- Resources
- Newsletters (PLAN D)
- Glossary
A
absolute mode
In storage management, a backup copy group mode that specifies that a file is considered for incremental backup even if the file has not changed since the last backup. Contrast with modified mode.
accept operation
An operation that deletes the backup software package so that the previous operation cannot be restored.
access control
In computer security, the process of ensuring that only authorized users can access the resources of a computer system in authorized ways.
access control information (ACI)
Data that identifies the access rights of a group or principal. See also access control.
access control list (ACL)
In computer security, a list that is associated with an object that identifies all the subjects that can access the object and their access rights. For example, an access control list is a list that is associated with a file that identifies the users who can access the file and that identifies the users' access rights to that file.
access permission
The access privilege that applies to the entire object.
account
The set of parameters that define the login information and access control information for a user.
ACI
See access control information.
ACL
See access control list.
ACP
See adapter configuration profile.
action
An access control list (ACL) permission attribute. See also access control list.
action body
The part of a rule that contains actions to take if the rule evaluates to true.
action command
Any command that is used to obtain or modify Management Information Base (MIB) variables.
action object
An object that is created by applications that contain requests that set, clear, or display Management Information Base (MIB) object attributes on a machine.
activate
To validate the contents of a policy set and then make it the active policy set.
active policy set
In storage management, the activated policy set that contains the policy rules currently in use by all client nodes assigned to the policy domain. See also policy set and policy domain.
active version
The most recent backup version of a file. The active version of a file cannot be deleted until a backup process detects that the user has either replaced the file with a newer version or has deleted the file from the workstation. Contrast with inactive version.
activity
An operation in an activity plan that is performed on a set of targets on a specific schedule and that can depend upon the execution of other activities. See also activity plan.
activity plan
A set of activities performed on a set of targets on a specified schedule. See also activity.
adapter configuration profile (ACP)
The profile that contains information for one or more event adapters. See also event adapter.
admin role
See authorization role.
Administrative Domain
A collection of hosts and routers, and the interconnecting networks, that are managed by a single administrative authority.
administrator collection
In a Tivoli environment, a resource that contains all Administrator objects. The Administrator icon on the Tivoli desktop represents an administrator collection.
agent
(1) An entity that represents one or more managed objects by (a) emitting notifications regarding the objects and (b) handling requests for management operations to modify or query the objects. (2) In systems management, a user or system that, for a particular interaction, has assumed an agent role.
agent site
The location, defined by a single network host name, where a warehouse agent application is installed.
aggregate object
Any object that contains other objects (known as child objects or children). Because an aggregate object is not monitored directly, it does not receive events directly. Rather, it receives only the events that are propagated by its children.
aggregation
The process of collecting, interpreting, and sorting data from various locations, such as log files, into a single file.
alarm
An audible or visual signal at a device, such as a display station or printer, that is used to notify the user that a predefined condition exists.
alarm level
Obsolete term. See response level.
alert
A message or other indication that identifies a problem or an impending problem.
AMP
See application management package.
AMS
See Application Management Specification.
AOF
See application object file.
application management package (AMP)
A compressed file that contains the application description files and other necessary files for managing an application. These include one global description file, one or more component description files, task scripts, and executable programs. The application management package can also include the application object file or the source files for the application itself.
Application Management Specification (AMS)
A specification standard that addresses the problems that are associated with managing multi-tiered applications.
application object file (AOF)
An ASCII text file that contains the names of the global description file and the component description files, which together describe the management characteristics of an application.
application plane
The Tivoli NetView submap layer on which icons of managed objects of at least one network or systems management application are displayed without shading, making the icons appear directly against the background plane. See also background plane and user plane.
Application Response Measurement (ARM)
An application programming interface (API), developed by a group of leading technology vendors, that can be used to monitor the availability and performance of business transactions within and across diverse applications and systems.
archive
To copy one or more files to a storage pool for long-term storage. Archived files can include descriptive information, and they can be retrieved by archive date, file name, or by description. Contrast with retrieve. See also .storage pool
archive copy
A file that was archived to server storage.
ARM
See Application Response Measurement.
ARM-instrumented application
An application in which Application Response Measurement (ARM) calls are added to the source code to enable the performance of the application to be monitored by management systems. See also Application Response Measurement.
attack
Any attempt by an unauthorized person to compromise the functionality of a networked system. See also intrusion attempt.
attack signature
A string of characters in the payload of a network message that indicate that the message contains malicious content, such as a virus, Trojan horse, or other intrusion activity.
attribute condition
The criteria in the event filter of a rule where the values of event attributes can be tested or assigned.
attribute facet
The type of data that an event can contain.
attribute list
A linked list that contains extended information that is used to make authorization decisions. Attribute lists consist of a set of name = value pairs.
audit
To check for logical inconsistencies between server information and the actual condition of the system. Tivoli Storage Manager can audit volumes, the database, libraries, and licenses. For example, when Tivoli Storage Manager audits a volume, it checks for inconsistencies between the information about backed-up or archived files stored in the database and the actual data associated with each backup version or archive copy in the storage pools.
audit mode
In privacy management, the level of enforcement that allows access to personally identifiable information (PII) regardless of the result of the conformance check and that records both successful and failed PII access attempts in the database. See also enforcement and enforcement mode.
audit trail
The record of transactions for a computer system during a given time period.
authentication
(1) In computer security, verification of the identity of a user or the user's eligibility to access an object.
(2) In computer security, verification that a message has not been altered or corrupted.
(3) In computer security, a process that is used to verify the user of an information system or of protected resources. See also multi-factor authentication, network-based authentication, and step-up authentication.
authorization
(1) In computer security, the right granted to a user to communicate with or make use of a computer system.
(2) The process of granting a user either complete or restricted access to an object, resource, or function.
authorization owner
A group of users who can define access control information (ACI) within the context of the organizational unit to which they belong.
authorization role
A role that is assigned to administrators that enables them to perform their assigned systems management tasks. In a Tivoli environment, a role can be granted over the entire Tivoli management region or over a specific set of resources, such as those resources that are contained in a policy region. Examples of authorization roles include super, senior, admin, and user. See also role.
authorized operator
An operator who is authorized to receive undeliverable messages and lost terminal messages. See also authorized receiver.
authorized receiver
An authorized operator who receives the unsolicited and authorized-receiver messages that are not assigned to a specific operator.
autochanger
A small, multislot tape device that automatically puts tape cartridges into tape drives. See also library.
autodiscovery
A type of discovery where a program automatically detects the resources that were not previously known.
automated response
A predefined response to particular events that is executed by a Tivoli application. For example, if the Tivoli Enterprise Console product detects that a process stopped early, it can automatically restart the process without intervention by an administrator.
automated task
A task in a task library that is automatically executed when specific criteria are met, such as when a specific alarm level is triggered.
AutoPack file
In Tivoli Software Distribution, Version 3, an installable image that is used to distribute "shrink-wrapped" applications to multiple PC targets. The file contains PC software application files and directories, information on how to distribute these files and directories, and any system configuration changes needed by the application. A Tivoli administrator must associate an AutoPack file with an AutoPack profile.
autotask
An unattended operator station task that does not require a terminal or a logged-on user. Autotasks can run independently of VTAM and are typically used for automated console operations. Contrast with logged-on operator.
auxiliary schedule
A type of business schedule that is associated with one or more other schedules and that specifies multiple dates for exceptions to regular business schedules that do not occur on regular intervals. For example, company holidays or irregular maintenance times that apply to all service offerings in an enterprise can be specified once in a auxiliary schedule and then applied to schedules across multiple service offerings.
availability management
The process of measuring or managing the availability of a service or a system. The availability of a system is measured as a percentage of "up time" versus "total time."
B
BA
See basic authentication.
back-end service time
The time it takes for a Web server to receive a requested transaction, process it, and respond to it. See also transaction.
backup
To copy information to another location to ensure against loss of data. Contrast with restore. See also database backup series and incremental backup.
background plane
The Tivoli NetView submap layer that provides the background for the application plane. The background plane can display a picture that provides context for viewing the icons of the application plane. See application plane and user plane.
backup copy
A file that was backed up to a storage pool.
backup set
A portable, consolidated group of active backup copies that can be generated for a backup-archive client. See also backup copy.
backup version
A file that a user backed up to server storage. More than one backup version can exist in server storage, but only one backup version is the active version. See also active version and inactive version.
BAROC
See Basic Recorder of Objects in C.
base package
The name and version of a software package that is installed on a system.
base table
A table that is created with the CREATE TABLE statement. A base table has both its description and data physically stored in the database. Contrast with view.
basic authentication (BA)
A method of authentication that requires the user to enter a valid user name and password before access to a secure online resource is granted.
Basic Recorder of Objects in C (BAROC)
The internal representation of the defined event classes at the event server.
BDF
See business description file.
bilingual command list
A command list written in a combination of REXX and the NetView command list language.
binary launcher
Obsolete term. See native launcher.
bind
To relate an identifier to another object in a program; for example, to relate an identifier to a value, an address, or another identifier, or to associate formal parameters and actual parameters.
blade
A component that provides application-specific services and components.
breach value
The value at which a service level objective (SLO) is considered as not being met. A service level agreement (SLA) violation occurs if a breach value for one or more of its SLOs is exceeded. See also service level objective.
bulk discovery
A type of autodiscovery in which a program is run that has access to the resources that are being discovered. The program output provides information about those resources.
bulletin board
The mechanism by which the Tivoli Management Framework and Tivoli applications communicate with Tivoli administrators. The bulletin board collects notices in notice groups. Administrators can access the bulletin board from the Tivoli desktop. The bulletin board is an audit trail for important operations that the administrators perform. See also notice and notice group.
business description file (BDF)
In a Tivoli environment, a generic name for any of these application description files: business system description file (BSDF), business system component description file (BCDF), business system mapping description file (BMDF), and business subsystem description file (BSSDF).
business entitlement
The supplemental attributes of a user credential that describes the fine-grained conditions that can be used in the authorization of requests for resources.
business system
A group of diverse but interdependent applications and other system resources that interact to accomplish specific business functions.
byte-level differencing
The process of detecting the differences (or the delta) between the software package that you want to install and the base software package and then creating a delta software package. See also delta install.
C
CA
See certificate authority.
capability
A set of access rights to a group of target instances.
capacity type
The property of a license pool that specifies how to determine the number of required licenses for an application. The number of licenses that are required can be based on the number of users that request a license, the size of the memory, the number or processes, or the number of hard disks on the node where the application is started. See also license pool.
CCMS
See Configuration Change Management System.
CDNM session
See cross-domain network manager session.
