Professional Documents
Culture Documents
Tech Specs 90338 - Annexurea75prnbpdcl
Tech Specs 90338 - Annexurea75prnbpdcl
Table of Contents
Considarations while desiging the DC and DR ........................................................................................ 1
1. Stand Alone Server.......................................................................................................................... 2
2. SAN .................................................................................................................................................. 3
3. SAN Switch ...................................................................................................................................... 6
4. File Management & Sec .................................................................................................................. 9
5. Leaf Switch .................................................................................................................................... 11
6. OOB(Mangagement) Switch ......................................................................................................... 13
7. API Gateway .................................................................................................................................. 15
8. HSM ............................................................................................................................................... 17
9. EMS-NMS ...................................................................................................................................... 20
10. APM-Specs ................................................................................................................................ 29
11. Internal Firewall ........................................................................................................................ 35
12. HIPS ........................................................................................................................................... 39
13. File Monitoring .......................................................................................................................... 41
14. DMS ........................................................................................................................................... 42
15. Server Load Balancer ................................................................................................................ 49
Bidder needs to supply required devices/solutions at DC & DRC as per proposed solution
design meeting all the requirements.
Bidder needs to consider all devices/solution in High availability mode so that required
services can be delivered without any interruption.
All the proposed solution/ device shall be onsite warranty for 7 years from Go-live of the
proposed ERP solution.
Some device/ solutions required at DC & DRC has been mentioned below however bidder
needs to deploy any additional device/solution if required to deliver the services as per scope
of work of RFP.
Purchaser is in the process of RMS billing solution (NIT 51/PR/NBPDCL/2023). In that NIT,
there are ICT infrastructure like Link Load Balancer, DDoS Protection, External Firewall,
SSLI, Router, Spine Switch, Border Leaf Switch, Switching Fabric, Backup Software, Tape
Page 1 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Library, EDR, IDAM, WAF, DAM, Logger, etc. bought out. Barring these, if a solution is
reusable, the bidder can use that ICT infrastructure with additional cost.
The proposed solution should be purpose build, unified agent for end point protection. The
unified agent should offer threat prevention, attack investigation, access control, Sandboxing
, Data protection/encryption & web protection capabilities.
The proposed solution shall be licensed for client machines & must leverage both signature
based and signature less security controls leveraging advance AI/ML based models.
The proposed solution EDR solution must be integrated with external firewall and should
have the following protection mechanism:
o Anti-Ransomware protection
o Behaviour based protections
o Anti-exploit / HIPS
o Anti Bot
o Anti-malware
o Forensics Collection & automated reports
o Web Protection
The bidder must provide the following ICT infrastructure with minimum technical
specifications of proposed device/solutions has been mentioned below and bidder needs to
comply the same.
Page 2 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
2. SAN
Compliance
S.No. Specification
Yes/No
Offered Storage must have scale-up and scale-out
architecture for SAN and NAS protocols asked, it must scale
to 8 or more controllers for future expansion. It must
support mixing of controllers within same generation and
across generation of controller models, it must also support
data in place upgrades for the Storage controllers to higher
1 generation of controllers while data is intact in old NVMe
media.. Storage must be offered with purpose built single
operating system supporting all of the block, file protocols
and Object (S3) API asked.
Page 3 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 4 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 5 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
3. SAN SWITCH
Compliance
Sr. No. Parameters Requirements
(Yes/No)
The fibre channel switch must be
1 Formfactor
rack mountable with 1U/2U.
The proposed SAN switch should
be supplied with 24 x FC ports for
Fibre Channel
2 device connectivity should be
Ports
32/64 Gbps auto- sensing Fibre
Channel ports. All the necceray
Page 6 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 7 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 8 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 9 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 10 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
5. LEAF SWITCH
Sr. Paramete Compliance
Product Specification
No. rs (Yes/No)
The Switch should support line rate & non-
blocking Layer 2 switching and Layer 3
routing
There switch should not have any single
Solution point of failure like power supplies and fans
1 Requirem etc should have 1:1/N+1 level of redundancy
ent and must be hot swappable.
Switch and optics must be from the same
OEM
Switch should support the complete STACK
of IP V4 and IP V6 services.
