top of page
Commvault InnerVault
Category:
Backup
Score:
48
Commvault provides a data and enterprise backup software.
Gartner Score:
The Forrester Wave™:
90
Little Falls, NJ, USA
1001 - 5000
Total Funding:
NASDAQ:CVLT $603.9M
Founded year
1996
Alternative Solutions
PHONEDETECTIVE
BETALIST
THALAMUS
KNACK
52
52
52
52
Access
48
Federated Identity Management
OAuth support
OpenID support
SAML support
100
true
Under Review
false
Brute-force Protection
Protection from multiple failed logins
Utilizes CAPTCHA
Multi-factor Authentication
Multi-factor authentication - Security Questions
Multi-factor authentication via Biometrics
Multi-factor authentication via Mobile App
Multi-factor authentication via Others
Multi-factor authentication via secondary email
Multi-factor authentication via Smartcard
Multi-factor authentication via SMS
Multi-factor authentication via USB Token
50
true
Under Review
1
false
false
false
false
false
false
false
false
Password Quality Rules
Does not save logged in session
Force change of password after some time period
Provides password reset and recovery
Requires minimum password length
Requires strong password format
Access Control
Controls IP range from which login is allowed
Supports device restrictions
Enterprise Identity Integration
Active Directory integration
LDAP integration
Account Protection
Encrypted account credentials
40
Unknown
Under Review
Under Review
Under Review
Under Review
100
Under Review
Unknown
100
false
true
50
Under Review
Administrative
50
Admin Audit Trail
Tracks all administrator activity
Policies
Content security policies
Policy configuration and enforcement
Role Based Access Control
Role based access control
User Audit Trail
Tracks all end-user activity
50
Under Review
100
false
true
50
Under Review
50
Under Review
Business
100
Financial Stability
Type of Company
100
Public
Compliance
13
Compliance Certifications
COBIT
CSA STAR Self-Assessment
FedRAMP High Baseline
FedRAMP Low Baseline
FedRAMP Moderate Baseline
FISMA
GAAP
HIPAA
ISAE-3402
ISO 27001
ISO 27017
ISO 27018
ITAR
NIST SP 800-53
PCI
Privacy Shield (GDPR, CCPA)
Safe Harbor
SOC I type 2
SOC III
SOX
SSAE 16 SOC2 Type II
TRUSTe
13
false
false
false
false
false
false
false
true
false
true
false
false
false
false
Under Review
EU-US
false
false
false
Unknown
false
false
Data
48
Data at Rest Encryption
25
Encryption keys in control of the Enterprise
Unknown
Encrypts data at rest
Unknown
Data in Motion Encryption
80
Does not involve blockchain activities
true
Not at risk to CloudBleed vulnerabilities
true
Not Vulnerable to CRIME
true
Not Vulnerable to DROWN
true
Not Vulnerable to FREAK
true
Not Vulnerable to Logjam
true
Not Vulnerable to OpenSSL Heartbleed defect
true
Not Vulnerable to Poodle SSLv3
true
Not Vulnerable to Poodle TLS
true
SSL Certificate Chain
*.commvault.com, Ent.
SSL certificate not expired
true
SSL certificate strength
2048 bits or greater
SSL key strength
256 bits or greater
SSL used for data in motion
true
Supports HTTP2
false
Supports SSLv2
false
Supports SSLv3
false
Supports TLS Secure Renegotiation
false
Supports TLS_FALLBACK_SCSV
Unknown
Supports TLSv1
true
Supports TLSv1_1
true
Supports TLSv1_2
false
Supports TLSv1_3
false
Valid SSL Certificate Name
true
Data Sharing Controls
50
Controls sharing with external users
Under Review
Controls sharing with internal users
Under Review
Data Handling
50
Backup data centers
Under Review
Customer data not analyzed for ad targeting
Under Review
Customer data not analyzed for behavior mining
Under Review
Data not stored on mobile for offline access
Under Review
Encrypted backup
Under Review
Offline data encrypted or otherwise protected
Under Review
Provides for backup/export of customer data
Under Review
Requires or stores passwords of 3rd party services
Under Review
REST API Activity Log Retrieval Method
Under Review
EST API Activity Log Scope
Under Review
REST API for Activity Logs
false
.REST API Support
true
Restrict opening files in external apps on mobile
Under Review
HTTP Security Headers
28
HTTP Content-Security-Policy
true
HTTP Public Key Pinning Extension
false
HTTP STS
false
HTTP X-Permitted-Cross-Domain-Policies
false
HTTP Security Headers.X-Content-Type-Options
false
X-Frame-Options
false
X-XSS-Protection
TRUE
Informational
35
Type of Service
Consumer oriented service
100
false
Enterprise oriented service
true
Type of Clients
Desktop client
Native mobile app
75
Under Review
Under Review
Web based service
true
External Integration
No third party integration
1
Unknown
Service
33
Agreements
50
Provides DPA
Under Review
Provides SLA
Under Review
Hosting Service
50
Data Center Locations
Under Review
Hosting Platform Type
Under Review
Provider if hosted on the public cloud
Under Review
Multi-tenancy Support
50
Separation of Customer Data
Under Review
Disaster Recovery & Business Continuity
50
Data Breach Notification
Under Review
Integration
35
Cloud providers integrations
AWS
AZURE
GOOGLE CLOUD
ALIBABA
ORACE
IBM
TRUE
TRUE
TRUE
TRUE
TRUE
FALSE
Cloud Service integrations
NETAPP
OFFICE 365
SALESFORCE
VMWARE
HPE
CISCO
Over alll SaaS integrations score
FALSE
TRUE
TRUE
TRUE
FALSE
FALSE
9
Other Functionalities
eDiscovery
Data archiving score
TRUE
0
OS migration score
0
RTO score
1
Ransomeware recovery score
1
On-premise integration
false
bottom of page