This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SecurID® Governance & Lifecycle Datareach

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Versions
All Downloads

Product Resources

Architecture

pastedImage_1.png

 

Components

 

Master Controller is the component responsible for serving as a central configuration point. All agent configurations, drivers, certificates and data to be collected are centrally managed on the Master Controller. The Master Controller is also responsible for collating the data collected by all the agents, error handling and piping data to the Oracle database.

Agents are responsible for collecting data from endpoints. These endpoints can be any JDBC compliant databases, AWS, UNIX or Windows systems.

Database stores all the data and metadata collected from the target systems.  All the pruning and data validation stored procedures are contained in this database. Data Reach requires an Oracle 11g or above database for staging the collected data. This can be a standalone Oracle database, or the database used by RSA IGL.

Plugins provide optional integrations with third party system for host configurations (CMDB), credentials (PAM) and ticketing systems for error handling. The plugin architecture allows Data Reach to maintain a small footprint and features added as needed.

 

3rd Party Integrations

 

pastedImage_1.png

Host List Providers (Targets)

Credential Providers (Credentials)

Error Handlers (Error Reporting)

 

Deployment Types

 

Single Server In this scenario, all 3 components are installed directly on your IGL application server.

Agent, Local Database In this scenario, the master controller and the database are installed on the IGL application server, while agents are deployed throughout your environment.

Agent, Dedicated Database In this scenario, agents are deployed throughout your environment.  The dedicated Oracle database instance separate from IGL must be provided by the organization. In this deployment, the master controller can be installed on any of the systems.

 

Feature Releases

 

Feb 2021 - Support for collecting AWS IAM information for multiple AWS accounts under multiple AWS Organizations.

 

Dec, 2020 - Out of the box collection package for MongoDB accounts.

 

Jul, 2020 - Out of the box collection package for Solaris accounts and group entitlements.

 

Jun, 2020 - Support for CyberArk Central Credential Provider (CCP) as a supported credential provide plugin.

 

Jan, 2020 - Out of the box collection package for AIX accounts and group entitlements.

 

Dec, 2019 - Multi Windows provisioning service.

 

Roadmap

 

Q1 2021

AWS Bulk Collections Support - Data Reach will support collection of IAM data from multiple accounts under a one or more organizations. This will allow accounts to be dynamically available for collections. The collections will support the following data elements

  • Accounts
  • Account Policies (Inline and Managed)
  • Groups
  • Group Policies (Inline and Managed)
  • Group Members
  • Roles
  • Role Policies (Inline and Managed)
  • Policies

 

Q2 2021

Support provisioning micro services
0 Likes
Was this article helpful? Yes No
No ratings

On this page

© 2023 RSA Security LLC or its affiliates. All rights reserved.