CDS
See class definition statement.
centralized script management
The process of managing scripts centrally in the OS/390 library and sending them to the fault-tolerant agents to be run.
certificate
In computer security, a digital document that binds a public key to the identity of the certificate owner, thereby enabling the certificate owner to be authenticated. A certificate is issued by a certificate authority.
certificate authority (CA)
An organization that issues certificates. The certificate authority authenticates the certificate owner's identity and the services that the owner is authorized to use, issues new certificates, renews existing certificates, and revokes certificates belonging to users who are no longer authorized to use them.
CGI
See common gateway interface.
challenge response
An authentication method that requires users to respond to a prompt by providing private information to verify their identity when logging in to the network.
CIM
See common information model (CIM).
cipher
Encrypted data that is unreadable until it has been converted into plain data (decrypted) using a key.
class definition statement (CDS)
A statement that specifies (a) the mapping of incoming events to classes and (b) the values assigned to event attributes.
cleanse
To transform the data that is extracted from operational systems in order to make it usable by the data warehouse.
client domain
In storage management, the set of drives, file systems, or volumes that the user selects to backup or archive using the backup-archive client.
client migration
In storage management, the process of copying a file from a client node to server storage and replacing the file with a stub file on the client node. The space management attributes in the management class control this migration. See also space management.
closed registration
A registration process in which only an administrator can register workstations as client nodes with the server. Contrast with open registration.
coalescing
The process of combining the configuration data from the preference node trees of an ORB, and all ORB sets to which the ORB belongs, into a single preference node tree. See also preference node. Contrast with inheriting.
collection
(1) In a Tivoli environment, a container that provides a single view of related resources.
(2) The process of monitoring and storing application performance data, aggregating it to a time interval, and saving it into data files on the endpoint.
collector
In a Tivoli environment, either (a) a repeater site on which Scalable Collection Service (SCS) is installed or (b) an SCS daemon on a managed node or gateway that stores and then forwards data to other collectors or to the inventory receiver or inventory data handler.
collocation
The process of keeping all data belonging to a single client node or a single client file space on a minimal number of sequential access media volumes within a storage pool. This process reduces the number of volumes that must be accessed when a large amount of data must be restored.
command authorization table
A set of entries that define an operator's authorization for accessing commands and, depending on the level of granularity that an enterprise chooses, command keywords and keyword values.
command list
A list of commands and statements that is designed to perform a specific function for the user.
command list language
An interpretive language that is used to write command lists, which contain sequences of commands to be executed when the name of the command list is entered. Tivoli NetView for z/OS supports command lists that are written in two command list languages: REXX and its own unique language, the NetView command list language.
command procedure
A command list, a command processor that is written in a high-level language, or a Tivoli NetView pipeline.
command processor
A module that is designed to perform a specific function for the user. Users can write command processors in assembler language or in a high-level language. Command processors are invoked as commands.
commit operation
Obsolete term. See commit phase.
commit phase
In software distribution, the phase in which previously prepared actions are committed, causing all of the updates to take effect. See also transactional mode.
Common Gateway Interface (CGI)
An Internet standard for defining scripts that pass information from a Web server to an application program, through an HTTP request, and vice versa. A CGI script is a CGI program that is written in a scripting language, such as Perl.
Common Information Model (CIM)
An implementation-neutral, object-oriented schema for describing network management information. The Distributed Management Task Force (DMTF) develops and maintains CIM specifications.
community name
The part of an SNMP message that represents a password-like name and that is used to authenticate the SNMP message.
compatibility mode
A programming model that, in the migration from Tivoli Distributed Monitoring (Classic Edition) to Tivoli Monitoring, enables the reuse of the monitoring collections from Tivoli Distributed Monitoring (Classic Edition) in Tivoli Monitoring resource models.
compatible schedule
A schedule that has the same set of defined schedule states (for example, peak, off-peak, and critical) as an existing schedule, the one that it is likely to replace.
compliance check
In privacy management, the process of determining whether an access attempt to personally identifiable information (PII) complies with all governing privacy policies. See also conformance check, ruling, and default ruling.
compound rule
A rule that specifies a causal relationship between two event classes. Contrast with simple rule.
condition rule
In privacy management, a Boolean condition that is applied to a group or purpose in a usage statement to further restrict access to personally identifiable information (PII) that is defined in the statement. For example, a condition rule could be applied to a usage statement that restricts access to the PII unless the monitored system contains a recording of the PII owner's explicit agreement to the use of the PII. See also usage statement.
configuration
(1) The manner in which the hardware and software of an information processing system are organized and interconnected.
(2) The machines, devices, and programs that make up a system, subsystem, or network.
Configuration Change Management System (CCMS)
In a Tivoli environment, a data store of profiles that contain configuration data that is used by system management applications to make configuration changes on groups of systems. See also profile manager.
conformance
In privacy management, the process of determining whether a request for personally identifiable information (PII) matches the rules defined in a single governing privacy policy. See also conformance check.
conformance check
In privacy management, the process of determining whether an access attempt to personally identifiable information (PII) conforms to a single governing privacy policy. See also compliance check, ruling, and default ruling.
connection
(1) In data communication, an association that is established between functional units for conveying information.
(2) In TCP/IP, the path between two protocol applications that provides reliable data stream delivery service. In the Internet, a connection extends from a TCP application on one system to a TCP application on another system.
(3) In system communications, a line over which data can be passed between two systems or between a system and a device.
connector class
The object class that represents devices that connect different parts of a network and that also route or switch traffic between these parts; for example, gateways, repeaters (including multiport repeaters), and bridges. Contrast with network class.
constraint
Obsolete term. See threshold.
container object
A structural designation that organizes the object space into distinct functional regions.
controller
Software that administrators use to perform remote control, file transfer, or chat functions.
controller proxy
The remote control proxy that connects to the target as if it was the controller.
cookie
Information that a server stores on a client machine and accesses during subsequent sessions. Cookies allow servers to remember specific information about clients.
copy group
A policy object whose attributes control how backup versions or archive copies are generated, where backup versions or archive copies are located, and when backup versions or archive copies expire. A copy group belongs to a management class. See also backup copy and management class.
corequisite
A component or service that is needed in parallel with a component. In other words, the components, resources, or services listed as corequisites of a component must be installed and configured in conjunction with the component.
corequisite dependency
A condition in which a configuration change is performed only if other required changes are also performed as part of the specified change sequence.
correlation rule
See compound rule.
crawl
To search for information across various Web pages across the Internet or an intranet.
credentials
Detailed information, acquired during authentication, that describes the user, any group associations, and other security-related identity attributes. Credentials can be used to perform a multitude of services, such as authorization, auditing, and delegation. For example, the signon information (user ID and password) for a user are credentials that allow the user to access an account.
cross-domain network manager (CDNM) session
A session between two network managers in separate domains.
cube
Obsolete term. See data mart.
D
daemon
A program that runs unattended to perform continuous or periodic systemwide functions, such as network control. Some daemons are triggered automatically to perform their task; others operate periodically.
dashboard
A summary view of the status of multiple service level agreements (SLAs). Users can click on links in the displayed Web page to obtain more detailed information on the SLAs as necessary.
data collection
The process of obtaining performance and availability monitoring data and providing that data to a metric evaluator. Examples of data collectors include DNS probes, Web page analyzers, or database analyzers. See also metric evaluation.
data definition language (DDL)
A language for describing data and its relationships in a database.
data description language
See data definition language.
data mart
A subset of a data warehouse that contains data that is tailored and optimized for the specific reporting needs of a department or team. A data mart can be a subset of a warehouse for an entire organization, such as data contained in online analytical processing (OLAP) tools.
data mart server
A machine that hosts one or more data marts. Multiple data mart servers can draw data from the same central data warehouse.
data mover
A device that moves data on behalf of the server. A network-attached storage (NAS) file server is a data mover.
data warehouse
(1) A subject-oriented nonvolatile collection of data that is used to support strategic decision making. The warehouse is the central point of data integration for business intelligence. It is the source of data for data marts within an enterprise and delivers a common view of enterprise data.
(2) A central repository for all or significant parts of the data that an organization's business systems collect. Also known as an information warehouse. See also data mart.
database backup series
One full backup of the database, plus up to 32 incremental backups that were made after that full backup. Each full backup that is run starts a new database backup series. A number identifies each backup series.
database snapshot
A complete backup of the entire database to media that can be taken offsite. When a database snapshot is created, the current database backup series is not interrupted. A database snapshot cannot have incremental backups associated with it. See also database backup series. Contrast with full backup.
DDL
See data definition language.
de-provision
To remove a service or component. For example, to de-provision an account means to delete an account from a resource.
default policy
In a Tivoli environment, a set of resource property values that are assigned to a resource when the resource is created.
default ruling
For a failed conformance check, a setting that defines the default course of action. The default ruling is set to either "deny," which causes the conformance check to fail regardless of the conformance check results of other governing privacy policies, or to "defer," which indicates that the conformance check failed, but the final result of the compliance check depends on the classification of each governing privacy policy and on the result of the conformance check against each governing privacy policy. See also conformance check, compliance check, and ruling.
delta install
The process of creating the software package that contains only the delta between the base software package and the software package that you want to install. By creating and distributing a delta software package, network traffic is reduced.
demand poll
A polling operation that is initiated by the user.
deploy
To place files or install software into an operational environment.
depot
A directory that enables the temporary or permanent storage of data segments.
desktop management interface (DMI)
A protocol-independent set of application programming interfaces (APIs) that were defined by the Distributed Management Task Force (DMTF). These interfaces give management application programs standardized access to information about hardware and software in a system. See also Distributed Management Task Force.
device
Any non-client, non-server part of a network managed by Tivoli software, including, but not limited to, Palm devices, handheld PCs, cable set-top boxes, and other pervasive devices.
device agent program
A program that resides on a device, functions as a client, and processes jobs as its main task. The device agent program also contains the initial communications data that is used to enroll a device.
device class
A named set of characteristics that are applied to a group of devices. Each device class has a unique name and represents a device type.
differencing phase
In software distribution, the phase in which the before and after snapshots of the target system are compared and, for each difference found, the related action is generated and added to a software package.
digital signature
In e-commerce, data that is appended to, or is a cryptographic transformation of, a data unit and that enables the recipient of the data unit to verify the source and integrity of the unit and to recognize potential forgery.
directive
XML document data that is used to create, query, or modify items.
directory schema
The valid attribute types and object classes that can appear in a directory. The attribute types and object classes define the syntax of the attribute values, which attributes must be present, and which attributes may be present for the directory.
