The ESM environment is the backbone of monitoring and reporting capabilities within the DECCs and is the key component in feeding the Network Operations (NetOps) environment. DISA implemented ESM to support the enterprise management of the enterprise services environment.
The ESM architecture includes enterprise presentation services, Service Level Management (SLM), event management, systems monitoring, uniform resource locator (URL) monitoring, transaction monitoring, network monitoring, Service Desk services, capacity management services, enterprise reporting, security compliance monitoring, and data backup.
To accomplish DISA’s task of monitoring system infrastructure, the following standard components are deployed to DISA-managed Operating Environments (OEs):
- Windows OEs:
- IBM Tivoli Monitoring (ITM 6) for monitoring system performance and gathering capacity management data
- Business Management Center (BMC) BladeLogic Agent for deploying software, patch deployment, configuration management, and security compliance
- Symantec Veritas NetBackup Client for full volume and incremental backups of data
- McAfee Virus Scan Enterprise and Agent as part of the Host-Based Security System (HBSS) provide virus protection, configuration checking, and host intrusion prevention
- Linux (RedHat and SuSE), Sun Solaris, and Hewlett-Packard (HP)-Unix OEs:
- ITM 6 for monitoring system performance and gathering capacity management data
- BMC BladeLogic Agent for deploying software, patch deployment, configuration management, and security compliance
- Symantec Veritas NetBackup Client for full volume and incremental backups of data
- McAfee Virus Scan Command Line Scanner as part of HBSS for virus protection
These software components are the most frequently used in the DISA environment. Components are selected based on the situation, configuration, and workload requirements of the environment.
Note: Software components are not deployed by default but only as needed.
- Windows OEs:
- ActivIdentity ActivClient common access card (CAC) for enabling CAC use with a directly attached keyboard
- Secure Shell (SSH) Communications Tectia Client and Server for securing file data transmissions outside of DISA
- Symantec Storage Foundation Windows Basic provides multi-pathing support for connections to the Storage Area Network (SAN) for Windows non-virtualized OEs
- Diskeeper 2010 Server Edition for defragmenting Citrix, database, and high content change OEs
- Linux (RedHat and SUSE), Sun Solaris, and HP-Ux OEs:
- SSH Communications Tectia Client and Server for securing file data transmissions outside of DISA
- Tripwire for Server host-based intrusion detection on front-end servers
- Oracle Database Environments – Oracle configuration, diagnostics, change management packs, and tuning packs for managing the health and configuration of the database environment
- Oracle WebLogic Server Environments – Oracle WebLogic Management Pack for managing the health and configuration of the WebLogic server environment
- Other Standard Software – In support of operations, DISA uses a number of “behind the scenes” tools to accomplish its mission. These include:
- CA eHealth/Spectrum for network event and performance monitoring
- BMC Remedy Trouble Management System (TMS)/Information Technology Service Management (ITSM) for incident, problem, and SLM
- HP SiteScope for URL monitoring
- NetIQ Managed Objects for system and infrastructure event presentation and notification
- IBM Tivoli Netcool Omnibus for event consolidation and correlation
- IBM Tivoli Asset Manager for IT (TAMIT) for asset and change management
- Symantec Veritas Command Center Storage for monitoring storage infrastructure
- Aperture VISTA Manager for managing facilities resources and configurations
- IBM Tivoli Asset Discovery Distributed (TADd) for distributed systems hardware and software asset discovery