Switch should have the following interfaces:
48*1/10/25G SFP+ port populated with
24*10/25G Multi Rate LR transceivers (If
any OEM don’t have Multi Rate SFP, they
should supply 24 Qty of 25G LR SFP and 8
Hardware Qty of 10G SFP+). The bidder has to supply
and all the neccsary transreceiver, patch cords,
2 Interface and breakout cables from day 1 either all of
Requirem them or whichever is applicable
ent 8/12*100GbE QSFP ports populated with
2*100G 5 Meter DAC cable and 6*100G
Single Mode (Supporting 10KM) SFP's
Switch should support IEEE Link Aggregation
for redundancy across two switches in
active-active mode
The switch should support 128k IPv4 routes
or above
Performa
The switch should support hardware based
nce
3 load balancing at wire speed using LACP and
Requirem
multi chassis ether channel/LAG
ent
Switch should support minimum 4Tbps of
throughput capacity
Switch should support minimum 128,000 no.
of MAC addresses
Switch should support Jumbo Frames up to
Layer2 9K Bytes on all Ports
4
Features Support storm control to prevent
degradation of switch performance from
storm due to network attacks and
vulnerabilities
Switch should support Policy Based Routing
Layer3
5 Switch should provide multicast traffic
Features
reachable using:
Page 11 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
a. PIM-SM
b. PIM-SSM
d. Support RFC 3618 Multicast Source
Discovery Protocol (MSDP)
e. IGMP V.2 and V.3
Switch should support Multicast routing
Switch should support for BFD For Fast
Failure Detection
Switch should support VXLAN with EVPN
control plane
Advance
6 Switch must support symmetric VXLAN
Features
integrated routing and bridging with EVPN
active-active multihoming support.
Should support 8 queues per port, priority
queuing, round-robin queuing
Page 12 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
6. OOB(MANGAGEMENT) SWITCH
Compliance
Sr. No. Product Specification
(Yes/No)
Hardware platform and architecture
Page 13 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 14 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
7. API GATEWAY
Compliance
Sr. No. Product Specification
(Yes/No)
Design APls, gather developers' feedback before
1
implementing
Design from the publishing interface or via importing
2
an existing Swagger 2.0 definition
Deploy a prototyped API, provide early access to APls,
3
and get early feedback
Mock API implementation using JavaScript or similar
4
convenient scripting language
Supports publishing SOAP, REST, JSON, and XML style
5
services as APls
TCP/IP adaptors support. Legacy protocols can be
6
supported using custom TCP/IP adaptors
API manager should support custom adaptors based
7
on service standards such as OSGi or similar standards
Supports grouping of multiple APls based on the
8
version, Category etc.
Publish APls to external consumers and partners, as
9
well as to internal users
Ability to publish APIs to a selected set of gateways in
10
a multi-gateway instance environment
Support enforcement of corporate policies for actions
11 like subscriptions, application creation, etc. via
customizable workflows
Manage API visibility and restrict access to specific
12
partners or customers
Manage API lifecycle from cradle to grave: create,
13
publish, block, deprecate, and retire
Publish production and sandbox keys for APls to
14
enable easy developer testing
Manage API versions and deployment status by
15
version
16 Support custom lifecycles
Apply security policies to APls (authentication,
17
authorization)
Rely on OAuth2 standard for API access (implicit,
18
authorization code, client, SAML)
19 Restrict API access tokens to domains/Ips
Page 15 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Governance Features:
Page 16 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
8. HSM
Sr. No. Product Specification
Must Support encryption, digital signing, key generation and
1
protection
Must Support load balancing, failover and High availability within the
2
same cluster of HSMs
Must have an ability to provide a secure environment for running
3
sensitive applications within HSM boundaries
Support for Asymmetric algorithms: RSA, Diffie-Hellman, ECMQV,
4
DSA, ECDSA, ECDH, Edwards (Ed25519,Ed25519ph)
Support for Symmetric algorithms: AES, Arcfour, ARIA, Camellia,
5
CAST, Triple DES, SEED, Tiger HMAC
Support for Hash/message digest: MD5, SHA-1, SHA-2 (224, 256, 384,
6
512 bit), HAS-160, RIPEMD160, SHA-3
Page 17 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 18 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
The HSM should provide minimum 6 RSA 2048 key generations per
28
second.
Key Management Solution
Key Management Solution should provide a centralized management
1 console to control the lifecycle and permission of the keys using REST
API, Command Line Interface
14 KMS solution should support for SSH secret creation and storage.
Tokenization
Page 19 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
9. EMS-NMS
Compliance
Sr. No. Product Specification
(Yes/No)
Network Management Software is a graphical network monitoring
and management tool providing integrated fault, performance
1
Monitoring, Configuration & compliance Management together in
one tool.