Directory Services Markup Language (DSML)
An XML implementation that provides a common format for describing and sharing directory services information among different directory systems.
disconnected mode
A method of logging on to systems that are not connected to a network, such as logging on to laptops that are used away from the office.
discover
To identify resources within a network environment.
discovery
The automatic detection of a topology change, such as finding new and deleted nodes or links within a network topology, or such as finding storage resources and devices within a network that are not yet being monitored.
discovery-by-event
A type of autodiscovery in which either (a) a program receives special events that provide the name and location of a particular resource or (b) a program receives normal events, recognizes that no object represents the resource that originated the events, creates an object for that resource, and posts the events to that object.
distinguished name (DN)
The name that uniquely identifies an entry in a directory. A distinguished name is made up of attribute:value pairs, separated by commas.
Distributed Management Task Force (DMTF)
An alliance of computer vendors that was convened to define streamlined management of the diverse operating systems commonly found in an enterprise.
distributed monitoring proxy
See proxy endpoint.
DMI
See desktop management interface.
DMTF
See Distributed Management Task Force.
DN
See distinguished name.
domain
A logical grouping of resources in a network for the purpose of common management and administration.
domain name
In the Internet suite of protocols, a name of a host system. A domain name consists of a sequence of subnames that are separated by a delimiter character. For example, if the fully qualified domain name (FQDN) of a host system is as400.rchland.vnet.ibm.com, each of the following is a domain name: as400.rchland.vnet.ibm.com, vnet.ibm.com, ibm.com.
downcall
In a Tivoli environment, a method call from the gateway to the endpoint. Contrast with upcall.
draft offering
An offering that is a work-in-progress and that is not yet ready to be published and made available to customers in a service level agreement (SLA).
DSML
See Directory Services Markup Language.
E
EFD
See event forwarding discriminator.
encryption
In computer security, the process of transforming data into an unintelligible form in such a way that the original data either cannot be obtained or can be obtained only by using a decryption process.
end-to-end probe platform (EPP)
A platform that gathers application performance data and simulates transactions, such that probes can be created to monitor the application appropriately.
endpoint
In a Tivoli environment, the ultimate recipient for Tivoli operations in a Tivoli region. See also target and Tivoli region.
endpoint list
In a Tivoli environment, a list of all endpoints in a Tivoli region with their assigned gateways.
endpoint method
In a Tivoli environment, a method that runs on an endpoint as the result of a request from another managed resource. The results of the method are forwarded to the gateway and then to the calling managed resource.
enforcement
In privacy management, the process of determining whether personally identifiable information (PII) can be accessed. The monitor levels are audit mode and enforcement mode. See also audit mode and enforcement mode.
enforcement mode
In privacy management, the level of enforcement that governs access to personally identifiable information (PII) in real time. A failed conformance check does not allow access to the PII. The access attempt is recorded in the database. See also enforcement and audit mode.
enterprise configuration
A method of setting up servers so that the administrator can distribute the configuration of one of the servers to the other servers, using server-to-server communication.
entitlement
(1) In security management, a service and list of attributes that identifies the target for a provisioning policy.
(2) A data structure that contains externalized security policy information. Entitlements contain policy data or capabilities that are formatted in a way that is understandable to a specific application.
escalation limit
The amount of time, in days, hours, minutes, or seconds, that a participant has to respond to a request before an escalation occurs.
ETL
See extract, transform, and load.
evaluation rule
In privacy management, an expression that (a) represents an individual's choice to opt in or opt out of a specified group or purpose or (b) represents another condition, such as a legal restriction on the use of PII. See also condition rule.
event
Any significant change in the state of a system resource, network resource, or network application. An event can be generated for a problem, for the resolution of a problem, or for the successful completion of a task.
event adapter
Software that converts events into a format that other applications can use and that forwards the events to the event server.
event class
A classification for an event that indicates the type of information that the event adapter can send to the event server. See also Basic Recorder of Objects in C.
event correlation
The process of analyzing event data to identify patterns, common causes, and root causes. Event correlation analyzes the incoming events for predefined states, using predefined rules, and against predefined relationships.
event escalation
The notification that a violation or a trend toward violation of a service level agreement has been detected as a result of evaluating and analyzing metric data. Events are created in various ways, using, for example, SNMP traps, Tivoli Enterprise Console events, or e-mail notification.
event filter
(1) In a Tivoli environment, rules that determine which events are sent from an event adapter or displayed on an event console. An event filter is also used to determine the events that a specific correlation rule will apply to.
(2) A logical expression of the criteria that determines which events are forwarded to the application program that registers the event filter with the event sieve agent.
(3) The criteria that an event must meet before a rule action is executed.
event forwarding discriminator (EFD)
A managed object that describes the criteria that is used to select which event reports are sent and to whom the reports are sent.
event group
A set of events that meet certain criteria defined by event group filters, which include constraints that are expressions that define the filter conditions. Event console operators can monitor event groups that are relevant to their specific areas of responsibility. See also event filter.
event report
In Open Systems Interconnection (OSI) architecture, the unsolicited notification of a significant event by an agent to a manager.
event response
A preconfigured action that is triggered when an event is generated. The administrator can configure one or more event responses to specific event types. Examples of event responses include logging the event, notifying an individual or group by e-mail that the event has occurred, sending the event to an SNMP application, and initiating a program or script. See also response level.
event server
A server program that processes events.
exclusive submap
In Tivoli NetView, a submap that is created by an application program that wants the exclusive right to control what happens in the application plane of the submap. Contrast with shared submap.
exrequisite
A component and or service that must not be present. In other words, the components, resources, or services listed as exrequisites of a component must not be installed to successfully install the component.
exrequisite dependency
A condition in which a configuration change is performed only if a specified condition does not exist. For example, a software package will be installed on targets only where a package with an exrequisite dependency is not installed.
extend
To increase the portion of available space that can be used to store database information or recovery log information. Contrast with reduce.
extended Tivoli environment
Machines and resources outside of the Tivoli environment that are managed from within the Tivoli environment.
extract, transform, and load (ETL)
The process of collecting data from one or more sources, cleansing and transforming the data, and then loading the data into a database.
extreme case report
A report that shows the instances of a component that have either the highest or the lowest values (but not both) for a specified metric. Typically, an extreme case report shows the best or worst n cases (where n is a number), such as the 10 servers having the most critical events. See also health check report and summary report.
F
facet
See attribute facet.
failover
A transparent operation that switches to a redundant or standby system when mission critical services fail.
false negative
The result of an intrusion detection system that occurs when there is an attack and the product does not raise an alarm, which can allow the intruder's action to go completely unnoticed and can give a false sense of security to the administrator.
false positive
The result of an intrusion detection system that occurs when there is no attack and the system raises an alarm, which can cause an administrator to take unnecessary actions.
field
The building block of which objects are composed. A field is characterized by a field name, a data type (integer, Boolean, character string, or enumerated value), and a set of flags that describe how the field is treated. A field can contain data only when it is associated with an object.
field registration file (FRF)
A file that is used to define fields for use in the object database.
file package
In Tivoli Software Distribution, Version 3, a profile that describes the files and directories to distribute and how to distribute them. In later versions, this profile was renamed to software package.
file package block
In Tivoli Software Distribution, Version 3, a static file containing (a) the file package definition, (b) the file package attributes, (c) the source files and directories, and (d) the configuration programs of the file package. In later versions, this file was renamed to software package block.
file package definition
In Tivoli Software Distribution, Version 3, an ASCII file that identifies the contents and characteristics of a file package. In later versions, this file was renamed to software package definition.
file space
A logical storage space in server storage that contains a group of files that are backed up or archived by a client. For clients on Windows systems, a file space contains files from a logical partition that is identified by a volume label. For clients on AIX or UNIX systems, a file space contains files from the same file system, or the part of a file system that stems from a virtual mount point.
file space ID (FSID)
A unique numeric identifier that the server assigns to a file space when it is stored in server storage.
file sweep
The process of determining which files are eligible to be deleted or archived, based on criteria such as name, size, or age.
File Transfer Protocol (FTP)
In TCP/IP, an application protocol used for transferring files to and from host computers.
fine-grained authorization role
An authorization role that indicates the authority to perform narrowly defined administrative tasks.
firewall
A functional unit that protects and controls the connection of one network to other networks. The firewall (a) prevents unwanted or unauthorized communication traffic from entering the protected network and (b) allows only selected communication traffic to leave the protected network.
flatten
To display multiple iterations of data in a single window.
formatter
Software that formats the captured events or information into the appropriate form before sending it to an output device or file.
fpblock
See file package block.
FRF
See field registration file.
FSID
See file space ID.
full backup
The process of backing up the entire server database. A full backup begins a new database backup series. See also incremental backup and database backup series. Contrast with database snapshot.
full synchronization
The process of applying the complete reference model to a target system, even if that involves removing installed software.
fuse
In Tivoli SANergy, to connect to a managed storage volume for accelerated access by combining traditional LAN network transmissions with the high-speed payload transmissions of a storage area network (SAN). For example, when Tivoli SANergy manages an NSF-mounted volume that has a direct access path using a SAN technology (such as a Fibre Channel), the network transmissions are fused and performance is enhanced.
fuzzy copy
A backup version or archived copy of a file that might not accurately reflect the original contents of the file, because it was backed up or archived when the file was being modified. See also backup version and archive copy.
G
gateway
Software that provides services between the endpoints and the rest of the Tivoli environment.
gateway method
A method that runs on behalf of an endpoint on the gateway to which the endpoint is assigned. The results of the method are forwarded to the managed resource that requested that the method be run.
global signon (GSO)
A flexible single signon solution that enables the user to provide alternative user names and passwords to the back-end Web application server. Global signon grants users access to the computing resources that they are authorized to use--through a single login. Designed for large enterprises that consist of multiple systems and applications within heterogeneous, distributed computing environments, Global signon eliminates the need for users to manage multiple user names and passwords. See also single signon.
GSO
See global signon.
guaranteed level of service
See service level agreement.
H
hard stop
A property of a license pool that specifies whether the number of licenses available in the pool is an absolute maximum. Once all of the licenses are in use, hard-stop licenses do not allow further instances of the application to be started.
hardware monitor
A monitor that collects and displays events and statistical data both for hardware and software to identify failing resources in a network. For problem determination, it also provides probable cause information and recommended actions. Contrast with session monitor.
health check report
A report that shows the values over time of one or more metrics, which can be selected from one or more star schemas, for one or more components. Typically, a health check report shows time-delineated, diagnostic data that shows the fluctuation of key indicators. See also extreme case report and summary report.
home submap
In Tivoli NetView, the root submap associated with all maps when they are opened.
host
A computer that is connected to a network (such as the Internet or an SNA network) and provides an access point to that network. Also, depending on the environment, the host may provide centralized control of the network. The host can be a client, a server, or both a client and a server simultaneously.
host transit time
The average time (in seconds) that all transactions spend in the host. The time includes both VTAM and application time. It is also reported as an average for the transactions that originate at the logical unit for which data collection is occurring.
