IBM Tivoli Compliance Insight Manager V8.0 captures, interprets, and communicates log audit data results for audit and compliance reporting
IBM United States Software Announcement 207-149July 3, 2007
 ENUS207149.PDF (69KB)
|
At a glance
 |
| At a glance |
 |
IBM Tivoli Compliance Insight Manager V8.0 helps you to:
- Automate audit reporting through an enterprise compliance dashboard and compliance management modules
- Efficiently and reliably collect, store, and retrieve logs through automated log management
- Leverage easy-to-use search capabilities to optimize analysis and forensic investigation of potential security incidents contained in the stored logs
- Perform effective privileged user monitoring and audit (PUMA) on databases, applications, servers, and mainframes
- Integrate with IBM Tivoli identity management, access control, and security event management solutions to help optimize both compliance and incident response efforts
For ordering, contact:
Your IBM representative, an IBM Business Partner, or IBM Americas Call Centers at
800-IBM-CALL
(Reference: YE001).
Back to top
|
|
| Overview |
|
Security and compliance challenges are greater than ever because of increased requirements, costs of compliance failures, increased complexity in IT environments, and a lack of predictability and visibility across infrastructures. As a result, IT organizations must now find a way to support several imperatives such as managing security risks, addressing burgeoning compliance requirements, and supporting the core business, which sometimes overlap and sometimes compete. The need to serve these imperatives simultaneously, with limited resources, has created a complex and challenging IT environment for CIOs to face.
IBM Tivoli® Compliance Insight Manager V8.0 is an automated solution for monitoring, investigating, and reporting on user activity across the enterprise. Tivoli Compliance Insight Manager can provide continuous, non-intrusive assurance and documentary evidence that your data and systems are being managed in accordance with company policies.
You can quickly understand user activity through an easy-to-use security compliance dashboard that
summarizes log files on one overview graphic. Through this dashboard, you can quickly gain an
overview of your security compliance activities, understand user activities and security events in
comparison to regulatory and acceptable-use frameworks, and monitor privileged users and security
events.
Back to top
|
|
| Key prerequisites |
|
For details, refer to the Hardware requirements and Software requirements sections.
|
|
| Planned availability dates |
|
- July 6, 2007: Electronic software delivery
- July 13, 2007: Media
Back to top
|
|
| Description |
|
Using its patent-pending W7 methodology, Tivoli Compliance Insight Manager can help you interpret native log data in easily understood language.
With this information at your fingertips, you can:
- Quickly drill down into user behavior, system activity, and security information across all platform types
- Compare log entries to baseline policy to help pinpoint and minimize security problems
- Deliver reporting to support auditors' evidence requests and security managers' investigatory needs without the need for expensive platform experts
- Rapidly respond to incidents through the ability to set actions and alerts about privileged user activity, while allowing administrators to perform their jobs
Communicate audit and compliance information effectively and automate report distribution — Capturing and translating log data continuously can significantly ease the burden of responding to compliance measures. Tivoli Compliance Insight Manager goes one step further by allowing organizations to quickly produce user-oriented and data-oriented reports, along with customized and conditional reporting, to meet specific reporting needs.
In addition, Tivoli Compliance Insight Manager offers more than 100 best-practice, audit and compliance initiative-oriented reports used to help address corporate and audit reporting requirements. Optional compliance management modules, available in a separate chargeable media pack, for Sarbanes-Oxley, GLBA, HIPAA, Basel II, and ISO17799 help you jump start the monitoring and reporting process. Separate IBM Tivoli Compliance Insight Manager Management Modules Licenses are also required.
The automated report distribution facility enables you to define distribution lists of reports. These reports can then be sent to business owners for further verification or remediation as required by your internal business processes.
Create custom compliance modules through an advanced report definition wizard — Tailoring your reporting requirements to meet the specific and detailed needs of your internal audit or compliance requirements can be a long, tedious process. Tivoli Compliance Insight Manager offers a new custom reporting tool that allows you to hone in on specifics for your organization. In addition, it has numerous predefined reports and compliance-oriented reports in the optional compliance management modules. The reports can also be distributed through the automated report distribution feature to allow integration into verification processes or other business workflow.
Capture data with automated enterprise log analysis — Most organizations have thousands of points across the enterprise generating event logs, all of which must be captured and retained for regulators and auditors. Automating and centralizing the collection of log files can help make the process more efficient, saving time and money. Tivoli Compliance Insight Manager can help you securely and reliably collect, store, investigate, and retrieve logs across the enterprise for compliance and investigative use.
IPLA and Subscription and Support considerations
IPLA licenses can be transferred from one machine to another within, but not limited to, an enterprise. You may aggregate the capacity for all the processors the product is operated on to achieve a more economic price. This will result in a single Proof of Entitlement (PoE). It is your responsibility to manage the distribution of Value Units within the limits of the entitlement of the product license.
Subscription and Support must cover the same capacity as the product license entitlement.
Subscription and Support will be available in the country in which the agreement is made.
Back to top
|
|
| Product positioning |
|
Positioning Tivoli Compliance Insight Manager with Tivoli Security Compliance Manager: Tivoli Compliance Insight Manager and Tivoli Security Compliance Manager are complementary tools to provide an overall view of IT systems compliance. Tivoli Compliance Insight Manager collects audit trail data and reports on user behavior compliance against an acceptable use policy, and is an event audit product. Tivoli Security Compliance Manager collects system configuration data, and reports on systems' compliance against a security policy, and is a status audit product.
Positioning Tivoli Compliance Insight Manager with Tivoli Security Operations Manager: Tivoli Compliance Insight Manager and Tivoli Security Operations Manager are complementary tools to provide a view of real-time and network-based threats and user behavior across applications, databases, and operating systems. Tivoli Security Operations Manager offers a real-time dashboard and reporting engine, with support for leading network and security devices and hundreds of pre-defined correlation rules, enabling effective incident management. Tivoli Security Operations Manager collects and analyzes information in real-time from security devices across the network. Through advanced correlation capabilities, it is able to identify and prioritize security incidents, and enables your organization to respond to these incidents automatically.