Should automatically create a complete topology map for switches,
2
firewalls and wireless Access Points (APs), Camera etc.
Should Facilitate simple management of many, or all, network
devices at once. It should monitor up-to- date network status, and
3
provides actionable reporting for the timely resolution of any
network problems.
Support add intuitive usability, with an overview dashboard,
4
simplified navigation and more network information.
Should automatically-generated network topology map show a
5
device list, and gives the ability to search for specific devices.
Should have Status display for all devices alerts users of any
6
problems.
Should provide direct connectivity to one, many, or all devices for
7
configuration updates.
Page 20 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 21 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 22 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Should give user option to create his /or her map based on certain
45
group of devices or region.
Should provide custom visual mapping of L2 and L3 devices
46
connectivity and relationships.
Should monitor various operating system parameters such as
47 processors, memory, files, processes, file systems etc. where
applicable on the servers to be monitored.
Provide performance threshold configuration for all the
agents/monitors to be done from a central GUI based console that
48 provide a common look and feel across various platforms in the
enterprise. These agents/monitors could then dynamically
reconfigure them to use these threshold profiles they receive.
Should be able to monitor/ manage large heterogeneous systems
49
environment continuously.
50 Should monitor / manage following
50.1 Event log monitoring
50.2 Virtual and physical memory statistics
50.3 Paging and swap statistics
50.4 Operating System
50.5 Memory
50.6 Logical disk
50.7 Physical disk
50.7 Process
50.8 Processor
50.9 Paging file
50.1 IP statistics
50.1 ICMP statistics
50.1 Network interface traffic
50.1 Cache
50.1 Active Directory Services
Should be capable of view/start/stop the services on windows
51
servers
51.1 Unix / Linux
51.2 Should monitor with statistics
51.3 CPU Utilization, CPU Load Averages
51.4 System virtual memory (includes swapping and paging)
51.5 Disk Usage
51.6 No. of nodes in each file system
51.7 Network interface traffic
Page 23 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Should provide user flexibility to create his /or her custom reports
55
based on time duration, group of elements, custom elements etc.
Page 24 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 25 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
The EMS should compute the weighted average score of the SLA
90 metrics to help in arriving at the quarterly service charges payable to
the Agency.
Page 26 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 27 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
111 It should support work shifts for SLA & automatic ticket assignment
It should support the holiday definition & SLA clock should stop on
112 holiday or non-working days. SLA clock should stop after the analyst
shift is over case of non 24x7 support environment.
It should allow the helpdesk administrator to define escalation
113 policy, with multiple levels & notification, through easy to use
window GUI / console.
System should provide a Knowledge base to store history of useful
114
incident resolution.
It should have an updateable knowledge base for technical analysis
115 and further help end-users to search solutions for previously solved
issues.
It should be able to provide web-based knowledge tools that
provides the flexibility to search based on filter noise words
116 methods, list the commonly used security knowledge article
methods and deduction methods using a series of questions and
answers.
It should the web-based knowledge tool would allow users to
117 bookmark their favorite security knowledge articles for quick
references.
The knowledge tools should provide grouping access on different
119
security knowledge articles for different group of users.
Proposed Helpdesk solutions should provide seamless bi-directional
120 integration to generate events/incident automatically between EMS
and Log management solutions.
It should be able to provide detail asset information on hardware
121 and software inventory through seamless integration with asset
management software.
Page 28 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
129 It should be able to log and escalate user interactions and requests.
10. APM-SPECS
Compliance
Sr.No Specificaitons
(Yes/No)
Generic Monitoring Capabilities
Software should be able to act as the single place to analyse multiple types of Technology
1 Operations data (across Business Transactions, Business Applications and IT
Infrastructure)
Page 29 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Software solution should be able to monitor real user business workload (transactions)
within the data center & at end user level.
2
o Volume (Overall & Individual type)
o Response Time
o Performance / Status
Software solution should be able to monitor various channel transactions hitting from
3
other dependent applications through different interfaces.
