hi,

If we go with data flow in Guardium architecture like - Collector to Aggregator, Aggregator to Central Manager.
Collector to Aggregator - if collectors have only contact with aggregator, can we push policies from Central Manager to Collector?
Aggregator to Central manager - If only Aggregator is Single Point of Contact to Central Manager, what would be the drawbacks?

Thanks,
Panendar Rao.C

------------------------------
PHANENDRA RAO CHAVANA
------------------------------

Hello Phanendra again,

I assume that your aggregators and collectors are all registered to your Central Manager. Therefore, your aggregators and collectors are "Managed Units" (MU)

As a result you can perform the following tasks from your Central Manager:
* Distribute configuration profiles from your CM to your MUs --> see this page in Guardium documentation
* Push policies to your Collectors
* etc.

In order to implement the data flow from Collector to Aggregator, you have to configure the data export on the Collector and the data import on the Aggregator... (You can do this using configuration profiles pushed from the Central Manager.) But that data flow from a Collector to an Aggregator only concerns the data export/aggregation process. There is no other relationship between the Collector and its Aggregator. Collectors will continue to talk to the CM.

I hope this helps...

------------------------------
Sylvain Randier
------------------------------

Original Message:
Sent: Mon October 19, 2020 10:05 PM
From: PHANENDRA RAO CHAVANA
Subject: Guardium data flow and connectivity queries

hi,

If we go with data flow in Guardium architecture like - Collector to Aggregator, Aggregator to Central Manager.
Collector to Aggregator - if collectors have only contact with aggregator, can we push policies from Central Manager to Collector?
Aggregator to Central manager - If only Aggregator is Single Point of Contact to Central Manager, what would be the drawbacks?

Thanks,
Panendar Rao.C

------------------------------
PHANENDRA RAO CHAVANA
------------------------------

Hello Phanendra,

As per your scenario,  your all collators are stand alone and only Aggregators are Managed units. In this case you cannot push anything from CM to Collectors ( you nee to create Policies, groups, reports, Patches etc etc  one by one on All collectors).  The only thing you can do is  export data from Collectors to Aggregators. 
for 2nd  Aggregator  to CM  SPOC.   you can only configure Reports and Audit process ( Reports will be dependent on Scheduled Export DATA from  Collectors to Agg.)

Thanks, 

Tehseen

------------------------------
Tehseen sarwar
------------------------------

Original Message:
Sent: Mon October 19, 2020 10:05 PM
From: PHANENDRA RAO CHAVANA
Subject: Guardium data flow and connectivity queries

hi,

If we go with data flow in Guardium architecture like - Collector to Aggregator, Aggregator to Central Manager.
Collector to Aggregator - if collectors have only contact with aggregator, can we push policies from Central Manager to Collector?
Aggregator to Central manager - If only Aggregator is Single Point of Contact to Central Manager, what would be the drawbacks?

Thanks,
Panendar Rao.C

------------------------------
PHANENDRA RAO CHAVANA
------------------------------