Lantronix Ensures Secure Automation of Critical Banking Data Center Infrastructure
- Encrypted management access to remote servers, both in- and out-of-band
- Granular, role-based permissioning with port- and command-level
- authorization controls
- Logging and compliance reporting of all user interactions, keystrokes
- and changes
- Session management, including proper termination of user sessions
- Centralized management of servers and devices
Case Study Overview
As one of the world’s pre-eminent financial services companies, this large global bank serves hundreds of millions of customers. Its complex ITinfrastructure includes highly-distributed mission-critical servers at data centers worldwide. It chose Lantronix’s out-of-band management platform to securely automate critical data center infrastructure.
CHALLENGE: Lack of Security Resulted in Failure of Internal Audits
The bank’s IT team manages a highly distributed and complex global network infrastructure while ensuring compliance with strict security and compliance standards. The network was consistently failing internal security audits as a result of vulnerabilities introduced by the terminal servers that were widely deployed throughout their environment to provide remote access to servers and other networking equipment. The bank’s IT team was challenged to find a solution that would provide remote management of the servers and meet stringent security compliance requirements.
SOLUTION: Lantronix’s LM83X Exceeds Bank’s Security Requirements
Providing the secure management features and always-on compliance reporting required by the bank, Lantronix’s LM83X Console Server is a secure management platform that supports the banking industry’s most stringent AAA requirements and ensures that security and management policies are always enforced — even during a network outage. In fact, the Lantronix solution is so secure that it actually exceeds the bank’s security requirements.
“The Lantronix out-of-band management platform delivers the security that financial institutions need in a remote management solution, including encrypted access to our remote servers and complete reporting.”
RESULTS: Secure Automation of Critical Data Center Infrastructure
Delivering true enterprise-wide management, Lantronix’s LM83X and Control Center fulfilled the bank’s requirement for an ultra-secure out-of-band management platform.
Encrypted Management Access to Servers
Delivering out-of-the-box support for Secure Shell Version 2 (SSHv2), the solution leverages powerful FIPS 142-2 Level 2 encryption technologies to protect management communication with the servers, both in-band and out-of-band.
Granular, Role-based Permissioning
To ensure secure access, Lantronix solution provides granular, role-based permissioning with port- and command-level authorization controls. While traditional “dumb” console servers only provide port-level control over permissions, the LM83X can control every command inside the system on a per-user or per-group basis.
Logging and Compliance Recording
To ensure audit compliance, the bank relies on the LM83X’s robust logging and compliance reporting to record all user interactions at all times, even during outages. Three sets of data are logged:
- Console data from the remote servers and other networking devices
- Session data detailing user interactions with servers and devices
- Change data that records any configuration modifications
Secure Session Management
Lantronix’s LM83X security eliminates gaps that had previously violated the bank’s security policies. Automated control ensures that sessions are properly terminated and that users are logged out correctly which helps prevent unauthorized access.
Control Center Provides Centralized Management
Deployed in the bank’s Network Operations Center (NOC), the Lantronix Control Center delivers a real-time point of control with 24/7 monitoring and management capabilities.