Software solution should be able to collect & monitor the time series data around
o Application performance metrics for web, app, middleware and DB type components
for all popular technologies
o Metrices for JVM / JMX based health & performance
4
o IT Infrastructure performance metrics for host-based or cloud native infrastructure
o Configuration Changes
o Critical System and application logs
o Errors and exceptions in Applications
o Critical Network parameters within Application Infrastructure
Software solution must extend API’s / connectors to configure and ingest application
specific custom KPI (like Tablespace, diskspace, connectivity, port status, connection
status, ping status, service availability e.t.c.) for specific application environment
5 parameters, which are critical to complete the end-to-end monitoring solution. This is to
prevent or minimize proliferation of agents or data collection agents within the same
component. Such Conenctors should be able to ingest the data from other existing
monitoring tools also.
Software should provide flexible options to source / discover and maintain application
deployment architecture data on application topology and dependencies
o Software should also have pre-built capability to perform ongoing discovery of new
dependencies.
o For Cloud Native infrastructure, the software should have the necessary integrations
with popular tools (like Kubernetes) to maintain application topology data.
Solution should support monitoring of all standard OS like Windows, AIX, Linux, HP-UX,
7
Solaris etc.
Page 30 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Should support all major software like IBM WAS, MQ, TOMCAT HTTP
9
Server, WebLogic, Oracle DB, .NET etc
11 Software should identify slow SQL queries and corelate with calling application code
Software should be able to use this learning to build and maintain smart workload-linked
14 capacity models. Such models must use a business transaction linked baseline of capacity
usage levels seen for business applications
Software should use workload linked capacity models to predict upcoming capacity
16
throttle points based on trends seen in workload growth
18 The tool should have the capability to reduce the noise in the alerts & point the IT team
to the right root event / deviations having critical impact on the IT environment which can
cause downtime.
19 Software should Automatically baseline all critical metric measured by the solution.
To save time and risk of erroneous configuration, software should have the capability to
use machine learning based methods to automatically detect anomalies without requiring
rule configurations or manual thresholds based methods
20
o In case required, software should provide capabilities for data scientists to tune
hyperparameters of models used for the purpose.
Page 31 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
o In situations where machine learning based approach may not give desired results, for
specific performance metrics, if desired by the operations teams, Software should also
provide for rule based methods to override Machine Learning based methods
Software should provide capabilities to manage the alert flood that is possible by machine
21
learning based methods to generate anomalies on application performance.
To cut the time taken to pinpoint hotspots, software should use causation models to
transform the alert flood into timelines of possible causes and symptoms.
o Software should have provision for updating such pre-built knowledge in causation
models
Software should have models for unified operations intelligence, so that related
23
anomalies can be highlighted together, and across the silos of operations
Software should use Machine Learning models in pluggable or modular way so that the
24 models can be updated separately without requiring high cost and time-consuming
update to entire deployment.
Proposed Solution should utilize ML based method to analyse real user workload,
27 resultant IT Operations Performance data, and inter-service dependencies to anticipate &
identify transaction performance issues in real time.
Proposed solution should suggest probable suspected “Root Cause” for application wide
problems. Root Cause suggestions should be such that application operation team can
28
use them as starting point to save the time taken to pinpoint where the problem may
have started.
Proposed solution should be able to improve its “Root Cause” suggestions by machine
29
learning pattern of systems.
Page 32 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Solution should utilize pre-built Machine Learning (ML) models to intelligently link
30 together multiple related incidents to identify an application wide problem that is
impacting real user business transactions.
Software should provide a Single visualization of the entire application topology with all
31
components & services with inter dependencies.
Proposed solution should have internal diagnostics for self-health monitoring & self-
32 healing capabilities like self-kill and self-restart to minimize the impact on monitored
application as well as ensure continuous monitoring is not impacted
Software should have the capability to provide action triggers whenever machine learning
33
models detect anomalies in application performance
Software should have the capability to use the triggers generated by anomaly detection
models to collect just-in-time additional diagnostics data
o Software should come pre-built with scripts to collect useful diagnostic data, and these
34
scripts should be pre-wired to use triggers generated by anomaly detection models
o Software should include a secure extension mechanism where administrators can also
provide their own scripts for collected custom types of just-in-time diagnostics data
Software should have the capabilities to use the triggers generated by anomaly detection
35
models to initiate automatic healing actions.
Software should not necessarily include any pre-wired automatic healing actions, but
36 should definitely provide a clear documentation and scripting environment for
administrators to write and provide their own healing actions
Software should be able to use historic data on workload, and performance exhibited by
37
application and underlying IT Infrastructure to build Workload Surge prediction models.
Software should provide the feature for admins to write scripts that can be wired to run
38
for action triggers provided by such Workload Surge Prediction Models.
