立即与支持人员聊天
与支持团队交流

On Demand Global Settings Current - Security Guide

Introduction

Managing information system security is a priority for every organization. In fact, the level of security provided by software vendors has become a differentiating factor for IT purchase decisions. Quest strives to meet standards designed to provide its customers with their desired level of security as it relates to privacy, confidentiality, integrity and availability.

This document describes the security features of Quest On Demand core services such as the On Demand Notification Service and other shared services. This includes access control, protection of customer data, secure network communication, and cryptographic standards.

About On Demand

This section contains information on the following On Demand components:

About On Demand Core
About the On-Premises Agent
About the Notification Service
Admin Consent and Service Principals
Quest Identity Broker
Subscription Services

About On Demand Core

On Demand Core is a cloud-based service that provides core services to other Quest Software as a Service (SaaS) product solutions.

The core services provided are as follows:

Uniform user interface experience
Azure tenant registration and authorization (administrator consent)
Common auditing and logging
Quest Identity Broker integration for secure and seamless Single Sign-On (SSO) across all Quest SaaS products
Notifications to other Quest SaaS products about key events, such as tenant registration
Subscription management (records of purchases)
Connectivity to on-premises Active Directory domains in hybrid environments to perform management activities
 

The majority of these services are delivered via Microsoft Azure cloud services. The exception being the user interface, which is delivered using Amazon Web Services CDN network.

Figure 1. Core architecture diagram.

About the On-Premises Agent

The Quest On Demand On-Premises Agent provides On Demand connectivity to on-premises Active Directory domains in hybrid environments to perform management activities such as modifying group memberships and collecting Active Directory object attribute data. All On-Premises Agent communication with On Demand is secured by means of a MQTT-based Shared Access Signature (SAS) token authenticated connection.

For more information about adding and configuring the On-Premises Hybrid Agent, see the “Adding an on-premises agent” section of the Quest On Demand Global Settings User Guide.

自助服务工具
知识库
通知和警报
产品支持
下载软件
技术说明文件
用户论坛
视频教程
RSS订阅源
联系我们
获得许可 帮助
技术支持
查看全部
相关文档

The document was helpful.

选择评级

I easily found the information I needed.

选择评级