HTTP
See hypertext transfer protocol.
hyperbolic viewer
A viewer that allows interactive navigation of graphical structures that are too large to render in their entirety by providing controls that expand or collapse individual sections of those graphical structures.
Hypertext Transfer Protocol (HTTP)
In the Internet suite of protocols, the protocol that is used to transfer and display hypertext documents.
hyperview
An elliptical view that enables users to see a large number of resources at once.
I
IDS
See intrusion detection system.
image backup
A backup of a full file system or raw logical volume as a single object.
immediate command
A command (such as GO, RESET, or LOGOFF) that begins processing as soon as the operator enters it, possibly preempting other ongoing processing. See also regular command.
in-band discovery
The process of discovering storage area network (SAN) data, including topology and attribute data, through the Fibre Channel data paths. Contrast with out-of-band discovery.
inactive version
A backup version of a file that is either not the most recent backup version, or that is a backup version of a file that no longer exists on the client system. Inactive backup versions are eligible for expiration processing according to the management class that is assigned to the file. Contrast with active version.
incident
The occurrence of a series of sensor events that exceed a certain severity threshold within a specific amount of time (which is configurable).
incident group
A collection of two or more incidents with matching criteria, which are combinations of destination host, source host, category, or customer identifier.
incremental backup
The process of backing up files or directories, or copying pages in the database, that are new or changed since the last full or incremental backup. See also selective backup and database backup series. Contrast with full backup.
indication
A problem on an endpoint that involves one or more resources. Indications are consolidated into events on the endpoint that is being monitored. See also event.
indicator collection
Obsolete term. See indication.
inheriting
The process of combining the configuration data from a preference node with the configuration data from the parent of that preference node. See also preference node and coalescing.
installation repository (IR)
A directory that contains reusable installation images and other data that is used by Tivoli Software Installation Service.
instrumentation
In application or system software, the monitoring functions that provide performance information and other information to a management system, or the use of such monitoring functions.
intelligent agent
Software that monitors the conditions or actions of a network node and contains the logic that is needed to respond to these conditions or actions.
Internet Protocol (IP)
In the Internet suite of protocols, a connectionless protocol that routes data through a network or interconnected networks and acts as an intermediary between the higher protocol layers and the physical network.
Internet suite of protocols
A set of protocols developed for use on the Internet and published as Requests for Comments (RFCs) through the Internet Engineering Task Force (IETF).
interprocess communication (IPC)
(1) The process by which programs communicate data to each other and synchronize their activities. Semaphores, signals, and internal message queues are common methods of interprocess communication.
(2) A mechanism of an operating system that allows processes to communicate with each other within the same computer or over a network.
intrusion attempt
An attempt by an unauthorized person to access or destroy a network resource.
intrusion detection system (IDS)
Software that detects attempts or successful attacks on monitored resources that are part of a network or host system.
inventory condition
The set of software and hardware configuration requirements that is defined for each subscriber to a reference model. Before a reference model can be applied, the inventory condition must be met.
inventory data handler
In a Scalable Collection Service topology, the Inventory object that receives data from an inventory scan and uses one or more connections to send the data to the configuration repository. Formerly called inventory receiver.
inventory receiver
In Tivoli Inventory, Version 3.6.2, in an MCollect topology, the Inventory object that receives data from an inventory scan and uses one or more connections to send the data to the configuration repository. In later versions, this object was renamed to inventory data handler.
IP
See Internet protocol.
IPC
See Interprocess Communication.
IR
See installation repository.
J
Java Database Connectivity (JDBC)
An application programming interface (API) that has the same characteristics as Open Database Connectivity (ODBC) but is specifically designed for use by Java database applications. Also, for databases that do not have a JDBC driver, JDBC includes a JDBC to ODBC bridge, which is a mechanism for converting JDBC to ODBC; it presents the JDBC API to Java database applications and converts this to ODBC. JDBC was developed by Sun Microsystems, Inc. and various partners and vendors.
job
A resource that consists of a task and its preconfigured parameters. Among other things, the parameters specify the targets on which the job is to run. See also task.
job recovery
A recovery operation that the scheduler performs when a distributed job terminates with an exit code other than zero. The type of job recovery is specified when the job is scheduled or when the properties of a job are defined.
job stream
A sequence of jobs. The sequence depends on one job completing before another job starts.
junction
An HTTP or HTTPS connection between a front-end WebSEAL server and a back-end Web application server. WebSEAL uses a junction to provide protective services on behalf of the back-end server.
K
key
In computer security, a sequence of symbols that is used with a cryptographic algorithm for encrypting or decrypting data. See also private key and public key.
key database file
See key ring.
key file
See key ring.
key pair
In computer security, a public key and a private key. When the key pair is used for encryption, the sender uses the public key to encrypt the message, and the recipient uses the private key to decrypt the message. When the key pair is used for signing, the signer uses the private key to encrypt a representation of the message, and the recipient uses the public key to decrypt the representation of the message for signature verification.
key ring
In computer security, a file that contains public keys, private keys, trusted roots, and certificates.
kiosk mode
The mode of a Web browser in which none of the controls, such as the browser menu bar and toolbar, are shown.
L
LAN-free data movement
The direct movement of client data between client machines and storage devices on a storage area network (SAN). See also server-free data movement.
LDAP
See lightweight directory access protocol.
lenient distribution
The process of distributing software packages to endpoints, managed nodes, or profile managers that are not current subscribers to the profile manager to which the software packages belong.
level of service
See service level agreement.
library
(1) A repository for demountable recorded media, such as magnetic tapes.
(2) A collection of one or more drives, and possibly robotic devices (depending on the library type), which can be used to access storage volumes.
license pool
A set of licenses for a specific product that are administered as a group with a set of rules that govern thresholds, hard stops, the running of multiple instances, and the availability of the product to users and nodes.
Lightweight Directory Access Protocol (LDAP)
An open protocol that (a) uses TCP/IP to provide access to directories that support an X.500 model and (b) does not incur the resource requirements of the more complex X.500 Directory Access Protocol (DAP). Applications that use LDAP (known as directory-enabled applications) can use the directory as a common data store and for retrieving information about people or services, such as e-mail addresses, public keys, or service-specific configuration parameters.
lightweight third party authentication (LTPA)
An authentication framework that allows single signon across a set of Web servers that fall within an Internet domain.
local authentication
The process of validating a user's identity to the system according to the local operating system account to which the user logged in. If the user is authenticated, the user is mapped to a principal. See also principal. Contrast with remote authorization.
local registration file (LRF)
A file that provides information about an agent or daemon, such as the name of the agent or daemon, the location of the executable code, the names of processes dependent on the agent or daemon, and details about the objects that the agent manages.
logged-on operator
An operator station task that requires a terminal and a logged-on user.
logical occupancy
The occupancy of logical files in a storage pool. This space does not include the unused space that is created when logical files are deleted from aggregate files, so it might be less than the physical occupancy. See also physical occupancy.
logical unit (LU)
A type of network accessible unit that enables users to gain access to network resources and communicate with each other.
logical volume
The combined space on all volumes for either the database or the recovery log. The database is one logical volume and the recovery log is one logical volume.
LTPA
See lightweight third party authentication.
LU
See logical unit.
LU conversation (LUC)
A conversation between two LUs. LU conversations are used to forward alerts and retrieve data from distributed databases. LU conversations also handle hardware monitor and session monitor cross-domain conversations. See also logical unit.
LU group
A grouping of logical units according to some affinity. Using an LU group simplifies data collection and analysis.
LUC
See LU conversation.
LUC task
A task that serves as the endpoint of an LUC session.
M
managed node
In a Tivoli environment, a computer system on which Tivoli Management Framework is installed. Contrast with endpoint.
managed resource
(1) An entity that exists in the run-time environment of an IT system that can be managed.
(2) In a Tivoli environment, a database object that represents a resource and is governed by policies. See also policy and resource.
managed target
A plug-in application that requires the support of user accounts from IBM Tivoli Identity Manager.
management class
In storage management, a policy object that users can bind to each file to specify how the server manages the file. The management class can contain a backup copy group, an archive copy group, and space management attributes. The copy groups determine how the server manages backup versions or archive copies of the file. The space management attributes determine whether the file is eligible to be migrated from the space manager client nodes to server storage and under what conditions the file is migrated. See also copy group.
management region
The set of managed objects on a particular map that defines the extent of the network that is being actively managed. The management region might vary across Tivoli NetView maps.
manifest
A text file that specifies the properties of a diagnostic guide or a tool.
map
A named collection of objects, symbols, submaps, and their relationships, all of which represent the network topology.
MCSL
See Monitoring Collection Specification Language.
measurement
See metric.
measurement group
A grouping or classification of measurement types. This grouping can represent any of the characteristics of the measurement, including grouping the measurements into broad classes, such as performance or availability.
measurement source
The source application where a measurement originates. Performance and availability measurements are collected by the source application and written to a central data warehouse for later processing.
measurement type
The class or meaning of a particular measurement. The measurement type identifies what a particular measurement represents, such as PERCENTUSED for the amount of disk space that is used on a particular component. For each measurement type, many measurements are recorded. Measurement types remain the same across different components, while the measurements themselves are related to only one component.
metadata
Data that describes the characteristics of stored data.
metric
A measurement type. Each resource, which can be monitored for performance, availability, reliability, and other attributes, has one or more metrics about which data can be collected. Sample metrics include the amount of RAM on a PC, the number of help desk calls made by a customer, the average CPU busy time for a server, and mean time to failure for a hardware device.
metric evaluation
The process of interacting with data collectors, calculating metric values, providing information on trends and violations, and validating metric results. See also data collector.
migrate
To move data from one storage location to another. See also client migration and server migration.
migration
The installation of a new version or release of a program to replace an earlier version or release.
mirroring
The process of writing the same data to multiple disks at the same time. The mirroring of data protects it against data loss within the database or within the recovery log.
modified mode
In storage management, a backup copy group mode that specifies that a file is considered for incremental backup only if it has changed since the last backup. A file is considered a changed file if the date, size, owner, or permissions of the file have changed. Contrast with absolute mode.
monitor
(1) An entity that performs measurements to collect data pertaining to the performance, availability, reliability, or other attributes of applications or the systems on which the applications rely. These measurements can be compared to predefined thresholds. If a threshold is exceeded, administrators can be notified, or predefined automated responses can be performed. See also threshold.
