Certified Product: NetIQ® Secure Configuration Manager™ 5.9.1

NetIQ Corporation
515 Post Oak Blvd, Suite 1200
Houston, Texas
USA, 77027

NetIQ® Secure Configuration Manager™ 5.9.1 (hereafter referred to as NetIQ SCM 5.9.1), from NetIQ Corporation,  was the subject of a Common Criteria evaluation performed by the Common Criteria Evaluation Facility at EWA-Canada. The evaluation was completed in October 2014.

The evaluation of NetIQ SCM 5.9.1  determined that this Information Technology (IT) product can be trusted, to Evaluation Assurance Level (EAL) 2 augmented with ALC_FLR.1, to conform to the requirements of the associated security target.

NetIQ SCM 5.9.1 is a software application that enables organizations to determine organizational security policy compliance, to identify security vulnerabilities and potential threats, and to assist in correcting exposures in a timely manner to reduce the risk of security breaches, failed compliance audits or downtime. NetIQ SCM also provides reporting capabilities, risk scoring to assist with prioritizing the discovered potential threats and vulnerabilities, and an update service that integrates new expertise and security knowledge by providing new security checks for the latest vulnerabilities, updated policy templates, and current manufacturer-recommended patches.

The scope of this evaluation is defined by the security target, which identifies assumptions made during the evaluation, the intended environment for NetIQ SCM 5.9.1, the IT security requirements to be met, and the level of confidence (evaluation assurance level) to which it is asserted that the NetIQ SCM 5.9.1 satisfies its IT security requirements.

Consumers are advised to carefully review the certification report to gain an understanding of the security functionality, the evaluated configuration, and the intended operating environment for NetIQ SCM 5.9.1.