Software should provide a Single visualization of the entire application topology with all
39
components & services with inter dependencies.
Software Solution should act as the single repository of time series data on real user
40 business workload as well as IT Operations performance data for creating new Machine
Learning models using the same repository.
Page 33 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Software solution should extend single UI incorporating Analytics dashboards and APM
41
dashboards.
o Starting points for experts to start their root cause analysis, as Visual RCA feature
The Proposed Solution must have capability to clearly project the problem cause by
52
the JavaScript was due to incompatibility of browser or JavaScript code error.
67 Should be able to collect mobile analytics data using uni-directional connection to cloud
using purchaser provided internet connection.
Advance ML analytics for ITSM Integration
Page 34 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
68 The proposed tool should have the capabilities to integrate with ITSM tools to -
3. Rank Alerts /events appropriatetly so that right Alerts can be hightleted to Opreations
Team for taking right discisions / actionalble
The Software OEM should have presence in India – both development & support center –
E2 to help address issues on time and proven track record of providing APM solutions in the
Indian Banking industry for over 7 years at least,
Indian Govt norms under “Make in India” initiatives will be applicable, please refer
E3
annexure.
Bidder should provide proof that the proposed APM solutions has been monitoring at an
E4 Indian Govt/PSU/bank with at least 2000 branches & minimum transaction load of 1000+
Transactions per second overall in that environment.
Page 35 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 36 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
18 The NGFW should Support IPv4 and IPv6 from day one.
Solution should suppot NAT66 , NAT44 and PAT from day 1.
The solution should support IPv6 capability including Dual
19 stack IPv4/IPv6, ICMPv6, DNSv6,IPv6 static, SLAAC, DHCPv6
relay
The firewall shall support minimally 5 independent ISP/WAN
20 connections concurrently and the ability to combine
multiple ISP/WAN link. (not just active/standby)
Page 37 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 38 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
The proposed solution VPN links that are used for Multi-Link
traffic from applications and protocols, and traffic associated
37 with QoS classes automatically selected based on quality
metrics defined for the network applications, protocols, and
QoS classes.
12. HIPS
Compliance
Sr. No. Product Specification
(Yes/No)
Protect against distributed DoS attacks and have the
1. ability to lock down a computer (prevent all
communication) except with the management server.
Support stateful Inspection Firewall, Anti-M alware,
Deep Packet
2. Inspection with HIPS, Integrity Monitoring, Application
Control, and Recommended scan in single module
with agentless and agent capabilities
Page 39 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 40 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Monitor Alter critical files related by reviews the current file against a
1 baseline
2 Reviewing the file logs.
3 Detecting a cyberattack on files
4 Stopping the breach before significant or costly damage is done
5 Identify vulnerabilities
6 Folder Monitoring
7 Monitoring particular folder
8 Create, Delete or Modify any particular Folder
9 Shared folder monitoring
10 Drive monitoring( file and Folder tracing)
11 Content awareness( Prevent file to move outside the network)
12 Read- Only Access Logs Capturing
File attributes monitoring, including file size, content, access settings,
13 privileges, credentials and configuration values.
Applying the cryptographic hash signature making it easy to detect file
14 updates and alterations.
Page 41 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
14. DMS
Compliance
Sr No. Product Specification Yes/No
The system should be platform independent and should
support both
1
Linux and Windows platform. It should support both
these platforms with or without virtualization.
The system shall support separate Document/Image
server for better management of documents and store
2
only metadata information in
database.
Support open, scalable, multi-tier architecture with each
3 tier fully independent with support for clustering.
Inter-operability - The systems must seamlessly
integrate with any or all of the existing legacy and Core
4
applications and shall support
interface with other open-standard systems.
The proposed System should support CI/CD Pipeline
6 and be available on Micro Services & Container based
architecture.
Document Management System
Document Scanning Features
Should provide an integrated scanning engine with
capability for centralized and decentralized Scanning &
Document Capturing. The scanning and document
1
management solution should be from same OEM so as
to provide an integrated solution right from capture to
archival of documents
The scanning solution should have the capability to
2 capture the document through mobile devices.
The mobile based document capture application and
3 scanning solution should be from the same OEM.
Should have a well-defined capture module for support
4 of document processing, validation, index building, and
image enhancements.
Should be able to support the capture of digital records
of at least the following formats:
5 Emails and attachments
OCR documents
Images - .tiff, jpeg, gif, PDF etc.