(2) In privacy management, an entity that checks the storage locations for personally identifiable information (PII) for attempts to submit data or retrieve data.
monitored application
An application that interfaces with a Tivoli Privacy Manager monitor to enable access to monitored items that flow between the application and the monitored system. See also monitored item.
monitored item
A discreet item, such as a data item, command, or attribute, that is associated with an owner and that is received by a monitor. See also monitored application.
monitoring collection
A collection of predefined monitors. Administrators can also use custom-developed or third-party monitoring collections.
Monitoring Collection Specification Language (MCSL)
A proprietary programming language that is used to define monitoring collections.
mount point
A logical drive through which volumes are accessed in a sequential access device class. For removable media device types, such as cartridges, a mount point is a logical drive associated with a physical drive. For the file device type, a mount point is a logical drive associated with an I/O stream. The number of mount points for a device class is defined by the value of the mount limit attribute for that device class.
multi-factor authentication
A protected object policy (POP) that forces a user to authenticate using two or more levels of authentication. For example, the access control on a protected resource can require that the users authenticate with both user name/password and user name/token passcode. See also protected object policy.
multi-instance
A property of a license pool that specifies whether multiple instances of an application can be opened using a single license. Multi-instance licenses can apply to multiple instances for the same user, multiple instances for users in the same user group, or multiple instances on the same node. See also license pool.
multiplexed distribution
The mechanism used by Tivoli Enterprise applications to transfer data to multiple targets. Tivoli Management Framework provides two multiplexed distribution services, MDist and MDist 2.
multiplexing proxy agent (MPA)
A gateway that accommodates multiple client access. These gateways are sometimes known as Wireless Access Protocol (WAP) gateways when clients access a secure domain using a WAP. Gateways establish a single authenticated channel to the originating server and tunnel all client requests and responses through this channel.
N
name registry
See Tivoli name registry.
name translation
In SNA network interconnection, the conversion of logical unit names, logon mode table names, and class-of-service names that are used in one network to equivalent names for use in another network.
NAS node
A client node that is a network-attached storage (NAS) file server. In Tivoli Storage Manager, data for the NAS node is transferred by the NAS file server, which is controlled by the Tivoli Storage Manager server. The Tivoli Storage Manager server uses the network data management protocol (NDMP) to direct the NAS file server in its backup and restore operations. A NAS node is also called a NAS file server node.
native launcher
The executable file that starts an installation, upgrade, or uninstallation program on a specific platform.
native mode
In Tivoli Monitoring, a programming model that uses elements of the Common Information Model to gather data that is used to define the dynamic model of a new resource model.
NDMP
See Network Data Management Protocol.
NetWare managed site
In a Tivoli environment, a resource that represents (a) a Novell NetWare server on which the Tivoli NetWare repeater is installed and (b) one or more clients. A NetWare managed site enables profiles to be distributed through the NetWare server to one or more specified client PCs using either TCP/IP or IPX.
network-based authentication
A protected object policy (POP) that controls access to objects based on the Internet protocol (IP) address of the user. See also protected object policy.
network class
A class of objects that represent compound objects in a network, such as hosts and network devices. Contrast with connector class.
Network Data Management Protocol (NDMP)
An industry-standard protocol that enables a network storage-management application to control the backup and recovery of a file server, without installing third-party software on that file server.
Network File System (NFS)
A protocol, developed by Sun Microsystems, Incorporated, that allows any host in a network to gain access to another host or netgroup and their file directories.
network performance analysis logical unit
See NPALU.
notice
In a Tivoli environment, a message that is generated by a systems management operation that contains information about an event or the status of an application. Notices are stored in notice groups. See also bulletin board.
notice group
In a Tivoli environment, an application- or operation-specific container that stores and displays notices that pertain to specific Tivoli functions. The Tivoli bulletin board is comprised of notice groups. See also bulletin board and notice.
NPALU
A logical unit (LU) that is defined in the network control program (NCP) and that is used to collect performance data from the NCP.
O
object dispatcher
In the Tivoli environment, an object request broker provided by Tivoli Management Framework.
object identifier (OID)
An identifier, which is usually a string of integers, that uniquely identifies a particular object within a distributed system.
object reference
In a Tivoli environment, the object identifier (OID) that is given to an object during its creation.
object request broker (ORB)
In object-oriented programming, software that serves as an intermediary by transparently enabling objects to exchange requests and responses.
offering
A defined level of service that associates a schedule (with states such as peak, off hours, and no service periods) with particular metrics to be evaluated. Offerings form the basis of service level agreements. Offerings are used to provision, bill for, and monitor a service. Offerings can monitor the service level of a customer's overall experience (external service offering), the internal enterprise infrastructure (internal service offering), or the services provided by outside companies (outsourced service offering
OID
See object identifier.
OLAP
See online analytical processing.
online analytical processing (OLAP)
The process of collecting data from one or many sources; transforming and analyzing the consolidated data quickly and interactively; and examining the results across different dimensions of the data by looking for patterns, trends, and exceptions within complex relationships of that data.
open registration
A registration process in which any user can register their own workstation as a client node with the server. Contrast with closed registration.
operational data
Data that is collected by an application during its operation. An application can store its operational data in many formats, such as relational databases, log files, and spreadsheet files. It is "live" data, as opposed to the historical data in the central data warehouse. See also operational data store.
operational data store
The place where operational data resides, such as a database or a log file.
operator profile
A specification of the resources and activities over which a network operator has control. The operator profile is stored in a file that is activated when the operator logs on.
opt in
In a privacy policy, a representation of an individual's implicit or explicit choice to accept the intended use of the individual's privacy-sensitive information. See also opt out and privacy policy.
opt out
In a privacy policy, a representation of an individual's implicit or explicit choice to decline the intended use of the individual's privacy-sensitive information. See also opt in and privacy policy.
ORB
See object request broker.
ORB set
A group of ORBs.
order
The definition of a service level agreement (SLA), which also includes customer information, an offering, and the specific elements that make up the SLA. For example, customer "Accounting" signs up for the "Gold" offering for the "www.acme.com/accounting" Web site.
organizational role
In identity management, an attribute that is used to determine membership to policies that grant access to various managed resources.
out-band discovery
Obsolete term. See out-of-band discovery.
out-of-band discovery
The process of discovering storage area network (SAN) data, including topology and device data, without using the Fibre Channel data paths. A common mechanism for out-of-band discovery is the use of SNMP MIB queries, which are invoked over a TCP/IP network. Contrast with in-band discovery.
P
P3P
See Platform for Privacy Preferences.
P3P privacy policy
A privacy policy that is based on the P3P specification. See also privacy policy.
PAC
See privilege attribute certificate.
page
(1) In a virtual storage system, a fixed block that has a virtual address and is transferred as a unit between real storage and auxiliary storage.
(2) A unit of space allocation within database volumes.
page display time
The time it takes to render a Web page on the requestor's browser, from the time the rendering begins until it is complete.
participant
In identity management, a person that has the authority to respond to a request that is submitted through the workflow engine. A participant can be identified as an individual, as a role, or by using a custom JavaScript script.
path test
A test that enables a network operator to determine whether a path is available between two logical units (LUs) that are currently in session.
performance class
A description of an objective or commitment of performance. It consists of a performance class name, boundary definitions, response time definitions, response time ranges, and response time percentage objectives. Sessions can be assigned performance classes.
period
A component of a schedule that divides the timeline into named intervals, such as peak, off-peak, and no service.
permission
The ability to access a protected object, such as a file or directory. The number and meaning of permissions for an object are defined by the access control list. See also access control list.
personally identifiable information (PII)
In a privacy management environment, data elements that are associated with a specific individual and that can be accessed and used in such a way that the identity of the individual who submitted the PII is known. PII can be a single point of data, such as political party affiliation, or several points of data that are combined, such as names, e-mail addresses, and phone numbers. To maintain their privacy, individuals who submit PII to an organization want to limit the propagation of that PII to other individuals within the organization or to other organizations. Some PII data might be privacy-sensitive. The use of privacy-sensitive PII might be governed by privacy legislation or an organization's privacy policy.
physical occupancy
The occupancy of physical files in a storage pool. This space includes the unused space created when logical files are deleted from aggregate files. See also logical occupancy.
PII owner
In a privacy management environment, an individual with whom privacy-sensitive information is associated. As the owner of PII, the individual might have the legal right to limit the propagation of the privacy-sensitive information within the organization or to other organizations and individuals. See also personally identifiable information.
PII user
In a privacy management environment, an individual or organization, or an agent acting on behalf of an individual or organization, that collects privacy-sensitive information from a PII owner and then uses that information in accordance with the privacy policies. See also PII owner.
ping
In communications, a test of reachability.
pipeline
A message processing procedure that consists of one or more programs known as stages.
Platform for Privacy Preferences (P3P)
The World Wide Web Consortium (W3C) specification that enables Web sites to define their privacy practices in a standard format. For more information, see the P3P project Web site (http://www.w3.org/P3P/).
playback session
A transaction that consists of a set of simulations that run sequentially or concurrently following the defined event-driven scheduling.
plug-in router
A server that routes directives to the appropriate plug-in adapter based on the managed target. See also directive and managed target.
policy
A set of rules that are applied to managed resources.
policy domain
A grouping of policy users with one or more policy sets, which manage data or storage resources for the users. The users can be client nodes or agents on managed hosts.
policy region
A group of managed resources that share one or more common policies and which model the management or organizational structure of a network computing environment. Administrators use policy regions to group similar resources, to define access to the resources, to control the resources, and to associate rules for governing the resources.
policy set
A group of rules in a policy domain. The rules specify how data or storage resources are automatically managed for users in the policy domain. Rules can be contained in management classes or policy actions. The users can be client nodes or agents on managed hosts. See also policy domain.
policy subregion
In a Tivoli environment, a policy region created or residing in another policy region. When a policy subregion is created, it initially uses the resource and policy properties of the parent policy region. The Tivoli administrator can later change or customize these properties to reflect the specific needs and differences of the subregion.
polling
(1) The process whereby stations are invited, one at a time, to transmit. The polling process usually involves the sequential interrogation of several data stations.
(2) In network management, the process by which a manager interrogates one or more managed nodes at regular intervals.
polling
The process by which databases are interrogated at regular intervals to determine if data needs to be transmitted.
