Detect and troubleshoot any issue that can affect the security of your applications and data
Non-invasive solutions to instantly add layers of protection to your critical data
Solutions to automate audit for security compliance and data tracking
The Richard C Loeber Fellowship for Careers in IBM i partners with IBM i shops who want to help launch careers through in-house training and mentoring.
Welcome to Kisco U! We've compiled decades of IBM i security expertise into this freely available online repository. Be sure to register for updates.
We are committed to ongoing innovation and product development. Register your email to receive timely announcements about products, upgrades and PTFs.
iEventMonitor v8.0
iEventMonitor is a comprehensive monitoring solution for IBM i. It watches and alerts on OS and security events using data points collected from multiple data sources. Now with centralized reporting and management for multiple LPARs.
READ MORE >>i2Pass v4.0
Instant 2FA for the IBMi, now with DUO mobile authentication! i2Pass adds multi-factor authentication (MFA) to the IBMi. MFA is a critical component of many Enterprise IT security frameworks and cyberinsurance policies,
READ MORE >>kConnect v1.05
kConnect is a native SMS communications utility for IBM i that replaces outdated email-to-text messages. kConnect is integrated across the Kisco product portfolio to reliably send alerts and notifications.
READ MORE >>iFileAudit v8.0
Simplify and automate complex audit reporting on the IBM i. Now with Bluescape, our 100% web based admin interface. Goodbye green screen!
READ MORE >>The Apache-based IBM HTTP Server for i is a vital defense in web and API security for IBM i. As such, it requires regular attention.
Use this procedure to check the version of libwebp or any other open source package on IBM i.
You may have heard claims that HTTP “basic” authentication leaves credentials unencrypted and exposed. While it’s true that basic auth itself doesn’t encrypt credentials, this doesn’t matter in practice. Modern sites and APIs should be using HTTPS, which encrypts everything over the wire, protecting basic authentication credentials in transit.