Positioning Tivoli Compliance Insight Manager with Tivoli zSecure: Tivoli Compliance Insight Manager leverages the capabilities of Tivoli zSecure to enable inclusion of mainframe reporting on RACF®, ACF2, and Top Secret into Tivoli Compliance Insight Manager enterprise-wide compliance dashboard and reporting, so that users can view the compliance status of their mainframe along with the rest of their environment.
Positioning Tivoli Compliance Insight Manager for existing Consul customers: Tivoli Compliance Insight Manager offers additional functionality for existing Consul customers. With V8.0, users are provided with a new custom reporting tool, enhanced capabilities for automated report distribution, a new toolkit to quickly extend support to additional monitored platforms, and event source support for Tivoli Identity Manager and Tivoli Access Manager products.
Trademarks
Back to top
|
|
| Education support |
|
Comprehensive education for IBM Tivoli® products is offered through Worldwide Tivoli Education Delivery Services. A wide range of training options are available, including classes led by instructors, learning on demand, on-site training, and blended learning solutions.
For additional information, visit
Back to top
|
|
| Offering Information |
|
Product information is available via the Offering Information Web site
Also, visit the Passport Advantage® Web site
Back to top
|
|
| Publications |
|
The following Tivoli Compliance Insight Manager V8.0 English publications may be downloaded, at general availability, from the following Web site
IBM Tivoli Compliance Insight Manager
- Quick Start Guide (GI11-8175-00)
- Installation Guide (GI11-8176-00)
- User Guide (SC23-6544-00)
- User Reference Guide (SC23-6545-00)
- Tivoli GLBA Management Module Installation Guide (GI11-8178-00)
- Tivoli Basel II Management Module Installation Guide (GI11-8177-00)
- Tivoli HIPAA Management Module Installation Guide (GI11-8179-00)
- Tivoli ISO17799 Management Module Installation Guide (GI11-8181-00)
- Tivoli Sarbanes-Oxley Management Module Installation Guide (GI11-8180-00)
Back to top
|
|
| Technical information |
|
Specified operating environment
Hardware requirements
Minimum enterprise server requirements:
- 4x Intel® Xeon 3.0 GHz processor
- 6 GB RAM
Minimum standard server requirements:
- 2x Intel Xeon 3.0 GHz processor
- 4 GB RAM
Specific requirements will depend on log volumes and types of log data. The items listed above represent minimum requirements.
Software requirements
Minimum enterprise server and standard server requirements:
- Windows™ 2000 Advanced Server SP4 or Windows 2003 Server SP1
- Microsoft™ Internet Explorer 6.0
Planning information
Customer responsibilities: Software Maintenance is included with licenses purchased through Passport Advantage and Passport Advantage Express. Product upgrades and technical support are provided by the Software Maintenance offering as described in the Agreements. Product upgrades provide the latest versions and releases to entitled software, and technical support provides voice and electronic access to IBM support organizations, worldwide.
IBM includes one year of Software Maintenance with each program license acquired. The initial period of Software Maintenance can be extended by the purchase of a renewal option, if available.
Packaging
IBM Tivoli Compliance Insight manager is distributed with:
- International Program License Agreement (Z125-3301)
- License Information document
- CD-ROMs
- Publications (refer to the Publications section)
Security, auditability, and control
IBM Tivoli Compliance Insight Manager uses the security and auditability features of the operating system software.
The customer is responsible for evaluation, selection, and implementation of security features,
administrative procedures, and appropriate controls in application systems and communication
facilities.
Back to top
|
|
| Software Services |
|
IBM Software Services has the breadth, depth, and reach to manage your services needs. You can leverage the deep technical skills of our lab-based, software services team and the business consulting, project management, and infrastructure expertise of our IBM Global Services team. Also, we extend our IBM Software Services reach through IBM Business Partners to provide an unmatched portfolio of capabilities. Together, we provide the global reach, intellectual capital, industry insight, and technology leadership to support any critical business need.
To learn more about IBM Software Services or to contact a Software Services sales specialist, visit
To locate an IBM Business Partner, visit
IBM Tivoli Enhanced Value-Based Pricing terminology
IBM Tivoli Enhanced Value-Based Pricing: IBM Tivoli software products are priced using IBM Tivoli's Enhanced Value-Based Pricing. The Enhanced Value-Based Pricing system is based upon the IBM Tivoli Environment-Managed Licensing Model, which uses a managed-environment approach — whereby price is determined by what is managed rather than the number and type of product components installed.
For example, all servers monitored with IBM Tivoli's monitoring product (IBM Tivoli Monitoring) require entitlements sufficient for those servers. Other Tivoli products may manage clients, client devices, agents, network nodes, users, or other items, and are licensed and priced accordingly.
Unlike typical systems management licensing models that require entitlements of specific software components to specific systems, the IBM Tivoli Environment-Managed Licensing Model provides the customer flexibility to deploy its IBM Tivoli software products within its environment in a manner that can address and respond to the customer's evolving architecture. That is, as the architecture of a customer's environment changes, the customer's implementation of IBM Tivoli software can be altered, as needed, without affecting the customer's license requirements (as long as the customer does not exceed its entitlements to the software).
Under Enhanced Value-Based Pricing, licensing and pricing of server-oriented applications are determined based upon the server's use in the customer's environment. Typically, such applications are licensed and priced in a manner that corresponds to each installed and activated processor of the server managed by the IBM Tivoli application to help correlate price to value while offering a simple solution.
Where a server is physically partitioned, this approach is modified. This partitioning technique is the approach used with systems that have either multiple cards or multiple frames, each of which can be configured independently. For servers capable of physical partitioning (for example, IBM System p™ Scalable POWERparallel® Systems servers, Sun Ultra servers, and HP Superdome servers), an entitlement is required for each processor in the physical partition being managed by the Tivoli application. For example, assume that a server has 24 processors installed in aggregate. If this server is not partitioned, entitlements are required for all 24 processors. If, however, it is physically partitioned into three partitions, each containing eight processors, and Tivoli products were managing only one of the three partitions, then entitlements would be required for the eight processors on the physical partition managed by the IBM Tivoli application.
