Tectia Guardian

• Tectia Guardian is your tool to:

  • Collect reliable information for forensics
  • Oversee and control external and in-house
  • system administrators and remote host access
  • Improve the auditability of your business processes
  • Monitor a variety of protocols, the following are supported: SSH, SCP, SFTP, RDP5, RDP6, RDP7, VMware View, VNC, X11, Telnet, TN3270 and Citrix ICA protocols

Tectia Guardian is designed to control access to servers and other network devices so that you can specify precisely who, when, how and from where can open a connection. Tectia Guardian can be used to disable unwanted channels and to verify the server host keys in order to increase server security. Guardian can transparently audit all channels – including the encrypted channels used by power and administrative users.

The session details of various type connections (SSH, RDP, VNC, ICA and others) are recorded as indexed audit trails. The collected data is stored encrypted, preventing any modification or manipulation of the data.

The audit trails can be searched and played back by authorized persons. Each recorded session can be viewed just like watching the administrator’s monitor while the person was working.

Tectia Guardian gives you the power to audit transparently the SSH (including X11 forwarding), SCP, SFTP, RDP5, RDP6, RDP7, ICA, VMware View, VNC, X11, Telnet and TN3270 channels used to administrate servers and networking devices.

All traffic (including configuration changes, executed commands, etc.) is logged and archived into signed and encrypted audit trails, preventing any modification or manipulation of the data. In case of any problems (such as server misconfiguration, database manipulation or unexpected shutdown) the circumstances of the event are readily available in the audit trails so that the cause of the incident can be easily identified.