Laserfiche WebLink
SOLICITATION # CH16012 <br />additional database instances can be brought online (the application already provides for this). For <br />additional server capacity, one or more databases could be moved onto its own database server. <br />ServiceNow <br />ServiceNow has read and understands this requirement. ServiceNow supports only a SaaS <br />environment so there is no on -premise offering. <br />SAP <br />Ariba <br />Operating systems when installed through default means and with default <br />settings are typically not secure and often include applications and services <br />not required. Ariba has standardized operating systems' installations based on <br />best practices. Ariba servers are configured with just the applications and <br />services required to run the server as designed. Services not required are <br />disabled and binary files not required for operation are removed, which <br />reduces the total number of vulnerabilities a system may have. <br />Ariba standardized installation process also ensures that all servers of the <br />same type are configured exactly the same, utilizing a process that initiates an <br />upgrade to system binaries across all systems. Based on the system type, the <br />configuration will remain the same. If one server type needs to receive a patch <br />for a vulnerable binary file, that patch is pushed to all systems of that <br />particular server type. If that binary exists on all systems, it is patched across <br />all systems. Patches are then included in the build process as well so that <br />future systems built are in compliance with security standards. Ariba uses this <br />configuration process to 'harden' the operating system prior to implementing <br />additional controls as detailed below. <br />Fieldglass <br />Fieldglass uses group policy to ensure the configuration of all servers match <br />our security requirements. <br />Hanna <br />HEC is a private cloud offering where servers configurations are discussed <br />and approved by customer prior to deployment. <br />SuccessFactors <br />We apply hardening in line with ISO 27k standards and audit key areas in the <br />SOC 2 Type 2 report. Audit reports are available to customers and prospects <br />upon completion of an NDA. <br />VMware <br />VMware IaaS Services <br />vCloud Hybrid Service provides an interface that allows users to select from a catalog of pre -built <br />OS images and allows them to provision on the fly. <br />vRealize Automation is the next level for provisioning, delivering, and managing IT services on <br />VMware vSphere infrastructure as well as VMware vCloud Air all with a unified management <br />experience. It provides governance and blueprints to deliver services from on premise into vCloud <br />Air. <br />Customers can integrate vCloud Air with vRealize Automation. In this setup, users access vCloud <br />Air primarily through the vRealize Automation service catalog which handles authentication to the <br />service itself. vRealize Automation supports <br />VMWare AirWatch <br />AirWatch uses industry recognized tools and follow best practices to deploy, configure, and <br />maintain server images. We do not apply customer -supplied templates and do not share templates <br />with customers. <br />Due to FOIA restrictions, additional information regarding capacity planning and image <br />creation/safeguardingcreation/safeguarding cannot be disclosed at this time. <br />FireEye <br />This is not applicable as each of FireEye's offerings are classified as SaaS. <br />VirtueStream <br />Virtustream offers on -demand self-service portal where State of Utah can deploy new servers as <br />stand-alone or part of a server farm. <br />Creating and storing server images for future multiple deployments <br />CA I APM I Servers are brought up on demand <br />carahsoft 171 carahsoft <br />