1. Application safety manageme了舞nt and control system (iam-casb朋海)

Iam-casb consists of one basic 會信module and two extension modules:

Single sign on management module (i海銀am-sso) 

Iam-sso does not need the secondary dev唱聽elopment of the user business syst林志em to realize the single sign o黑事n of the HTTP / HTTPS business system事話 account. Each business system can un靜民iformly set up multi factor strong大媽 identity authentication on the Iam pla白鄉tform, including radius, ad, LDA工討P, OTP, digital certificate, SMS, w離鐘echat, fingerprint, etc. 有門
Application account management mo亮頻dule (iam-acm)
The iam-acm module provides the 唱生establishment of a centralized accou坐北nt management system and the imple明公mentation of the effective life cycle山但 management strategy of user acco著件unts. The addition, deletion an來鄉d modification of business syste畫開m accounts caused by personnel chang學白es can be managed only through Iam. On 報自the basis of centralized accoun開對t management, a centralized accou高玩nt authorization system is establis視麗hed to support the periodic aut她嗎omatic modification of business account林話s and eradicate the problem of wea志但k passwords. 
Application security reinforceme北少nt module (iam-wvp)

Iam-wvp establishes a white list model 用事for all business file paths and busin空開ess parameters through high-fine-grai上近ned feature library defense an草睡d the exclusively developed "white lis城事t" dynamic modeling technology, elim舊房inating the tedious work of strengthe雨鐘ning parameters in the source co間文de.

2. Operation and maintenance safety man新議agement system (iam-sms)

Provide support for various opera喝制tion and maintenance protocols and to間錯ols, expand a variety of multi f頻嗎actor identity authentication methods, 紅歌unify and reasonably divide permissio街秒ns, centralized access control, support西房 single sign on, account and passwo機討rd filling, seamless application publis人外hing, support mobile operation a窗看nd maintenance and distributed clu雨裡sters, and quickly meet compliance r朋金equirements.

3. Security policy control system通從 (iam-scm)

Iam-scm uses TCP quintuple contr資月ol to prevent business personne雨答l from bypassing the Iam platform to di算跳rectly access the business system. I煙外t can support two modes: Series deploym又舊ent and bypass deployment. Bypass 個樹deployment can also achieve 100% 光票blocking effect, and can effectively 跳兒control the connection initiated 不西by the intranet host to the extr業錢anet service port.

4. Audit traceability and threat長劇 analysis

The Iam platform can conduct compre來一hensive audit records on the access of拿跳 enterprise business personnel to OA, E就白RP, CRM, his / boss and other sy兒金stems, standardize the recording of費鄉 business form information, access 北車URL information, etc., and gene煙年rate e-mail and SMS reminders for the為放 logs that trigger security pol計黃icies; Uniformly display and an店跳alyze all delivery information at the o相體peration and maintenance level and影短 business level of the enterprise, a頻短nd can trace the whole business de你用livery process of Iam users. Help媽秒 enterprises protect confidential近能 information, continuously improve info大生rmation system management system答能, and meet compliance and best 個書practice requirements.