Scott Shelton (Customer) asked a question.
Methods of collecting local OS accounts, groups, and entitlements
Does RSA provide any methods for collecting accounts, groups, and entitlements from local operating systems such as Linux and Windows? If not, does RSA or anyone else provide any guidance on products or methods of accomplishing this task?
It is impractical to do this directly as the volume of data you have to collect to get the relevant information is massive. You must leverage DAG (Data Access Governance). This requires a third party product. You should contact RSA Sales for more information.
The following article gives an overview but RSA Sales can provide you with full guidance.
RSA Announces Updated Capabilities for Unstructured Data Collection for Data Access Governance DAG Module and End of Primary Support EOPS for Current OEM Unstructured Data CrawlerAggregation Capabilities | RSA Community
DataReach can be considered for the described use case.
Unfortunately with the recent changes to RSA community, some information is still missing, DataReach is among the missing ones.
I suggest you reach out to your account manager and ask to schedule a meeting to discuss DataReach in more details.
Thanks Boris. I understand the documentation is missing from the new site, but could you give a quick explanation as to what DataReach is?
DataReach is a scalable solution for governing and provisioning many databases, Windows & UNIX endpoints without the need for individual configuration.
This is middleware that extends the RSA GL platform with the ability to efficiently perform routine collections of administrative access, from many relational databases, Windows or UNIX (different flavours) endpoints. Any relational database technology is supported, provided there is a valid JDBC driver available for it.
The solution also comes packaged with a matching provisioning connector, allowing for automatic assignment and revocation of access across the landscape. This connector requires only a single configuration that is applicable for the entire environment.