Managing information system security is a priority for every organization. In fact, the level of security provided by software vendors has become a differentiating factor for IT purchase decisions. Quest Software strives to meet standards designed to provide its customers with their desired level of security, whether it relates to privacy, authenticity and integrity of data, availability, or protection against malicious users and attacks.
This document describes the security features of Quest ActiveRoles Server 6.7. Here is the list of them:
- Encryption of Passwords
- Cryptographic Key Management
- Authentication of ActiveRoles Server Users
- Open Communications Ports and Firewall Configurations
- Secure Communications
- Password Policies
- Auditing and Logging
- Administration Privileges
- Replication and Synchronization
- Verification of Input from Users
- Patch Management
- IPv6 Compliance
- Daylight Savings Time Compliance
There is also an appendix that describes how ActiveRoles Server's security features meet the NIST's recommended federal information security standards as detailed in the Federal Information Security Management Act (FISMA).