BMC AMI Connector for Illumio

Send mainframe metadata to Illumio PCE via REST API

Automatically transmit real-time connection data—including IP addresses, ports, and protocols—from z/OS systems to Illumio’s Policy Compute Engine for centralized monitoring.

Integrate with Illumio’s application maps

Feed mainframe traffic details into existing dependency maps to reveal how workloads interact across the enterprise and identify which connections introduce risk.

Deliver traffic insight across the enterprise

Gain a clear picture of how mainframe systems communicate with distributed environments, helping teams analyze patterns, limit exposure, and support micro-segmentation efforts.

Download Illumio ACLs and convert them to z/OS PAGENT files

Automatically pull access control lists from Illumio and translate them into mainframe-compatible formats, so access policies can be enforced directly within z/OS.

Support full or selective enforcement through the PCE

Choose to apply rules across all workloads or only specific segments, giving teams flexibility to roll out controls at their own pace.

Filter at the workload level without native firewall dependency

Apply access rules to individual applications or services running on the mainframe—no need to configure or rely on built-in firewall features.

Automatically reject connections not defined in policy

Instantly block any traffic that isn’t explicitly allowed, helping to prevent attackers from gaining a foothold or moving between workloads.

Encrypt approved in-transit communication to meet compliance needs

Protect sensitive data as it travels between systems by encrypting traffic that meets policy criteria—helping you stay aligned with internal and external security requirements.

Work in sync with BMC and enterprise security workflows

Connect threat response on the mainframe to broader incident processes, making it easier for teams to detect, contain, and respond using familiar tools and protocols.