For servers with virtual or logical partitions, entitlements are required for all installed and activated processors on the server. For each IBM Tivoli application managing a clustered environment, licensing is based on the cumulative number of installed and activated processors on each server in the cluster. Where the cluster includes physically partitioned servers, the considerations described above concerning physically partitioned servers apply as well.
Enhanced Value-Based Pricing recognizes the convergence of RISC and UNIX®, and Microsoft Windows and Intel technologies, in order to simplify your licensing requirements, and to provide a smoother, more scalable model. Pricing and licensing does not differentiate between non-System z™ server platforms or operating systems. For some products, this platform neutrality extends to System z and other host servers as well.
IBM Tivoli Enhanced Value-Based Pricing terminology definitions
Authorized user
An authorized user is one and only one individual (named or unnamed) within or outside your enterprise. A Proof of Entitlement (PoE) must be obtained for each individual user accessing the program in any manner. A program licensed under an authorized user PoE may be installed on a single computer or server, and accessed by multiple users, provided that a PoE has been obtained for each individual user accessing the program either directly or indirectly (via a multiplexing program, device, or application server) through any means on behalf of the user.
Notes
Authorized users have unique specific identity and IDs cannot be shared. An ID can establish one or more connections and count as a single authorized user. Specific information to security products are:
- An authorized user of IBM Tivoli Federated Identity Manager is any ID that accesses an application or service managed or protected by IBM Tivoli Federated Identity Manager.
- An authorized user of IBM Tivoli Directory Integrator is one whose identity can be synchronized by IBM Tivoli Directory Integrator or that can access a connected system that can be synchronized by IBM Tivoli Directory Integrator.
- An authorized user of IBM Tivoli Identity Manager is any ID whose identity is recorded in the Tivoli Identity Manager identity store.
- An authorized user of IBM Tivoli Access Manager for e-business is any ID that accesses an application or service managed or protected by IBM Tivoli Access Manager for e-business.
Client device or client
A client device is a computing device that requests the execution of a set of commands, procedures, or applications from another computer system that is typically referred to as a server. Multiple client devices may share access to a common server. A client device generally has some processing capability or is programmable to allow a user to do work. Examples include, but are not limited to, notebook computers, desktop computers, desk side computers, technical workstations, appliances, automated teller machines, point-of-sale terminals, tills and cash registers, and kiosks.
Engine
An engine is also referred to as a central processor (CP) or processor. Engines for traditional workloads are called General Purpose CPs. Engines for Linux™ workloads are called Integrated Facility for Linux (IFL) engines or Linux-only engines. Engines for Coupling Facility workloads are called Integrated Coupling Facility (ICF) engines.
Enterprise
An enterprise is a person or single entity and those subsidiaries with more than 50% ownership.
External user
An external user is an authorized user who is not part of the enterprise.
IFL
This optional facility enables additional processing capacity exclusively for Linux workload, with no effect on the model designation of a System z or OS/390® server. Consequently, executing Linux workload on the IFL will not, in most cases, result in any increased IBM software charges for z/OS®, OS/390, VM, VSE, or TPF operating systems and applications. There is, as indicated, a charge associated with the IFL, and there may also be a charge for applications which run on the IFL.
The IFL may be dedicated to a single Linux-mode logical partition or it may be shared by multiple Linux-mode logical partitions. Installations should note that the Linux workspace enabled by this facility will not support any of the traditional S/390® operating systems (OS/390, TPF, VSE, or VM). Only Linux applications or Linux operating in conjunction with the Virtual Image Facility™, an environment that operates within a logical partition or in native S/390 mode and provides the capability to create multiple Linux images, are supported by IBM S/390 IFL.
IBM Tivoli Directory Integrator connected system
A connected system is any directory, database, application, or file integrated or merged by IBM Tivoli Directory Integrator.
IBM Tivoli Storage Manager HSM for Windows terabyte (TB) capacity
IBM Tivoli Storage Manager HSM for Windows includes primary HSM disk storage pool size combined with the amount of utilized HSM removable media storage pool. Storage pools are configured on the IBM Tivoli Storage Manager server.
IBM System Storage™ Archive Manager TB capacity
IBM System Storage Archive Manager includes primary disk storage pool size combined with the amount of utilized primary removable media storage used by the IBM System Storage Archive Manager server.
Capacity does not include:
- Copy storage pools for the space-managed data that reside on disk.
- Copy storage pools for the space-managed data that reside on removable media.
- Space used on the IBM Tivoli Storage Manager server for any purpose other than the primary storage of space-managed data.
- Disk on the host being space managed.
A virtual tape library (VTL) is considered a removable media device, so capacity is based on utilization. The minimum amount of capacity that can be purchased is one TB. Partial capacity will be rounded up to the next whole number of TBs. Additional capacity must be added in increments of one TB.
IBM TotalStorage® Productivity Center TB capacity
A TB capacity is each individual TB of storage capacity managed by the IBM TotalStorage Productivity Center products. Managed capacity for the IBM TotalStorage Productivity Center for Replication and IBM TotalStorage Productivity Center for Replication Two Site BC is defined as the source device capacity. Only the source device capacity is included in this pricing definition (not the target device).
Install
An install is a copy or instance of the program in the enterprise.
Instance
An instance is the occurrence of something in the enterprise. For example, if you have acquired an application instance authorization for an application, you are permitted to deploy and run one copy of the licensed application on one machine or LPAR. Another example would be if you have acquired an operating system instance authorization for an OS, you are permitted to deploy and run one copy of the licensed OS on one machine or LPAR.
Managed processor (charging under full capacity in the managed environment)
Charges are based on the active processors on the machines in the computing environment affiliated with the program rather than on the server where the program is run. The managed processors which require PoEs are defined in the License Information's program-unique terms.
Notes:
- IBM defines a physical processor in a computer as a functional unit that interprets and executes instructions. A physical processor consists of at least an instruction control unit and one or more arithmetic and logic units.
