Engine Administration web site:
https://<server>/SecurityAnalyticsEngine/Fallback
* 
NOTE: Where <server> is the IP address or host name (or ‘localhost’) of the server where you installed the Security Analytics Engine.
2
When the web site is launched, enter the fallback password.
3
Click Log in.
4
The Home page of the Security Analytics Engine Administration web site appears.
To launch the Security Analytics Engine Administration web site:
* 
NOTE: Once the Security Analytics Engine has been configured to accept Active Directory® or LDAP credentials from the Security Settings page of the Administration web site, the following procedure is used for non-fallback logins.
1
Open your web browser and enter the URL of the Security Analytics Engine Administration web site:
https://<server>/SecurityAnalyticsEngine
* 
NOTE: Where <server> is the IP address or host name (or ‘localhost’) of the server where you installed the Security Analytics Engine.
2
When the web site is launched, enter your username and password.
3
(Optional) Select the Keep me logged in check box to remain logged in to the Security Analytics Engine Administration web site until the Log Out option is selected.
4
Click Log in.
5
The Home page of the Security Analytics Engine Administration web site appears.

Web site components

The Security Analytics Engine Administration web site consists of the following components allowing you to navigate and use the Security Analytics Engine Administration web site.
Heading bar
Main web pages
Navigating the Security Analytics Engine Administration web site
Strumenti self-service
Knowledge Base
Notifiche e avvisi
Supporto prodotti
Download di software
Documentazione tecnica
Forum utente
Esercitazioni video
Feed RSS
Contatti
Richiedi assistenza sulle licenze
Supporto tecnico
Visualizza tutto
Related Documents

The document was helpful.

Seleziona valutazione

I easily found the information I needed.

Seleziona valutazione