Page 42 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 43 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 44 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Annotations
The Image applet shall support comprehensive
annotation features
1 like highlighting, marking text, underlining, putting sticky
notes on documents, and support for text and image
stamps etc.
The system shall support automatic stamping of
2 annotations with user name, date and time of putting
annotations.
The system shall provide facility for securing annotations
3
for selective users.
The system shall store annotations as separate file and
at no time, the original image shall be changed. The
4
system shall provide facility of taking print outs with or
without annotations
Indexing
The System shall provide facility to index folders, files
1 and documents on user-defined indexes like
department, ministry, file number, year etc.
The system shall facilitate manual and automatic
2 indexing using OCR functionality or from other
applications
The System shall support Automatic full text indexing for
3
Text search
Search and Retrieval
The system shall provide extensive search facility to
1 retrieve documents or Folders/Files
The system shall support saving of search queries and
2
search results
The system shall support search for documents or
folders on
3 document or folder on profile information such as name,
created, modified or accessed times, keywords, owner
etc.
Security & User Management
The Document management system shall support
1 definition of Users, Groups and Roles relation in the
system
The system shall support access permissions on
2 Folders, documents and object level
The system shall support multiple levels of access rights
3 (Delete/ Edit/ View/ Print/ Copy or Download).
4 System shall support for application based rights
The system shall support system privileges like
5 Create/Delete Users, Define indexes etc.
The system shall support secure login id and passwords
6 for each user and passwords shall be stored in
encrypted format in database
Page 45 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 46 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 47 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 48 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 49 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
7 Appliance should provide full ipv6 support and OEM should be IPv6
gold- certified. OEM should be listed vendor for ipv6 phase-2
certification
8 Application, Server & Link Health Checks - ARP, ICMP, TCP,
HTTP/HTTPS, DNS, Radius, MySQL, MsSQL, RTSP, SIP single
port/protocol, Multi-port, physical port, ICMP and user defined L4 –
Next gateway health checks
9 It should maintain server persistency based on source ip and destination
ip, http header, url, cookie and SSL ID. The appliance should support
multi-port, scripted and custom health check with content verification
10 The appliance should provide application delivery controllers with
features like round robin, weighted round robin, least connection,
Persistent IP, Hash IP, Hash Cookie, consistent hash IP, shortest
response, proximity, SNMP, SIP session ID, hash header etc. and
support for policy nesting at layer7 and layer4, Should also have Script
based functions support for content inspection, traffic matching and
monitoring of HTTP, SOAP, XML, diameter, generic TCP, TCPS. Load
balancer should support ePolicies to customize new features in addition
to existing feature/functions of load balancer.
11 Should support one arm, reverse and transparent proxy mode
deployment scenarios and should support nested layer7 and layer4
policies.
12 Device to have capabilities to run ADC and SSL VPN as independent
Network Function and not an integrated solution to ensure required
performance. Should also provide machine authentication based on
combination of HDD ID, CPU info and OS related parameters to provide
secure access to critical resources.
13 The solution should support enterprise remote desktop control role based
desktop publishing
14 The solution should able to enforce data leakage protecton policies for
secure VDI to allow/deny copy-paste, clipboard, drive, port and print
redirection
15 The Solution should able to mitigate a range of attacks, including key-
logging, shoulder surfing, brute force, dictionary, interception, cross-site
scripting, replay, automated attacks, sniffing and stored browser
password.
16 It shall support built-in failover decision/health-check conditions. It shall
also support failover and High Availability (HA) requirements. It shall
have redundant power supplies. Shall support script-based functions
support for content inspection, traffic matching and monitoring
of HTTP, SOAP, XML, diameter, generic TCP, TCPS
17 Should provide mechanism to bind multiple health checks, support for
Application specific VIP health check and next gateway health checks.
Should support persistency features including RTS (return to sender) and
ip flow persistence.
18 Should provide comprehensive and reliable support for high availability
with Active- active & active standby unit redundancy mode. Should
support both device level and VA level High availability for using
standard VRRP protocol (No Proprietary protocol).
19 Technical Assistance Centre must be available in India since 8 years
with tollfree number
20 OEM should be listed among top 3 in IDC for ADC vendor in India
(Year 2021-2022).
Page 50 of 51
Annexure ‘A’- (Technical Specification): 75/PR/NBPDCL/2023
Page 51 of 51