Automatically Detect Storage & Backup Configuration Drift

Easily Manage Configuration Drift In Your Storage & Backup Systems

Every IT Infrastructure team works to ensure their IT platforms adhere to a standard golden configuration – also known as baseline configuration. It’s well understood that configuration drifts cause storage & backup systems to deviate from a target baseline over time, inviting both system health and security risks.

Cyber criminals have been taking advantage of these misconfigurations, for example, compromising access credentials to organizations’ storage and backup systems.

Storage and backup system configurations can change beyond your control. Staying on top of configuration drift and actively managing security misconfigurations can significantly mitigate these risks.

Managing a configuration baseline process for your storage and backup systems is extremely difficult, since most vendor tools focus on host operating systems and web applications, and are unable to effectively communicate with the unique storage and backup technologies.

How StorageGuard Helps

StorageGuard runs a configuration audit of your storage & backup systems, to ensure they meet your standard and adhere to industry best practices. StorageGuard automatically detects configuration drift and unauthorized changes, while validating that all systems adhere to the required baseline – by platform.

StorageGuard contains over 2,000 built-in, tunable configuration checks, supporting all leading storage and backup vendors such as Dell, Hitachi Vantara, IBM, Pure, NetApp, Rubrik, Cohesity, and many others. 

These configuration checks cover a wide range of categories such as:

User management
Roles & Privileges
Services, Interfaces and ports
Network domain settings
NAS / SAN / Object security
Data Encryption
Authentication services

Logging
Time synchronization
Installed OE / firmware versions
Network services
Key management and certificates
Access Control settings
…and more

Our configuration checks repository is constantly updated based on the guidelines of the leading security & industry standards, such as NIST, ISO/IEC, PCI DSS, CIS Control, FFIEC, SNIA, and more, and the recommendations of the storage and backup vendors.

StorageGuard helps you detect and track changes to the storage & backup health and security configurations on a regular basis, thereby helping to identify unplanned or incorrect changes that may put these systems at risk.

Examples of configuration checks:

DNS server configuration
Domain name
Target OE version
Approved administrative users & groups
Time synchronization
SNMP configuration
TLS settings
SMTP and email recipients
Remote support configuration
Certificate issuer

SMB / NFS versions
HTTPS configuration
Default FC zone
NFS export ACL
WORM settings
KMS / KMIP configuration
ICAP configuration
Retention lock
Storage network port lockdown
IdP settings

Get in touch to run a configuration audit of your storage & backups, and ensure your configuration baseline is met.

StorageGuard Supports These Storage & Backup Systems

Periodically and proactively assess configuration compliance to storage security policy... This includes making sure the actual configuration meets the storage & backup security baselines and identify gaps.

Actively manage the security posture of the storage technology and protection mechanisms… Perform regular security threat assessments to evaluate security readiness.

Perform a risk assessment upon each major change in the IT infrastructure… maintain high standards of availability, authenticity, integrity and confidentiality of data.

Establish and maintain the secure configuration of enterprise assets and software.

Talk To An Expert

It’s time to automate the secure configuration of your storage & backup systems.