[Case] How did the Toho Gas Information System realize the "privileged ID" management of 700 servers?｜ Business+it

Solve business issues by integrating IT and management

What is Business + IT?

Login

Newsletter Registration

What is Business + IT?

Sales Strategy

Cost Reduction

Organizational Reform

Production and Manufacturing

Crisis Management

Compliance

Energy-saving/environmental response

By industry/scale

Core system

Information system

Operation management< /li>

Security

Network

Mobile

Hardware

Development

Related genres

Content provided by NTT Technocross Corporation

[Case study] How did Toho Gas Information System realize "privileged ID" management for 700 servers?

Toho Gas Information System, as a wholly owned subsidiary of Toho Gas, supports the IT of Toho Gas and group companies. The company has built and operated various systems that support the business of Toho Gas, and has worked to strengthen security over the years. What the company focused on as a theme for further strengthening security was the management of "privileged IDs" for its approximately 700 servers. Why did the company focus on "privileged ID" as a measure to strengthen security? We interviewed the person in charge of the project, including the details of the system built by the company.

Strict management of "privileged IDs" required for enhanced security

　Toho Gas Information Systems supports the construction and operation of IT systems for Toho Gas and group companies, as well as the technology cultivated there・Based on our know-how, we provide services such as consulting, system development, construction and operation of information infrastructure, and technical research to customers outside the Toho Gas Group. The company develops and operates various systems that support the operations of Toho Gas, but the issue that came up was the management of "privileged IDs", which are server administrator privileges. You can do anything by logging into the server with a privileged ID. In the unlikely event that a privileged ID is used illegally or by mistake, it will inevitably have a major impact on Toho Gas' operations. Yasuhiro Hosaka, the project leader, explains the situation in 2017 and 2018 when the management of privileged IDs was an issue. “At the time, there was a mechanism to acquire server access history and operation logs. (Mr. Hosaka) 　In addition, the office, the server room, and the production area where there is a terminal to access the server are independent as exclusive areas that cannot be entered without an employee ID card. An IC card reader is connected to the terminal that accesses the server, and it is possible to log in to the terminal only after authenticating with a dedicated IC card. In this way, the servers were operated in an extremely high-security environment, but with regard to the use of privileged IDs for each server, it was necessary to check a management register separately to determine who used the privileged ID and for what purpose. It was difficult to thoroughly implement Therefore, in order to achieve even stricter security, a new mechanism for managing privileged IDs was sought. Continuation of this article >> ・"Four Points" Emphasized in Selecting a Privileged ID Management Solution ・Stricter Privileged ID Management, Realizing Flexible Application and Approval Flows ・In the Future, Cloud Service Privileged ID Management < p>This continuation is for members only

From here onwards, only those who have registered as a "Business + IT Premium Member" (registration is free) can use it.

Register now (free) Log in

Register as a Business + IT member now.

All free! Full of benefits for business and IT!

Completely free of charge What are the benefits of a business + IT premium membership?

Related content

[Case study] How did Toho Gas Information System realize "privileged ID" management for 700 servers?