The following recommendations are only provided as a rough guideline. The number of policy servers required for your environment may vary greatly depending on usage.
Safeguard 7.1.1 licensing options include:
Safeguard for Sudo evaluation license allows you to manage unlimited Sudo Plugin hosts for 30 days; after 30 days, you are allowed to manage 10 Sudo Plugin hosts without receiving an alert.
A newly installed policy server comes with an evaluation license. You can install multiple evaluation licenses.
Both a Sudo Policy and a Sudo Keystoke license is required for Safeguard for Sudo features.
Although licenses are allocated on a per-agent basis, you install the licenses on Safeguard policy servers.
The pmlicense command allows you to display current license information, update a license (an expired one or a temporary one before it expires) or create a new one. See Installing licenses or Displaying license usage for more examples of using the pmlicense command.
You can deploy Safeguard software within any organization using UNIX and/or Linux systems. Safeguard offers a scalable solution to meet the needs of the small business through to the extensive demands of the large or global organization.
There is no right or wrong way to deploy Safeguard, and an understanding of the flexibility and scope of the product will aid you in determining the most appropriate solution for your particular requirements. This section describes the following sample implementations:
Decide which of the following configurations you want to set up:
Primary Server Configuration: Configure a single host as the primary policy server hosting the security policy for the policy group using either the pmpolicy (Privilege Manager for Unix) or sudo (Safeguard for Sudo) policy type. See Security policy types for more information about these policy types.
If you are configuring the primary policy server using the pmpolicy policy type, see the One Identity Privilege Manager for Unix Administration Guide.
Sudo Plugin Configuration: Join a Safeguard for Sudo host to a sudo policy or pmpolicy server group.
A single-host installation is typically appropriate for evaluations, proof of concept, and demonstrations of Safeguard. This configuration example installs all of the components on a single UNIX/Linux host, with protection offered only within this single host. All logging and auditing takes place on this host.
© 2024 One Identity LLC. ALL RIGHTS RESERVED. 이용 약관 개인정보 보호정책 Cookie Preference Center