- Multicore technology allows two or more processors (commonly called cores) to be active on a single silicon chip. With multicore technology, IBM considers each core to be a physical processor. For example, in a dual-core chip, there are two physical processors residing on the single silicon chip.
- The program may not run on some or all of the processors for which PoEs are required by the program's valuation method.
- In the System z IFL environment, each IFL engine is considered a single physical processor.
- Threading, a technique which makes a single processor seem to perform as two or more, does not affect the count of physical processors.
- Where blade technology is employed, each blade is considered a separate server and charging is based upon the total number of processors on the blades with which the program is affiliated.
- Not all processors require the same number of Value Unit entitlements. To determine the number of Value Unit entitlements required, refer to the processor Value Unit conversion table on the Passport Advantage Web site
Millions of Service Units (MSUs)
MSUs is defined as Millions of Service Units (MSUs) per hour; units of workload capacity of an eligible machine. The number of MSUs per machine type/model is published by IBM and can be viewed online at
Network node or node
Network nodes include routers, switches, hubs, and bridges that contain a network management agent. A single network node may contain any number of interfaces or ports.
Network security device
A network-based security appliance or server running network security based software, that provides a unique source of security events and logs. Examples include, but are not limited to, firewalls, application firewalls, intrusion detection systems, intrusion protection systems, Virtual Private Networks (VPNs), threat protection products (anti-virus gateways), content filtering (Web, e-mail), Identity and Access Management, Directory Servers, network anomaly behavior products, and multi-function security appliances.
Partitions
A server's resources (CPU, memory, I/O, interconnects, and buses) may be divided according to the needs of the applications running on the server. This partitioning can be implemented with physical boundaries (Physical Partitions) or logical boundaries (Logical Partitions).
Physical Partitions are defined by a collection of processors dedicated to a workload and can be used with systems that have either multiple cards or multiple frames, each of which can be configured independently. In this method, the partitions are divided along hardware boundaries and processors, and the I/O boards, memory, and interconnects are not shared.
Logical Partitions are defined by software rather than hardware and allocate a pool of processing resources to a collection of workloads. These partitions, while separated by software boundaries, share hardware components and run in one or more physical partitions.
Port
A port is the physical connection between a device and the network.
Processor (per processor charging under full capacity)
In full capacity charging, PoE must be acquired for all activated processors (available for use) that are on the server where the program or a component of the program is run.
Notes:
- IBM defines a physical processor in a computer as a functional unit that interprets and executes instructions. A physical processor consists of at least an instruction control unit and one or more arithmetic and logic units.
- Multicore technology allows two or more processors (commonly called cores) to be active on a single silicon chip. With multicore technology, IBM considers each core to be a physical processor. For example, in a dual-core chip, there are two physical processors residing on the single silicon chip.
- In the System z IFL environment, each IFL engine is considered a single physical processor.
- Threading, a technique which makes a single processor seem to perform as two or more, does not affect the count of physical processors.
- Where blade technology is employed, each blade is considered a separate server and charging is based upon the total number of processors on the blade on which the program is run.
- When a server is shipped with six processors, but two of them are inactive, four processors are active for the customer.
- Not all processors require the same number of Value Unit entitlements. To determine the number of Value Unit entitlements required, refer to the processor Value Unit conversion table on the Passport Advantage Web site
Resource Value Unit (RVU)
A resource is the measurement for program license entitlements, which is based upon the quantity of the specific designated measurement used for a given program. An RVU is a pricing charge metric of IBM Tivoli's Enhanced Value-Based Pricing, which uses a managed-environment approach whereby price is determined by what is managed. Whenever the designated measurement is a resource, not all resources require the same number of RVUs. RVU schedules are located in the pricing examples section.
Server
A server is a computer system that executes requested procedures, commands, or applications to one or more user or client devices over a network. A PoE must be obtained for each server on which the program or a component of the program is run or for each server managed by the program. Where blade technology is employed, each blade is considered a separate server.
Standby or backup systems
For programs running or resident on backup machines, IBM defines three types of situations: cold, warm and hot. In cold and warm situations, a separate entitlement for the copy on the backup machine is normally not required and typically no additional charge applies. In a hot backup situation, the customer needs to acquire other license or entitlements sufficient for that server. All programs running in backup mode must be solely under the customer's control, even if running at another enterprise's location.
As a practice, the following are definitions and allowable actions concerning the copy of the program used for backup purposes:
Cold: A copy of the program may reside, for backup purposes, on a machine as long as the program is not started. There is no additional charge for this copy.
Warm: A copy of the program may reside for backup purposes on a machine and is started, but is idling, and is not doing any work of any kind. There is no additional charge for this copy.
Hot: A copy of the program may reside for backup purposes on a machine, is started, and is doing work. The customer must acquire a license or entitlements for this copy and there will generally be an additional charge.
Doing work includes, for example, production, development, program maintenance, and testing. It also could include other activities such as mirroring of transactions, updating of files, synchronization of programs, data or other resources (for example, active linking with another machine, program, database or other resource, and so on), or any activity or configurations that would allow an active hot switch or other synchronized switch over between programs, databases, or other resources to occur.
In the case of a program or system configuration that is designed to support a high availability environment by using various techniques (for example, duplexing, mirroring of files, or transactions, maintaining a heartbeat, active linking with another machine, program, database, or other resource), the program is considered to be doing work in the hot situation and a license or entitlement must be purchased.
Terabyte (T/TB)
1 terabyte of managed storage = 2 to the power of 40 bytes = 1,099,511,627,776 bytes, trillion bytes.
Tivoli Management Points
A Tivoli Management Point is a metric used to compute license quantities and is program specific.