POP
See protected object policy.
portal
An integrated Web site that dynamically produces a customized list of Web resources, such as links, content, or services, available to a specific user, based on the access permissions for the particular user.
portfolio
A container for the tasks that apply to each role that the user is assigned. The portfolio is the primary way in which a user's work is organized in the graphical interface.
portlet
An area of content on a portal Web page that has a predefined role, such as retrieving the latest news headlines, driving a search engine, searching a database, viewing stock quotes, serving HTML files, or displaying a calendar.
portmapper
A program that maps client programs to the port numbers of server programs. A portmapper program is used with remote procedure call programs.
predicate
A statement using rule language syntax or Prolog language syntax that performs a function in a rule action.
prediscovery
A type of discovery in which a program is run against user-provided files in an offline environment and provides information that is used to monitor resources.
preference node
A collection of configuration data, represented by key-value pairs, that is specific to an ORB or ORB set and that is required by a component.
preparation phase
In software distribution, the phase in which each action in a software package prepares the conditions for successfully executing an install or remove operation. If the preparation phase fails, the target system is returned to its original state. See also transactional mode.
prerequisite
A component or service that is needed before a component can be installed.
principal
An authenticated user. A principal is identified by its associated security context, which defines its access rights.
pristine tool
A tool for creating both a repository and the diskettes for installing an operating system remotely.
privacy-sensitive information
In privacy management, information that is classified for protection from general and unauthorized use. In the Platform for Privacy Preferences (P3P) specification, privacy-sensitive information is referred to as personally identifiable information (PII). See also Platform for Privacy Preferences and personally identifiable information.
privacy policy
In a privacy management environment, an organization's stated position on how it intends to use the privacy-sensitive information it collects. A privacy policy constitutes an agreement between an organization and the owners of personally identifiable information (PII) that the organization collects.
privacy policy statement
See usage statement.
private key
In computer security, a key that is known only to its owner. See also public key.
privilege attribute certificate (PAC)
A digital document that contains a principal's authentication and authorization attributes and a principal's capabilities.
privilege class
A level of authority that is granted to an administrator. The privilege class determines which administrative tasks the administrator can perform. For example, an administrator with system privilege class can perform any administrative task. Also called administrative privilege class.
probe
A monitor that tests a transaction and then detects and reports any errors that were generated during that test.
problem
An abnormal symptom in a system that is being managed.
profile
In a Tivoli environment, a container for application-specific information about a particular type of resource. A Tivoli application specifies the template for its profiles, which includes information about the resources that the Tivoli application can manage.
profile manager
In a Tivoli environment, a container for profiles that links the profiles to a set of resources, called subscribers. Tivoli administrators use profile managers to organize and distribute profiles. A profile manager can operate in the dataless mode or database mode. See also Configuration Change Management System.
propagation
The escalation of resource-related information, such as alerts or status.
propagation agent
An agent that checks the incoming events against resource criteria, such as threshold level, priority level, and state. If the resource criteria are met, the propagation agent changes the state of a resource and generates subsequent child events that are sent to the event stream and re-evaluated by the propagation agents.
protected object
The logical representation of an actual system resource that is used to apply access control lists (ACLs) and protected object policies (POPs) and to authorize user access. See also protected object policy and protected object space.
protected object policy (POP)
A type of security policy that imposes additional conditions on the operation that is permitted by the access control list (ACL) policy to access a protected object. It is the responsibility of the resource manager to enforce the POP conditions. See also access control list, protected object, and protected object space.
protected object space
The virtual object space representation of actual system resources that is used to apply access control lists (ACLs) and protected object policies (POPs) and to authorize user access. See also protected object and protected object policy.
prototype profile
In a Tivoli environment, a model profile from which a Tivoli administrator can create other similar profiles, often by cloning the existing profile.
provision
To provide, deploy, and track a service or component.
provisioning
The process of setting up and maintaining a user's access to a system.
provisioning policy
A policy that defines the access to various types of managed services, such as Tivoli Identity Manager or operating systems. Access is granted to all persons or to those persons with a specific organizational role. Access can also be granted specifically to persons who are not members of any organizational role.
proxy endpoint
In a Tivoli environment, a representation for an entity (such as a network device or a host) that functions as a subscriber for profiles. The proxy endpoint is created on a managed node, which performs the proxy role during profile distribution. Multiple proxy endpoints can be created on the same managed node.
proxy managed node
In a Tivoli environment, a managed resource that provides communication between the Tivoli server and a PC that is running the PC agent.
public key
In computer security, a key that is made available to everyone. See also private key.
Q
quality of protection
The level of data security, which is determined by a combination of authentication, integrity, and privacy conditions.
query
In a Tivoli environment, a combination of statements that are used to search a repository for systems that meet certain criteria. The query object is created within a query library.
R
randomization
The process of distributing schedule start times for different clients within a specified percentage of the schedule's startup window.
RDBMS
See relational database management system.
RDBMS Interface Module (RIM)
The module in the distributed object database that contains information about the installation of the relational database management system (RDBMS).
Ready for IBM Tivoli software (Ready for Tivoli)
Pertaining to a product that has passed rigorous product certification testing to ensure that the product delivers seamless integration with Tivoli technology management solutions and provides true end-to-end technology management functionality. A product that has passed this certification testing carries the Ready for IBM Tivoli software logo.
real object
An object that represents an actual resource.
realm
A grouping of customers that organizes customer information and, in some cases, controls access to that information. Customers can be grouped by region, by company, by a division within a company, or by some other logical grouping.
recall
To access files that were migrated from workstations to server storage. Contrast with migrate.
reconciliation
In identity management, the process of synchronizing the accounts and supporting data on the central data repository with the accounts and supporting data on the managed resource.
record-level subscriber (RLS)
An attribute of a user record that specifies which endpoints are subscribed to the user record.
recovery plan
A subset of an activity plan that provides replacement activities for those that fail in the original activity plan. The replacement activities are performed only on the targets on which the activities failed. The recovery plan specifies the general settings for the activities and targets, the schedule for execution, and notification information. See also activity plan.
rediscovery
A type of discovery in which a program finds resources that were moved and updates the record of their location, including the location of resources that were deleted. For example, resources that were previously discovered, but are no longer found, are deleted.
reduce
To free up enough space such that you can delete a volume from the database or recovery log. Contrast with extend.
reference model
In the context of Tivoli software, the model configuration for a system, or set of systems, that is used to maintain consistent configurations in a distributed environment.
registered name
In a Tivoli environment, the name by which a particular resource is registered with the Tivoli name registry when it is created.
registry
The data store that contains access and configuration information for users, systems, and software.
regular command
A command that can run concurrently with other regular commands and that can be interrupted by immediate commands. Most commands and all command lists are regular commands. See also immediate command.
relational database
A database that can be perceived as a set of tables and manipulated in accordance with the relational model of data.
relational database management system (RDBMS)
A collection of hardware and software that organizes and provides access to a relational database.
remote authentication
The process of validating the user ID and password that are supplied by a user for a remote system to which the user requires access. If the user is authenticated, the user is mapped to a principal. See also principal. Contrast with local authentication.
remote control proxy
A component that enables many machines on one side of a firewall to communicate, through a common port, to many machines on the other side of the firewall.
repeater
In a Tivoli environment, a managed node that receives a single copy of data and distributes it to the next tier of clients.
repeater range
The Tivoli clients that receive data from a repeater site.
replica
A server that contains a copy of the directory or directories of another server. Replicas backup servers in order to enhance performance or response times and to ensure data integrity.
resource
A hardware, software, or data entity that is managed by Tivoli software. See also managed resource.
resource gateway
In a Tivoli environment, the software that enables Tivoli applications to gain access to resources, such as pervasive devices, and perform operations on those resources.
resource level
The hierarchical position of a device (and the software that is contained within it) in a data processing system. For example, a first-level resource could be the communication controller, and the second-level resource could be the line connected to it.
resource model
The logical modeling of one or more resources on which cyclical data collection, data analysis, and monitoring are based. Related events and actions are triggered, if required. For any resource model, users can specify individual thresholds and event aggregation rules. See also event.
resource model engine (RME)
An analysis engine that is used to identify, notify, and cure performance and availability problems. The RME analyzes performance data that is collected from physical resources and uses that data to identify a problem, then triggers corrective action to cure the discovered problem, and finally escalates problem notification to management tools.
resource object
The representation of an actual network resource, such as a service, file, and program.
resource provisioning management (RPM)
The management principle that combines three key elements -- business logic, workflow management, and distribution agents -- which together centrally manage the provisioning of users with access to information and business resources.
resource role
In a Tivoli environment, an authorization role that provides access to specific resources in the local Tivoli region and any connected Tivoli region (for example, policy regions or the Administrator collection).
resource type
In a Tivoli environment, one of the properties of a managed resource. Resource types are defined in the default policy for a policy region.
response file
A file that contains a set of predefined answers to questions that will be asked by a program and that is used to specify values instead of entering those values one at a time.
response level
The state of a monitor when a specified threshold is reached. An administrator can set thresholds for each level, which trigger a response. There can also be several event responses for each level. See also severity level.
response time monitor (RTM)
A feature that is available with certain hardware devices to allow the measurement of response times, which can be collected and displayed.
rest page
A Web page that is displayed on a device and customized by a provider to display advertising and other information when the device is disconnected from the network.
restore
(1) To copy information from its backup location to the active storage location for use. Contrast with backup.
(2) To reactivate an account that was suspended.
retrieve
To copy archived information from the storage pool to the workstation for use. The retrieve operation does not affect the archive copy in the storage pool. Contrast with archive. See also storage pool.
rights
The permission to perform a certain action on a specific resource. See also capability.
RIM
See RDBMS Interface Module.
RIM host
In a Tivoli environment, the managed node on which one or more RIM objects are installed. See also RIM object.
RIM object
An object that provides the attributes and methods that enable applications to access an RDBMS.
RIM repository
In a Tivoli environment, a relational database that contains information that is collected or generated by Tivoli applications. Examples of a RIM repository include the configuration repository and the event database.
risk correlation
The process of correlating sensor events that deal with suspicious activity within a risk management environment. See also event correlation.
RLS
See record-level subscriber.
RME
See resource model engine.
role
A job function that identifies the tasks that a user can perform and the resources to which a user has access. A user can be assigned one or more roles.
role activation
The process of applying the access permissions to a role.
role assignment
The process of assigning a role to a user, such that the user has the appropriate access permissions for the object defined for that role.
root administrator
In a Tivoli environment, the initial Tivoli administrator that is created during the installation of the Tivoli Management Framework. This administrator is the root user on UNIX systems and a member of the administrator group on Microsoft Windows systems.
root cause analysis
The process of determining the actual cause of a network problem. For example, when a device on the network cannot be reached, it might be because of a problem with the device or a problem with a network component that is used to reach that device.
routing file
An ASCII file that contains commands that control the configuration of messages.
