@@ -193,19 +193,19 @@ In larger deployments, network design and operational parameters can affect the
**Figure 4.3-1: Product overview and architecture**
**Figure 4.3-1: Product overview and architecture**
Network management systems are operated by users or by programs that interface with an API. These programs can be internal or external to the system.
Network management systems are operated by users or by programs that interface with an API. These programs can be internal or external to the system depending on the product design and deployment context.
The system is often accessed with a browser using an identity outside of the installation context.
The system is often accessed with a browser using an identity outside of the installation context.
Identity Provider (IdP) can be used as base for the users identity.
Identity Provider (IdP) can be used as base for the users identity.
In an enterprise setting, or equivalent, the high number of users and the volume of role changes has lead to adoption of dedicated identity management platforms.
In an enterprise setting, or equivalent, the high number of users and the volume of role changes has lead to adoption of dedicated identity management platforms.
Typically, the system runs on hardware with an OS and networking interfaces.
The system typically runs on hardware and software components that provide the necessary operating environment and network connectivity.
The Operating System can be part of the deliverable and hense, part of the product.
The Operating System can be part of the deliverable and hense, part of the product.
The OS best practices and requirements are defined outside of this document.
The OS best practices and requirements are defined outside of this document.
NMS’ can interface with PKI and SIEM systems if it is justified by the requirements in the deployment context, though cybersecurity requirements of these systems, even if integrated into the NMS product, are not addressed by this standard.
Where relevant to the deployment context, the NMS may interface with external services such as identity, cryptographic, logging, or event management systems, though cybersecurity requirements of these systems, even if integrated into the NMS product, are not addressed by this standard.
The main functionality of an NMS is to interface and interact with routers, modems and switches.
The primary function of an NMS is to monitor, configure, administer, or otherwise manage connected network elements.
More about assets in [Annex C.1 Assets](#c1-assets) and [Annex C.2 Data](#c11-data).
More about assets in [Annex C.1 Assets](#c1-assets) and [Annex C.2 Data](#c11-data).