Value Units
A Value Unit is a pricing charge metric for program license entitlements, which is based upon the quantity of a specific designated measurement used for a given program. Each program has a designated measurement. The most commonly used designated measurements are processor cores and MSUs. However, for select programs, there are other designated measurements such as servers, users, client devices, and messages. The number of Value Unit entitlements required for your specific implementation of the given program must be obtained from a conversion table associated with the program. You must obtain a PoE for the appropriate number of Value Unit entitlements for your implementation. The Value Unit entitlements of a given program cannot be exchanged, interchanged, or aggregated with Value Unit entitlements of another program. Whenever the designated measurement is a processor core, not all processors require the same number of Value Unit entitlements. To determine the number of Value Unit entitlements required, refer to the processor Value Unit conversion table on the Passport Advantage Web site
Product and licensing Web sites
A complete list of IBM Tivoli products is available at
IBM Tivoli product licensing documents are available at
Passport Advantage: Through the Passport Advantage Agreement, you may receive discounted pricing based on the total volume of eligible products, across all IBM brands, acquired worldwide. The volume is measured by determining the total Passport Advantage points value of the applicable acquisitions. Passport Advantage points are only used for calculating the entitled Passport Advantage discount.
To determine the required Tivoli product configuration under Passport Advantage, the Tivoli Enhanced Value-Based Pricing Model applies. Your environment is evaluated on a per-product basis.
Use the following two-step process to determine the total Passport Advantage points value:
- Analyze your environment to determine the number of Tivoli Management Points or other charge unit for a product. The quantity of each product's part numbers to be ordered is determined by that analysis.
- Order the Passport Advantage part numbers. A Passport Advantage point value, which is the same worldwide for a specific part number regardless of where the order is placed, is assigned to each Tivoli product part number. The Passport Advantage point value for the applicable part number, multiplied by the quantity for that part number, will determine the Passport Advantage points for that Tivoli product part number. The sum of these Passport Advantage points determines the Passport Advantage point value of the applicable Tivoli product authorizations, which then may be aggregated with the point value of other applicable Passport Advantage product acquisitions to determine the total Passport Advantage points value.
The discounted pricing available through Passport Advantage is expressed in the form of Suggested Volume Prices (SVPs), which vary depending on the SVP level. Each SVP level is assigned a minimum total Passport Advantage point value, which must be achieved, in order to qualify for that SVP level.
Media packs and documentation packs do not carry Passport Advantage points and are not eligible for SVP discounting.
For additional information on Passport Advantage, refer to the following Web site
The following Passport Advantage part number categories may be orderable:
- License and Software Maintenance 12 Months — this is the product authorization with maintenance to the first anniversary date.
- Annual Software Maintenance Renewal — this is the maintenance renewal for one anniversary that applies when you renew the existing coverage period prior to the anniversary date at which it expires.
- Software Maintenance Reinstatement 12 Months — this is when you have allowed the Software Maintenance to expire, and later wish to reinstate your Software Maintenance.
- Media packs — these are the physical media, such as CD-ROMs, that deliver the product's code.
- Custom Build Registration — this is used with products that have an IBM zSeries component. Ordering this part number results in a process to enable the customer to receive the zSeries code via the z/OS Customized Offerings packaging techniques, that is, ServerPac, SystemPac®, or the Custom Build Product Delivery Option (CBPDO).
Pricing examples: The pricing for Tivoli Compliance Insight Manager is based on RVUs. There are seven chargeable license components that may apply in any given installation. There are two license volume discount schedules. The following table illustrates the seven licenses and the volume discount that applies to that license.
Volume
discount
Price metric schedule
Tivoli Compliance Insight Manager installs Schedule 2
Management module instances Schedule 2
Network nodes Schedule 1
Network security devices Schedule 1
Servers instances Schedule 1
Applications and databases instances Schedule 2
z/OS events instances Schedule 2
The two volume discount schedules are as follows:
Schedule 1
Tier Number of resources RVUs per resource 1 0 - 10 1.00 2 11 - 100 0.90 3 101 - 250 0.80 4 251 - 500 0.65 5 Greater than 500 0.45
Schedule 2
Tier Number of resources RVUs per resource 1 0 - 2 1.00 2 3 - 5 0.90 3 6 - 10 0.80 4 11 - 20 0.70 5 Greater than 20 0.60
All Tivoli Compliance Insight Manager infrastructure, collection capabilities, storage capabilities, policy rules and data classification, user interfaces, and reporting capabilities are included in this pricing model. All of the data collection options that Tivoli Compliance Insight Manager supports (including agent based, agentless, Syslog, SNMP, SSH, ODBC, text file, OPSEC) are included. All fractional RVU totals are rounded up to the next whole number.
Pricing Scenario 1
Transaction 1
In phase 1, a customer wants to purchase Tivoli Compliance Insight Manager to set up compliance monitoring for a division that runs a large financial system. The initial deployment goal is to consolidate information from their core application and database servers. Their initial deployment will focus on:
- 1 Tivoli Compliance Insight Manager installation
- 28 servers
- 4 databases
Transaction 1 tables below reflect RVUs to order based upon Schedule 2 per install for the Tivoli Compliance Insight Manager, and per instance for each application and database. Schedule 1 is used to calculate RVUs to order for each server instance.
RVUs/resource
Price metric Quantity (Schedule 2) RVUs
Tier 1 Tivoli 1 1.00 1.00
Compliance
Insight Manager
installs
Total 1.00
Compliance
Insight
Manager RVUs
RVUs/resource
Price metric Quantity (Schedule 2) RVUs
Tier 1 2 1.00 2.00
Application
and database
instances
Tier 2 2 0.90 1.80
Application
and database
instances
Total 4.00
application and
database RVUs
(rounded up)
RVUs/resource
Price metric Quantity (Schedule 1) RVUs
Tier 1 Server 10 1.00 10.00
instances
Tier 2 Server 18 0.90 16.20
instances
Total server 27.00
RVUs
(rounded up)
Transaction 2
In phase 2, the customer wants to add 20 more databases.
The total number of databases licensed increases to 24.
RVUs/resource
Price metric Quantity (Schedule 2) RVUs
Tier 1 2 1.00 2.00
Application
and database
instances
Tier 2 3 0.90 2.70
Application
and database
instances
Tier 3 5 0.80 4.00
Application
and database
instances
Tier 4 10 0.70 7.00
Application
and database
instances
Tier 5 4 0.60 2.40
Application
and database
instances
24 Total RVUs 18.10
4 Less previously (4.00)
licensed from
transaction 1
(rounded up)
Difference 14.10
Total 15.00
Application and
database RVUs
(rounded up)
At this phase, the customer wants to accelerate their compliance reporting to satisfy auditor requirements. They would then purchase one Sarbanes Oxley Compliance Management Module to install on their Tivoli Compliance Insight Manager server, as well as purchasing entitlements for other critical network components.
