Novell Wednesday announced it would make available an updated version of its security event management software that the company says will enhance customers' overall compliance and identity management efforts.
Sentinel Version 5.1.3, based on technology acquired with e-Security in April, provides security event management (SEM) capabilities to enterprise firms. The software is designed to automate the collection of event log data from security devices and help users make sense of it through a common management console. Novell has worked over the past few months to provide tight integration between Sentinel and Novell platforms, such as its SuSE Linux Enterprise Server and identity management products, company officials say.
The integration will help customers manage security, identity and compliance with one infrastructure, Novell says.
"Novell already provides IT managers with a user-centric view with its identity management products. Sentinel provides an asset-centric view. Now Novell can provide a single view across people, systems and processes, tying them together in a unified way," says Richard Whitehead, director of systems security and identity products at Novell.
SEM, also referred to as SIM (security information management), products use data aggregation and event correlation features similar to those of network-management software and apply them to event logs generated from security devices such as firewalls, proxy servers and intrusion-detection systems The products also normalize data, meaning they can translate Cisco and Check Point Software alerts, for example, into a common format so the data can be correlated. Like network management software, SEM products - such as Sentinel - typically consist of server software, distributed software agents or collectors installed on servers or network and security devices, and a central management console.
Novell also added additional language support, for German, French, Spanish, Italian and Portuguese, which will enable Novell to sell the product into new markets worldwide.
Available now, pricing for Sentinel from Novell begins at US$104,000 for the base-level starter kit, which includes: Sentinel server (server license, correlation engine and console); 20 collectors that cover operating systems, databases, IDS, firewalls, applications, and security/network devices; three wizard instances; and one instance of the reporter server. Additional collectors are priced based on type and numbers of collectors needed.
Also with the release of Sentinel v5.1.3, from Aug. 10 through Oct. 31, Novell Audit customers who are current with upgrade protection or maintenance on Novell Audit may purchase the Sentinel base kit for $62,000. As part of this promotion, current Novell Audit customers are entitled to unlimited collectors for Novell Audit-enabled systems, both now and in the future. This deal allows Novell Audit customers to move from a Novell-centric logging tool to a broader network-wide security, compliance, and event monitoring tool set.