Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

RDF and Aloha

Status
Not open for further replies.

erock123

IS-IT--Management
Apr 29, 2008
23
US
Is anyone using this? and if so or not, is anyone being forced to use this by their vendor?

RDF = Radient Deployment framework which seems to be a log me in type application for managing the Aloha system remotely.

I am just curious as our vendor sent out a letter basically saying unless we pay for this they will not do any remote toubleshooting/fixing. it would all be onsite with a fee + travel time. Is this occurring elsewhere?
 
RDF is a new support tool that is fully PCI compliant. As a restaurant owner, it is your responsibility (not Radiant's or your vendor's) to be PCI compliant. The old way of dialing into a system is not very secure. Don't get me wrong, RDF still allows misuse, but at least everything is registered to the person.

As far as forcing you to do it, I don't reckon that's the case. However it does make your site more secure, and it allows for quicker fixes and a pro-active attitude from your vendor (RDF warns you when something is going wrong at your site).

All in all, it's really a win-win situation, and believe me, I just saw a demo from Erika Thomas and RDF is going to be way cool.
 
that is the problem (PCI complience) They are currently using it without giving us any access to the system. thus with no auditible system for us, or a way to regulate system access, it makes us as restaurant operators PCI non compliant. (obviously my interpretation)

yes they want to force us to pay for them to use it and have us have no access to it, or else pay for onsite visits.

from what I have seen/heard RDF may be the way to go, but right now I am 100% opposed to what they are proposing. As in my mind, our vendor installing this without our knowledge/permission and no access to this, is a lot like a trojan or virus. Also to make us pay for them to use is questionable at best.
 
I should also say I am mainly asking to see if other vendors are doing this, or if it is just our vendor.
 
We, as a reseller, are developing our own. While the compliance issue lies on the restaurant, it IS our responsibility to ensure that we have done everything in our power to secure the site. As an owner, if you get censured and we have left open big holes that allwoed this, you could conceivably come back to us for negligence. This being said, we will STRONGLY advise against having any third party remote software other than ours. Should you decide to add PCA or VNC, for example, you will have signed a contract absolving us from anything you use outside of our scope.

The bottom line is this: You paid for the system, it is yours. Your reseller is acting in your best interest but obviously cannot police your system. RDF is what they are choosing to deploy to safeguard you as well as themselves. Check your contract or ask them if there is a waiver (I'm sure there's some sort of disclosure). Now, remember...should something arise due to your actions, you WILL be alone in your venture and they probably reserve the right to charge you a pretty penny to fix any issues caused by your negligence.

Look at it this way...they're not forcing you. They are protecting you.
 
All actions in RDF are being logged on the servers @ Radiant. In the near future, you will be able to access those logs for audit purposes.

The reason, that your reseller wants you to use RDF, is that RDF reports possible problems back to your reseller and that they have a single application for support purposes.

This reduces the time they need to support your system, because they don't have to lookup which way they login into your system. So you're helped quicker and your support bills will be lower.
 
PcAnywhere and the rest of the remote access tools are compliant as long as it is disabled when not in use. Compiance in its simpliest form is controling who has access to your network and data.

Bo

Remember,
If the women don't find you handsome,
they should at least find you handy.
(Red Green)
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top