Total additional quantities in the customer's environment to order are:
Incremental Previous New total
Price metric quantity quantity quantity
Tivoli 0 1 1
Compliance
Insight Manager
installs
Management 1 0 1
module
instances
Network nodes 0 0 0
Network 20 0 20
security
devices
Servers 65 28 93
instances
Application and 25 24 49
database
instances
z/OS event 1 0 1
instances
For Scenario 1, the final RVU quantities in the customer's environment are reflected in the table below, as well as the incremental quantity to order. All fractional RVU totals are rounded up to the next whole number.
Previous New total RVU
Price RVU RVU RVU quantity
metric Schedule quantity quantity to order
Tivoli 2 1 1 0
Compliance
Insight
Manager
installs
Management 2 0 1 1
module
instances
Network 1 0 0 0
nodes
Network 1 0 19 19
security
devices
Server 1 27 85 58
instances
Application 2 19 34 15
and
database
instances
z/OS event 2 0 1 1
instances
Pricing Scenario 2
A federal government agency wants to purchase a Tivoli Compliance Insight Manager installation at each of three divisions to set up independent compliance reporting for each of these divisions. These divisions want control of their own management system, policy rules, and operations, and will be set up and staffed independently. Division A is going to start by monitoring 200 servers only, division B will start with 100 servers and 45 databases, and division C will be covering 200 network security devices, 2,000 servers, 400 databases and applications, and 4 mainframes. All three divisions want to use the ISO17799 Compliance Management Module.
Summary of the agency's chargeable components
Monitored Division resource Division A Division B Division C totals Tivoli 1 1 1 3 Compliance Insight Manager installs Management 1 1 1 3 module instances Network 0 0 0 0 nodes Network 0 0 200 200 security devices Server 200 100 2,000 2,300 instances Application 0 45 400 445 and database instances z/OS event 0 0 4 4 instances
The following Scenario 2 table reflects total RVU quantities to order by applying Schedule 1 and Schedule 2, where appropriate. All fractional RVU totals are rounded up to the next whole number.
RVU quantity
to order
Price metric Quantity Schedule (rounded up)
Tivoli 3 2 3
Compliance
Insight Manager
installs
Management 3 2 3
module
instances
Network nodes 0 1 0
Network 200 1 171
security
devices
Server 2,300 1 1,184
instances
Application 445 2 271
and database
instances
z/OS event 4 2 4
instances
Additional Tivoli Compliance Insight Manager pricing details, interpretations, and examples — The price charged is dependent upon the number of unique resources (servers, applications, or databases) monitored regardless of how the data from them is collected. Events or logs may be collected individually from each resource, from a central management server (like ISS SiteProtector, McAfee ePO), or through a central Point of Presence. The price is based on the number of original event sources, independent of the collection implementation used. Examples of customer environments and interpretations on quantifying resources are listed below.
Note 1: A Tivoli Compliance Insight Manager license for an event source includes events only from that individual server log, application log, or database log.
Note 2: For platforms that support partitioning, each individual partition is considered to be a separate event source. Examples are LPARs on the mainframe, Solaris Zones, and Database Instances.
Note 3: Final RVUs to order are rounded up to the next whole number. Partial or fractional RVUs can not be entered or tracked in the entitlement system.
Example A: A customer is collecting Check Point Firewall-1 event logs from 25 firewalls through one Check Point Provider-1 management console connection via an OPSEC API. This counts as 25 Network Security Devices under Tivoli Compliance Insight Manager licensing. The fact that Tivoli Compliance Insight Manager collects the data via a single OPSEC connection is an implementation detail that doesn't affect the price.
Example B: A customer is collecting Windows Event Logs from 20 servers. These logs are all collected through the agent on a single Windows server for collection by Tivoli Compliance Insight Manager. For Tivoli Compliance Insight Manager licensing, this counts as 20 server licenses.
Example C: A customer is collecting Windows OS event logs, UDB database audit logs, and SAP application logs all from 10 critical servers. This counts as 10 servers plus 10 databases plus 10 applications under Tivoli Compliance Insight Manager licensing, even though there are only 10 unique hardware resources involved.
Example D: A customer is collecting Windows OS event logs and UDB database audit logs from two UDB instances on a single server. This counts as one server plus two databases, one for each database instance.
Example E:
A customer is collecting z/OS logs from four LPARs on a single sysplex.
This is counted as four z/OS event source licenses, one for each LPAR.
Back to top
|
|
| Ordering information |
|
This product is only available via Passport Advantage. It is not available as shrinkwrap.
Product information
Product Product
Licensed function title group category
IBM Tivoli Compliance Insight Tivoli Tivoli
Manager Security Compliance
Insight
Manager
IBM Tivoli Compliance Insight Tivoli Tivoli
Manager Management Modules Security Compliance
Insight
Manager
IBM Tivoli Compliance Insight Tivoli Tivoli
Manager for Applications and Security Compliance
Databases Insight
Manager
IBM Tivoli Compliance Insight Tivoli Tivoli
Manager for Network Nodes Security Compliance
Insight
Manager
IBM Tivoli Compliance Insight Tivoli Tivoli
Manager for Network Security Security Compliance
Devices Insight
Manager
IBM Tivoli Compliance Insight Tivoli Tivoli
Manager for Servers Security Compliance
Insight
Manager
IBM Tivoli Compliance Insight Tivoli Tivoli
Manager for z/OS Events Security Compliance
Insight
Manager
PID Charge unit
Program name number description
IBM Tivoli Compliance Insight 5724-S67 Resource Value
Manager Unit
IBM Tivoli Compliance Insight 5724-S67 Resource Value
Manager Management Modules Unit
IBM Tivoli Compliance Insight 5724-S67 Resource Value
Manager for Applications and Unit
Databases
IBM Tivoli Compliance Insight 5724-S67 Resource Value
Manager for Network Nodes Unit
IBM Tivoli Compliance Insight 5724-S67 Resource Value
Manager for Network Security Unit
Devices
IBM Tivoli Compliance Insight 5724-S67 Resource Value
Manager for Servers Unit
IBM Tivoli Compliance Insight 5724-S67 Resource Value
Manager for z/OS Events Unit
Passport Advantage customer: Media pack entitlement details
Customers with active maintenance or subscription for the products listed are entitled to receive the corresponding media pack.
