{"product_id":10453,"v_id":10453,"product_name":"SolarWinds Orion Network Performance Monitor, Orion Application Performance Monitor, Orion Network Configuration Manager, Orion Network Traffic Analyzer, Orion IP Address Manager, Orion IP SLA Manager, Orion Enterprise Operations Console","certification_status":"Not Certified","certification_date":"2012-06-18T00:06:00Z","tech_type":"Network Management","vendor_id":{"name":"SolarWinds Worldwide, LLC","website":"http://www.solarwinds.com"},"vendor_poc":"Christine Bentsen","vendor_phone":"866-530-8100","vendor_email":"christine.bentsen@solarwinds.com","assigned_lab":{"cctl_name":"CygnaCom Solutions, Inc"},"product_description":"<p>Orion is a set of applications executing on one or more Windows servers.&nbsp; The applications monitor a configured set of network devices and applications for status, performance and configuration settings.&nbsp; Depending on the size of the network, multiple instances of the applications may be deployed on different servers to provide adequate performance.</p>\r\n<p>The Orion family consists of the following network, application, system, and storage monitoring and management products:</p>\r\n<p><strong>&nbsp;</strong></p>\r\n<p><strong>Orion Network Performance Monitor - </strong>Orion Network Performance Monitor (Orion NPM) provides the ability to detect, diagnose, and resolve performance issues with a dynamic network. It delivers real-time views and dashboards to visually display network performance. Automated network discovery features enable network managers to keep up with evolving networks.</p>\r\n<p><strong>&nbsp;</strong></p>\r\n<p><strong>Orion Application Performance Monitor - </strong>Orion Application Performance Monitor (Orion APM) brings monitoring, alerting, and reporting capabilities to applications and servers. Automatically discovers applications and provides visibility into application performance and the underlying operating systems and servers they run on.</p>\r\n<p><strong>&nbsp;</strong></p>\r\n<p><strong>Orion Network Configuration Manager - </strong>Orion Network Configuration Manager (Orion NCM) notifies network managers in real-time when device configurations change, helping network managers determine which changes could potentially cause network issues. Orion NCM also provides nightly configuration backups, bulk configuration changes, user tracking, and inventory and compliance reporting.</p>\r\n<p><strong>&nbsp;</strong></p>\r\n<p><strong>Orion NetFlow Traffic Analyzer - </strong>Orion NetFlow Traffic Analyzer (Orion NTA) enables network managers to quantify exactly how a network is being used, by whom, and for what purpose. The application mapping feature correlates the traffic arriving from designated ports, source IPs, destination IPs, and protocols to application names network managers can recognize. Orion NTA provides a comprehensive view of the network traffic, enabling network managers to find the bottlenecks or identify the bandwidth hogs.</p>\r\n<p><strong>&nbsp;</strong></p>\r\n<p><strong>Orion IP Address Manager - </strong>Orion IP Address Manager (Orion IPAM) is an IP address management module that enables network managers to create, schedule, and share IP address space reports. With either Orion NPM or Orion APM, Orion IPAM provides IP address management that is unified with performance monitoring data for a comprehensive view of network health.</p>\r\n<p><strong>&nbsp;</strong></p>\r\n<p><strong>Orion IP SLA Manager - </strong>Orion IP SLA Manager delivers a network monitoring solution for identifying site-specific and WAN-related performance issues from the perspective of each of the remote sites. With this Orion module, network managers can utilize Cisco IP SLA technology with automatic IP SLA setup to monitor key WAN performance metrics, including Cisco VoIP jitter and MOS.</p>\r\n<p><strong>&nbsp;</strong></p>\r\n<p><strong>Orion Enterprise Operations Console - </strong>Orion Enterprise Operations Console (Orion EOC) provides a consolidated command center to remotely monitor critical network infrastructure in multiple different physical locations.&nbsp; Orion EOC provides a consolidated command center to monitor the entire enterprise network and gives network managers unified visibility into remote Orion servers running either Orion NPM or Orion APM and Orion modules.</p>","evaluation_configuration":null,"security_evaluation_summary":"<p>The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) processes and procedures. The TOE was evaluated against the criteria contained in the Common Criteria for Information Technology Security Evaluation, Version 3.1 R3.</p>\r\n<p>&nbsp;</p>\r\n<p>The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 3.1 R3.</p>\r\n<p>&nbsp;</p>\r\n<p>CygnaCom Solutions has determined that the product meets the security criteria in the Security Target, which specifies an assurance level of Evaluation Assurance Level (EAL) 2<em>.</em></p>\r\n<p>&nbsp;</p>\r\n<p>A team of validators, on behalf of the CCEVS Validation Body, monitored the evaluation. The evaluation was completed on 30 April 2012.</p>","environmental_strengths":"<p>The TOE provides the following security functionality:</p>\r\n<p>&nbsp;</p>\r\n<ul>\r\n<li><strong>Identification and Authentication</strong> &ndash; When a connection is established to any of the Web Consoles, the TOE prompts the user for login credentials.&nbsp; The credentials are validated by the TOE for the Orion Server Web Console.&nbsp; For the EOC and NCM Web Consoles, the credentials are first passed to Windows for validation.&nbsp; For Windows application providing configuration capabilities for NCM, the TOE prompts the user for login credentials.&nbsp; If the credentials are valid, the username is used to retrieve the user&rsquo;s security attributes inside the TOE from the TOE database.</li>\r\n<li><strong>Management</strong> &ndash; Management functionality is provided to authorized users.&nbsp; The functionality provided to individual users is determined by the user&rsquo;s role, which is one of the security attributes for users.&nbsp; </li>\r\n<li><strong>Network Monitoring</strong> &ndash; The status and performance of managed elements are monitored.&nbsp; The results are saved and may be viewed by authorized users.&nbsp; Access to data about the managed elements may be limited by view limitations.&nbsp; Alerts may be generated in respond to configured conditions detected about the managed elements.</li>\r\n<li><strong>Configuration Management</strong> &ndash; The configurations of network devices may be downloaded from the network device, saved in the TOE database, and compared to a reference configuration.&nbsp; If a configuration change is detected, an upload of a saved configuration for the network device may be triggered.</li>\r\n</ul>","features":[]}