RPM
See resource provisioning management.
RSA encryption
A system for public-key cryptography used for encryption and authentication. It was invented in 1977 by Ron Rivest, Adi Shamir, and Leonard Adleman. The security of the system depends on the difficulty of factoring the product of two large prime numbers.
RTM
See response time monitor.
rule
A set of logical statements that enable the event server to recognize relationships among events and to execute automated responses accordingly. See also event correlation, rule base, rule set, and summarization.
rule action
A named section of a rule that contains one or more predicate calls to run if the rule evaluates to true.
rule base
One or more rule sets and the event class definitions for which the rules are written. The Tivoli Enterprise Console product uses the rule base in managing events. An organization can create many rule bases, with each rule base fulfilling a different set of needs for network computing management. However, only one rule base can be active at a time.
rule set
A file that contains one or more rules. See also rule base.
ruling
The result of a conformance check for a single governing privacy policy. A conformance check result can be either pass or fail. A failed conformance check returns a default ruling. See also default ruling.
run time
The time period during which a computer program is executing. A run-time environment is an execution environment.
S
scalability
The ability of a distributed system to expand in size without making changes to the system structure, applications, or the way users deal with the system.
scanner
Software that is used to gather hardware information and software information from systems and devices.
schema
The set of statements, expressed in a data definition language, that completely describe the structure of a database. In a relational database, the schema defines the tables, the fields in each table, and the relationships between fields and tables.
scratch volume
A labelled volume that is either blank or contains no valid data, that is not currently defined, and that is available for use.
secure domain
Obsolete term. See domain.
Secure Sockets Layer (SSL)
A security protocol that provides communication privacy. SSL enables client/server applications to communicate in a way that is designed to prevent eavesdropping, tampering, and message forgery. SSL was developed by Netscape Communications Corp. and RSA Data Security, Inc.
security context
The digitally signed token that identifies a principal, lists the roles and access rights for the principal, and contains information about when the token expires.
security group
In a Tivoli environment, a group of managed resources over which a Tivoli administrator is granted authority. Examples of a security group include a policy region and the administrator collection.
seed file
A file that contains a list of nodes within an administrative domain that helps create the network topology map.
selective backup
The process of backing up selected files or directories from a client domain. See also incremental backup.
senior role
See authorization role.
sensor
(1) A device that converts measurable elements of physical processes into data meaningful to a computer.
(2) Software that monitors security networks, applications, or systems for security-related information, possibly indicative of suspicious activity.
sensor event
An intrusion detection event that is reported by an IBM Tivoli Risk Manager sensor or adapter to the IBM Tivoli Risk Manager server. See also event.
sensor event adapter
Software that intercepts information that is generated by one or more sensors, filters the data, reformats the data into an appropriate sensor event, and forwards the sensor event.
serialization
The process of handling files or directories that are modified during backup or archive processing.
server-free data movement
The direct movement of client data by a third party data mover between source disks and target storage devices, all of which are on a storage area network (SAN). See also LAN-free data movement.
server migration
The process of moving data from one storage pool to the next storage pool defined in the hierarchy, based on the migration thresholds that are defined by the storage pools.
service
(1) Work that is performed by a server. A service can be a simple request for data to be sent or stored (as with file servers, HTTP servers, or e-mail servers), or it can be more complex work (as with print servers or process servers).
(2) A program that performs a primary function within a server or related software.
service level agreement (SLA)
An agreement or contract between a provider of services and a customer of those services, which sets expectations for the level of service with respect to availability, performance, and other measurable objectives.
service level objective (SLO)
A specification of a metric that is associated with both breach values for peak and off-peak hours in a schedule and a guaranteed level of service that is defined in a service level agreement (SLA). See also metric.
service offering
Obsolete term. See offering.
service provider
Any company that provides services for a fee to its customers, such as telecommunication companies, application service providers, enterprise IT, and Internet service providers (ISPs). These fee services include application provisioning, application hosting, service level agreement management, and others.
session monitor
A monitor that provides information about SNA sessions, including session partner identification, session status, connectivity of active sessions, and response time data. For problem determination, it also provides session trace data, route data, and VTAM sense code information. Contrast with hardware monitor.
session setup failure notification (SSFN)
Session awareness data that is provided when there is a failure. It identifies the system services control point that detects the error, the SSCPs that are involved, and the names of the session partners affected.
session statistics file
An online VSAM key-sequenced data set that is used for storing session data.
severity level
A classification for an event that indicates its degree of severity. In the Tivoli Enterprise Console product, severity levels can be modified by a user or a rule.
shared submap
In Tivoli NetView, a submap on which multiple application programs manage objects on the application plane. Shared submaps allow application programs to cooperatively contribute information to the same submap. Contrast with exclusive submap.
show cause
The reason code in the record maintenance statistic that indicates to VTAM or to Tivoli NetView for z/OS the threshold that was exceeded and whether the threshold has been dynamically altered.
signature
The set of unique information that identifies a software application, such as the name, version, and file size of an application.
signature authority
The right to approve or deny a request that is submitted to the workflow engine. A user or group of users is granted signature authority when they are designated as the participant or escalation participant in a workflow design.
signature package
A logical grouping of two or more signatures.
silent installation
An installation that does not send messages to the console but instead stores messages and errors in log files. Also, a silent installation can use response files for data input. See also response file.
simple connection
The representation of connectivity as seen from one endpoint of a connection.
simple rule
A rule that pertains to only one event and contains predefined conditions and actions. See also compound rule.
single sign-on
See single signon.
single signon (SSO)
The ability of a user to log on once and access multiple applications without having to log on to each application separately. See also global signon.
SLA
See service level agreement.
SLO
See service level objective.
slot conditions
Obsolete term for attribute condition.
slot facet
Obsolete term for attribute facet.
SmartSet
A customer-defined group of objects that can be acted on as an entity by some Tivoli functions, facilitating policy-based management. Users define SmartSets by specifying selection criteria or by identifying specific objects. Examples of criteria-derived SmartSets are all Cisco routers or all routers with a status of critical.
SNA
See Systems Network Architecture.
software entitlement
In IBM Tivoli License Manager, the rules that define how a software product is monitored, the conditions under which licenses are allocated and the restrictions placed on the availability of license pools to application users and monitored nodes. Software entitlement information include product entitlement settings and license pools.
software package
In software distribution, a compressed text file that describes the actions to perform on the target system to which it is distributed. Formerly called file package. See also software package definition.
software package block
In software distribution, a file that contains the resources that are referred to by the actions in a software package. Formerly called file package block. See also software package.
software package definition
In software distribution, a non-compressed text file that describes the actions to perform on the target system to which it is distributed. Previously known as file package definition. See also software package.
source
A resource, such as a host, that an event adapter monitors.
source host
The managed node on which the source files and directories that are referred to in a software package or a file package reside. See also software package and file package.
space management
The process of keeping sufficient free storage space available on a client node by migrating files to server storage. The files are migrated based on criteria defined in management classes to which the files are bound and the include-exclude list. See also migrate.
span
A user-defined group of network resources within a single domain. Spans provide a level of security by allowing the system administrator to define (a) the resources to which an operator can issue commands, (b) the views of resources that an operator can display, and (c) the resources in a view that an operator is allowed to see (an operator might not be authorized to see all the resources in a particular view). See also span check.
span check
The process of verifying that an operator is authorized to perform actions on a network resource, a NetView management console view, or a resource within a view.
SRF
See symbol registration file.
SSFN
See session setup failure notification
SSL
See secure sockets layer.
SSO
See single signon.
stale copy status
A copy status that specifies that a volume copy is not available to the database or the recovery log.
stanza
In software distribution, a section of a software package that defines either a specific action to be performed on that the software package or a set of conditions under which actions are to be performed on the software package. The complete software package is a stanza that contains a hierarchy of many different stanzas. See also software package.
star schema
A type of relational database schema that is made up of a fact table and a set of dimension tables. In Tivoli Enterprise Data Warehouse, the fact table holds the values of the component's metrics, and the dimension tables hold the values of the attributes of a component or a metric.
status monitor
A monitor that collects and summarizes information on the status of resources that are defined in a VTAM domain.
step-up authentication
A protected object policy (POP) that relies on a preconfigured hierarchy of authentication levels and enforces a specific level of authentication according to the policy set on a resource. The step-up authentication POP does not force the user to authenticate using multiple levels of authentication to access any given resource, but it requires the user to authenticate at a level at least as high as that required by the policy that protects a resource.
storage hierarchy
The logical ordering of primary storage pools, based on the speed and capacity of the devices that the storage pools use, as defined by the appropriate administrator. See also storage pool.
storage location
Data elements within a storage system that can be mapped to (a) the schema of the storage system, such as a column in a database table, (b) an aggregation of data, such as a table, or (c) a way of accessing the data, such as a transaction identifier. See also storage system.
storage pool
A named set of storage volumes that is the destination that is used to store client data. A storage pool stores backup versions, archive copies, and files that are migrated from space manager client nodes. You backup the primary storage pool to the copy storage pool. The copy storage pool cannot be used as a destination for a backup copy group, an archive copy group, or a management class for space-managed files.
storage system
Any system in a network that persistently stores data that has been collected for future use or that acts as a gateway to such data.
submap
A subsection of a map. See also map.
submap stack
The queue of Tivoli NetView submaps that are used to navigate to a particular submap.
subscriber
In a Tivoli environment, a resource that is subscribed to a profile manager.
subscription
In a Tivoli environment, the process of identifying the subscribers that the profiles are distributed to.
subscription list
In a Tivoli environment, a list that identifies the subscribers to a profile manager. A profile manager can be included in a subscription list in order to subscribe several resources simultaneously rather than adding each resource individually.
suffix
A distinguished name that identifies the top entry in a locally held directory hierarchy. Because of the relative naming scheme used in Lightweight Directory Access Protocol (LDAP), this suffix applies to every other entry within that directory hierarchy. A directory server can have multiple suffixes, each identifying a locally held directory hierarchy.
summarization
The process of aggregating events and then submitting the set of events with a much smaller number of summary events.
summary report
A report that shows the values of many metrics for many components from only one star schema. Typically, a summary report examines large numbers of metrics, often showing subtotals for a particular grouping and grand totals for the entire report. Data in a summary report is typically displayed as a text table, rather than in a graphical format. See also extreme case report and health check report.
super role
See authorization role.
symbol registration file (SRF)
A file that is used to define symbol classes and subclasses.
synchronized copy status
A copy status that specifies that a volume copy is either the only volume copy or is synchronized with other volume copies in the database or in the recovery log. When a volume copy is synchronized, mirroring has started. See also mirroring.
systems management
(1) Functions in the application layer related to the management of Open Systems Interconnection (OSI) resources and their status across all layers of the OSI architecture.