Tivoli Compliance Insight Manager V8.0.0
Entitled maintenance Part
offerings description Media packs description number
Tivoli Compliance Insight IBM Tivoli Compliance BJ000EN
Mgr Applicatns and Dbs Insight Manager V8.0,
Resource VU Windows, English Media
Pack
Tivoli Compliance Insight IBM Tivoli Compliance BJ000EN
Mgr Network Nodes Resource Insight Manager V8.0,
VU Windows, English Media
Pack
Tivoli Compliance Insight IBM Tivoli Compliance BJ000EN
Mgr Ntwk Securty Devics Insight Manager V8.0,
Resourc VU Windows, English Media
Pack
Tivoli Compliance Insight IBM Tivoli Compliance BJ000EN
Mgr Resource VU Insight Manager V8.0,
Windows, English Media
Pack
Tivoli Compliance Insight IBM Tivoli Compliance BJ000EN
Mgr Servers Resource VU Insight Manager V8.0,
Windows, English Media
Pack
Tivoli Compliance Insight IBM Tivoli Compliance BJ000EN
Mgr z/OS Events Resource Insight Manager V8.0,
VU Windows, English Media
Pack
Tivoli Compliance Insight Manager Management Modules V8.0.0
Entitled maintenance Part
offerings description Media packs description number
Tivoli Compliance Insight IBM Tivoli Compliance BJ001EN
Mgr Management Modules Insight Manager Mgt
Resource VU Modules V8.0, Windows,
Eng MP
New licensees: Orders for new licenses will be accepted now.
Shipment will begin on the planned availability date.
Basic license
Ordering information for Passport Advantage: Passport Advantage allows you to have a common anniversary date for Software Maintenance renewals, which can simplify management and budgeting for eligible new versions and releases (and related technical support) for your covered products. The anniversary date, established at the start of your Passport Advantage Agreement, will remain unchanged while your Passport Advantage Agreement remains in effect. New software purchases will initially include twelve full months of maintenance coverage. Maintenance in the second year (the first year of renewal) can be prorated to be coterminous with your common anniversary date. Thereafter, all software maintenance will renew at the common anniversary date and include twelve full months of maintenance.
Refer to the IBM International Passport Advantage Agreement and to the IBM Software Maintenance Handbook for specific terms relating to, and a more complete description of, technical support provided through Software Maintenance.
The quantity to be specified for the Passport Advantage part numbers in the following table is per install, per application instance, per number of network nodes, per number of security devices, and number of processors. To order for Passport Advantage, specify the desired part number and quantity.
Passport Advantage program licenses
IBM Tivoli Compliance Insight Manager
Part
Part description number
IBM Tivoli Compliance Insight Manager for Servers
IBM Tiv Compliance Insight Mgr for E03X3LL
Servers per RVU Annual SW Maint Rnwl
IBM Tiv Compliance Insight Mgr for D618ZLL
Servers per RVU Lic+SW Maint 12 Mo
IBM Tiv Compliance Insight Mgr for Servers D6190LL
per RVU SW Maint Reinstate 12 Mo
IBM Tivoli Compliance Insight Manager
IBM Tivoli Compliance Insight Manager E03X0LL
per RVU Annual SW Maint Rnwl
IBM Tivoli Compliance Insight Manager D618TLL
per RVU Lic+SW Maint 12 Mo
IBM Tivoli Compliance Insight Manager D618ULL
per RVU SW Maint Reinstate 12 Mo
IBM Tivoli Compliance Insight
Manager for Network Nodes
IBM Tiv Compliance Insight Mgr Net E03X1LL
Nodes per RVU Annula SW Maint Rnwl
IBM Tiv Compliance Insight Mgr Net D618VLL
Nodes per RVU Lic+SW Maint 12 Mo
IBM Tiv Compliance Insight Mgr Net Nodes D618WLL
per RVU SW Maint Reinstate 12 Mo
IBM Tivoli Compliance Insight Manager
for Applications and Databases
IBM Tiv Compliance Insight Mgr Apps E03X4LL
DBs per RVU Annual SW Maint Rnwl
IBM Tiv Compliance Insight Mgr Apps D6191LL
DBs per RVU Lic+SW Maint 12 Mo
IBM Tiv Compliance Insight Mgr Apps D6192LL
DBs per RVU SW Maint Reinstate 12 Mo
IBM Tivoli Compliance Insight
Manager for z/OS Events
IBM Tiv Compliance Insight Mgr z/OS E03X5LL
Evts per RVU Annual SW Maint Rnwl
IBM Tiv Compliance Insight Mgr z/OS D6193LL
Evts per RVU Lic+SW Maint 12 Mo
IBM Tiv Compliance Insight Mgr z/OS D6194LL
Evts per RVU SW Maint Reinstate 12 Mo
IBM Tivoli Compliance Insight Manager
for Network Security Devices
IBM Tiv Compliance Insight Mgr NtwkSecDev E03X2LL
per RVU Annual SW Maint Rnwl
IBM Tiv Compliance Insight Mgr NtwkSecDev D618XLL
per RVU Lic+SW Maint 12 Mo
IBM Tiv Compliance Insight Mgr NtwkSecDev D618YLL
per RVU SW Maint Reinstate 12 Mo
IBM Tivoli Compliance Insight
Manager Management Modules
IBM Tiv Compliance Insight Mgr Mgt E03X6LL
Mod per RVU Annual SW Maint Rnwl
IBM Tiv Compliance Insight Mgr Mgt D6195LL
Mod per RVU Lic+SW Maint 12 Mo
IBM Tiv Compliance Insight Mgr Mgt D6196LL
Mod per RVU SW Maint Reinstate 12 Mo
To order a media pack for Passport Advantage, specify the part number in the desired quantity from the following table:
Part
Part description number
IBM Tivoli Compliance Insight Manager BJ001EN
Mgt Modules V8.0 Windows, Eng MP
IBM Tivoli Compliance Insight Manager BJ000EN
V8.0 Windows, English Media Pack
IBM Tivoli Compliance Insight Manager is also available via Web download from Passport Advantage.