(2) The tasks that are involved in maintaining the system and modifying the system to meet changing requirements.
Systems Network Architecture (SNA)
An architecture that describes the logical structure, formats, protocols, and operational sequences for transmitting information units through the networks and also the operational sequences for controlling the configuration and operation of networks.
T
target
(1) The final destination for an action or operation.
(2) Any part of a license management infrastructure that can have exclusive use of a license pool. A target can be a division, a node, or an agent, depending on how the target distribution parameters for the license pool are defined.
target filter
A filter that is defined for each capability set and that is based on the attributes defined for a target instance. See also capability.
target host
See endpoint.
target type
The property of a license pool that determines the availability of the license pool on nodes in the customer's environment. Target types include enterprise, division, node, and agent. For example, an enterprise license pool is available throughout the customer organization. For division, node, and agent license pools, the administrator defines the target distribution parameters to determine the availability of the license pool in those locations. See also license pool.
task
(1) An activity that has business value, is initiated by a user, and is performed by software.
(2) In a Tivoli environment, the definition of an action that must be routinely performed on various managed resources throughout the network. A task defines the executables to be run when the task is executed, the authorization role that is required to execute the task, and the user or group name under which the task will execute.
task driver
The function that interacts with the appropriate Tivoli software to perform a task. Also, if the respective task has a user interface, the task driver provides that interface.
task library
In a Tivoli environment, a container in which a Tivoli administrator can create and store tasks and jobs.
Task Library Language (TLL)
In a Tivoli environment, a programming language used to define a task library. The TLL definition can be used to copy a task library from one installation to another. The TLL also allows the arguments for each task to be described such that graphical user interface tools can interpret them and present an interface for operators who want to create the tasks.
threshold
A customizable value for defining the acceptable tolerance limits (maximum, minimum, or reference limit) for an application resource or system resource. When the measured value of the resource is greater than the maximum value, less than the minimum value, or equal to the reference value, an exception is raised. See also alarm level and monitor.
throttle
A condition that is defined in the filter table and that is used to regulate the flow of traps.
Tivoli administrator
In a Tivoli environment, a system administrator who has been authorized to perform systems management tasks and manage policy regions in one or more networks.
Tivoli client
A client of a Tivoli server. See also Tivoli server.
Tivoli desktop
In the Tivoli environment, the desktop that system administrators use to manage their network computing environments.
Tivoli environment
The configured Tivoli applications installed in a Tivoli management region. See also Tivoli management region.
Tivoli management agent
In a Tivoli environment, an agent on the endpoint that securely performs administrative operations.
Tivoli management region
See Tivoli region.
Tivoli management region client
Obsolete term. See managed node.
Tivoli management region role
Obsolete term. See authorization role.
Tivoli management region server
See Tivoli server.
Tivoli name registry
On a Tivoli server, a lookup table of resource labels and object identifiers that is used to prevent name-space conflicts. The Tivoli name registry is also the link between resources in connected Tivoli regions.
Tivoli NetWare repeater
In a Tivoli environment, a server application that is installed on a Novell NetWare server and that maintains a list of available clients for the server. The Tivoli NetWare repeater works with the NetWare managed site to perform profile distribution.
Tivoli region
The Tivoli server and the set of managed node gateways and endpoints that it serves. An organization can have more than one Tivoli region. A Tivoli management region addresses the physical connectivity of resources, whereas a policy region addresses the logical organization of resources.
Tivoli server
The server for a specific Tivoli management region that holds or references the complete set of Tivoli software, including the full object database.
TLL
See Task Library Language.
token
(1) In a local area network, the symbol of authority that is passed successively from one data station to another to indicate the station is temporarily in control of the transmission medium. Each data station has an opportunity to acquire and use the token to control the medium. A token is a particular message or bit pattern that signifies permission to transmit.
(2) In local area networks (LANs), a sequence of bits passed from one device to another along the transmission medium. When the token has data appended to it, it becomes a frame.
topology console
A console that displays systems and networking information provided by the topology server. The topology console uses color to indicate the status of objects from individual resources to entire networks.
transaction
An exchange between a workstation and a program, two workstations, or two programs that accomplish a particular action or result.
transactional mode
In software distribution, a mode of operation in which install and remove operations occur in two phases: the preparation phase and the commit phase. See also preparation phase and commit phase.
trend
A series of related measurements that indicates a defined direction or a predictable future result.
trigger
(1) An object in a database that is invoked indirectly by the database manager when a particular SQL statement is run.
(2) A set of SQL statements that are stored in a DB2 database and executed when a certain event occurs in a DB2 table.
triggered response
In a Tivoli environment, the action that is taken when a monitor reaches or exceeds a threshold.
trouble ticket
A record of a problem that has occurred. The trouble ticket becomes the formal vehicle to trace a problem from its occurrence to its resolution.
trusted root
In the Secure Sockets Layer (SSL), the public key and associated distinguished name of a certificate authority (CA).
U
UDP
See user-defined program.
underlying connection
The representation of lower-layer connectivity that is used by higher-layer connectivity. For example, the physical connection that transports data between two IP hosts is an underlying connection.
undoable-in-transactional mode
In software distribution, a transactional mode that reserves disk space during the preparation phase for backup copies that are required for undoability. Using this mode minimizes the risk of failure that is caused by insufficient disk space during the commit phase, during which backup copies are made.
undoable mode
In software distribution, a mode of operation in which committed actions can be rolled back because a backup copy was saved.
uniform resource identifier (URI)
The character string that is used to identify content on the Internet, including the name of the resource (a directory and file name), the location of the resource (the computer where the directory and file name exist), and how the resource can be accessed (the protocol, such as HTTP). An example of a URI is a uniform resource locator, or URL.
uniform resource locator (URL)
A sequence of characters that represent information resources on a computer or in a network such as the Internet. This sequence of characters includes (a) the abbreviated name of the protocol that is used to access the information resource and (b) the information that is used by the protocol to locate the information resource. For example, in the context of the Internet, these are abbreviated names of some protocols used to access various information resources: http, ftp, gopher, telnet, and news; and this is the URL for the IBM home page: http://www.ibm.com.
upcall
In a Tivoli environment, a method invocation from an endpoint "up" to the gateway. Contrast with downcall.
URI
See uniform resource identifier.
URL
See See uniform resource locator.
usage statement
In privacy management, a logical statement that identifies how personally identifiable information (PII) can be used. A statement identifies PII types, the groups that can access the PII types, the purposes for which the PII types can be used, and conditions that might apply to the use of the PII. For example, a privacy policy might include the following usage statement: "Doctors (group) can access medical records (PII type) for diagnosis and treatment (purpose)."
user
Any person, organization, process, device, program, protocol, or system that uses the services of a computing system. A user can be assigned one or more roles.
user-defined program (UDP)
In DB2 Universal Database, a program that a user supplies and defines to the Data Warehouse Center, as contrasted with supplied programs, which are included with and defined automatically in the Data Warehouse Center.
user assistance
Online information that accompanies a product and provides immediate information to assist the user in completing tasks. It can include help files, messages, screen text, images, or other reference information.
user experience time
The time it takes to complete a single HTTP transaction. Also known as round-trip time.
user identifier
In privacy management, a user key that the personally identifiable information (PII) owner is likely to know the value of. See also user key.
user key
In privacy management, a storage location, with a value that might or might not be known by the personally identifiable information (PII) owner, that represents the identity of the PII owner of other PII-classified storage locations. See also storage location.
user login map
A variable user name that can be mapped to different users on different operating systems.
user plane
In Tivoli NetView, the submap layer on which symbols of objects that are not managed by an application program are displayed. Symbols on the user plane are displayed with a shadow, which makes them appear higher than the symbols on the application plane. See also background plane.
user profile
In computer security, a description of a user that includes such information as user ID, user name, password, access authority, and other attributes that are obtained when the user logs on.
user registry
See registry.
user role
See authorization role.
V
validation policy
In a Tivoli environment, the policy that ensures that all resources in a policy region comply with the established policy of the Tivoli region. Validation policy prevents Tivoli administrators from creating or modifying resources that do not conform to the policy of the policy region in which the resources were created. Contrast with default policy.
vault
An encrypted file that is used to store sensitive information, such as database passwords. A separate file contains a key that is used to decrypt the data in the vault file.
view
A logical table that consists of data that is generated by a query. A view is based on an underlying set of base tables, and the data in a view is determined by a SELECT statement that is run on the base tables. Contrast with base table.
violation
The state of a service level agreement (SLA) when one or more service level objectives are not met. SLA violations can be used to trigger a remediation policy for affected customers.
virtual hosting
The capability of a Web server that allows it to appear as more than one host to the Internet.
virtual user
Emulation of the processes that are performed by an actual user of the system.
virtual volume
An archive file on a target server that represents a sequential media volume on a source server.
W
warehouse
See data warehouse.
warehouse agent
Software that manages the flow of data between one or more data sources and one or more target warehouses. Warehouse agents use Open Database Connectivity (ODBC) drivers or the DB2 command line interface (CLI) to communicate with different databases.
warehouse agent site
See agent site.
warehouse enablement pack
A separately installable part of a Tivoli software product that provides Tivoli Enterprise Data Warehouse functionality. The warehouse enablement pack provides extract, transform, and load programs to populate the central data warehouse and to create data marts as well as customizable reports to answer specific business questions. Often referred to as a warehouse pack. See also extract, transform, and load.
warehouse pack
See warehouse enablement pack.
warehouse source
A subset of tables and views from a single database, or a set of files, that have been defined to the Data Warehouse Center.
warehouse target
A subset of tables, indexes, and aliases from a single database that are managed by the Data Warehouse Center.
withdraw
To remove an order from the list of active orders that are being managed to guarantee levels of service. Withdrawn orders are not deleted, but they are no longer active.
workflow
The sequence of activities performed in accordance with the business processes of an enterprise.
workspace
(1) A user-defined set of task windows. When a workspace is opened, the associated tasks are started.
(2) A container for a set of event cards that meet certain criteria. See event filter.
wrap count
The number of events that can be retained in the database for a specific resource or the number of alerts that are retained in the database.