Back to top
|
|
| Terms and conditions |
|
The information provided in this announcement is for reference and convenience purposes only. The terms and conditions that govern any transaction with IBM are contained in the applicable contract documents such as the IBM International Program License Agreement, IBM International Passport Advantage Agreement, and the IBM Agreement for Acquisition of Software Maintenance.
Licensing: IBM International Program License Agreement including the License Information document and PoE govern your use of the program. PoEs are required for all authorized use.
Part number products only, offered outside of Passport Advantage, where applicable, are license only and do not include Software Maintenance.
This software license includes Software Maintenance, previously referred to as Software Subscription and Technical Support.
License Information form number
Program
Program name number Form number
IBM Tivoli Compliance 5724-S67 L-RWID-725LQT
Insight Manager
The program's License Information will be available for review on the IBM Software License Agreement Web site
Limited warranty applies: Yes
Warranty: IBM warrants that when the program is used in the specified operating environment, it will conform to its specifications. The warranty applies only to the unmodified portion of the program. IBM does not warrant uninterrupted or error-free operation of the program or that IBM will correct all program defects. You are responsible for the results obtained from the use of the program.
IBM provides you with access to IBM databases containing information on known program defects, defect corrections, restrictions, and bypasses, at no additional charge. Consult the IBM Software Support Guide for further information at
IBM will maintain this information for at least one year after the original licensee acquires the program (warranty period).
Program technical support: Technical support of a program product will be available for a minimum of three years from the general availability date, as long as your Software Maintenance is in effect. This technical support allows you to obtain assistance (via telephone or electronic means) from IBM for product-specific, task-oriented questions regarding the installation and operation of the program product. Software Maintenance also provides you with access to updates, releases, and versions of the program. You will be notified, via announcement letter, of discontinuance of support with 12 months' notice. If you require additional technical support from IBM, including an extension of support beyond the discontinuance date, contact your IBM representative or IBM Business Partner. This extension may be available for a fee.
Money-back guarantee: If for any reason you are dissatisfied with the program and you are the original licensee, you may obtain a refund of the amount you paid for it, if within 30 days of your invoice date you return the program and its PoE to the party from whom you obtained it. If you downloaded the program, you may contact the party from whom you acquired it for instructions on how to obtain the refund.
For programs acquired under the IBM International Passport Advantage Agreement, this term applies only to your first acquisition of the program.
Authorization for use on home/portable computer: The program may be stored on the primary machine and another machine, provided that the program is not in active use on both machines at the same time. You may not copy and use this program on another computer without paying additional license fees.
Usage restriction: Yes
For additional information, refer to the License Information Document that is available on the IBM Software License Agreement Web site
International Passport Agreement
Passport Advantage applies
Yes, and through the Passport Advantage Web site at
This product is only available via Passport Advantage. It is not available as shrinkwrap.
Agreement for Acquisition of Software Maintenance: The following agreement applies for maintenance and does not require Customer signatures:
- IBM Agreement for Acquisition of Software Maintenance (Z125-6011)
Software Maintenance applies: Yes. Software Maintenance is included with licenses purchased through Passport Advantage and Passport Advantage Express. Product upgrades and technical support are provided by the Software Maintenance offering as described in the Agreements. Product upgrades provide the latest versions and releases to entitled software and Technical Support provides voice and electronic access to IBM support organizations, worldwide.
IBM includes one year of Software Maintenance with each program license acquired. The initial period of Software Maintenance can be extended by the purchase of a renewal option, if available.
While your Software Maintenance is in effect, IBM provides you assistance for your routine, short duration installation and usage (how-to) questions, and code-related questions. IBM provides assistance via telephone and, if available, electronic access, to your information systems (IS) technical support personnel during the normal business hours (published prime shift hours) of your IBM support center. (This assistance is not available to your end users.) IBM provides Severity 1 assistance 24 hours a day, 7 days a week. For additional details, consult your IBM Software Support Guide at
Software Maintenance does not include assistance for the design and development of applications, your use of programs in other than their specified operating environment, or failures caused by products for which IBM is not responsible under the applicable agreements.
For additional information about the International Passport Advantage Agreement and the IBM International Passport Advantage Express Agreement, visit the Passport Advantage Web site at
Other terms
Volume orders (IVO): No
System i™ Software Maintenance applies: No
Educational allowance available:
Not applicable.
Back to top
|
|
| Prices |
|
Information on charges is available at Web site
In the Electronic tools category, select the option for "Purchase/upgrade tools".
Passport Advantage
For Passport Advantage information and charges, contact your IBM representative or authorized IBM Business Partner. Additional information is also available at
Business Partner information
If you are an IBM Business Partner — Distributor for Workstation Software acquiring products from IBM, you may link to Passport Advantage Online for resellers where you can obtain Business Partner pricing information. An IBM ID and password are required.
Back to top
|
|
| Order now |
|
To order, contact the Americas Call Centers, your local IBM representative, or your IBM Business Partner.
To identify your local IBM representative or IBM Business Partner, call 800-IBM-4YOU (426-4968).
Phone: 800-IBM-CALL (426-2255)
Fax: 800-2IBM-FAX (242-6329)
Internet: callserv@ca.ibm.com
Mail: IBM Americas Call Centers
Dept. Teleweb Customer Support, 9th floor
105 Moatfield Drive
North York, Ontario
Canada M3B 3R1
Reference: YE001
The Americas Call Centers, our national direct marketing organization, can add your name to the mailing list for catalogs of IBM products.
Note: Shipments will begin after the planned availability date.
Trademarks
Back to top
Printable version