Bharat Petroleum Corporation. Ltd., Sewree Fort Road,
Sewree (E), Mumbai 400 015.
CRFQ NO. 1000280770 DUE ON: 01.06.2017 AT : 15:00 hrs.
Virtual Private Network (VPN) Page 2
Subject: Invitation of tender for Supply and Implementation of SSL/TLS VPN (Virtual Private Network) for BPCL 1. You are invited to submit your offer in a two-part bid for the subject job as per the technical specifications and on the terms & conditions contained in this tender document. 2. Bidder should submit a valid Manufactures Authorization Form (MAF) on OEM’s letterhead duly signed and stamped by OEM’s authorized signatory as well as acknowledged by the concerned SI/BP towards their acceptance of the same. It will be responsibility of the SI/BP to keep the authorization of OEM valid till execution of the supply, Installation and support period in BPCL. 3. Please visit the website https://bpcleproc.in for participating in the tender and submitting your bid online. 4. Bidders are required to submit their bids in two part bids consisting of the following, through this E-Tender.
a) Techno-Commercial Bid & b) Price Bids.
i) Techno-Commercial Bid: This should contain all technical details, Literature, Leaflets etc. confirmation of Commercial terms and conditions of the tender, a letter from Bidder on his letter head confirming the following :
(a) The support and service charges during warranty & AMC quoted by you against this tender is equal to OR more than 10% per annum of the total hardware cost (excluding taxes). b) You are supposed to comply with all the conditions of the tender including clause given in page No. 2 point No. 4 (i)-(a) and (b) of the RFP with no deviation. c) In case there is a deviation with respect to clause/s mentioned above i.e. not meeting the threshold limits (both during warranty and AMC period), the commercial bids will be evaluated based on the threshold limits quoted by the bidder or minimum threshold limits specified by BPCL whichever is higher for each of such items. d) Should you become Lowest bidder, you may be required to adhere to the specified threshold limits as given in point no 4 (i)-(a) and (b) above, without any change in the overall quoted bid value (inclusive of all taxes and duties).
ii) Price bids: This should contain Prices/Taxes against the Bill of materials.
5. On opening Bids in the system on the Tender due Date and Time, First Techno-commercial bids will be opened and evaluated.
6. Commercial bids of only those bidders, who qualify the techno-commercial criterion, will be opened and evaluated further.
Virtual Private Network (VPN) Page 3
7. “The tenderers shall submit an interest free Earnest Money Deposit of Rs.1.00 lakh (Rupees one lakh only) by
crossed account payee Demand draft drawn on any nationalized/scheduled bank in favour of "Bharat Petroleum
Corporation Ltd." payable at Mumbai. (Applicable only to unregistered vendors with BPCL.). EMD is exempted for
MSE vendors and NSIC vendors subject to submission of the details of MSE Registration with Directorate of Industries
or any other competent authorities and NSIC registration as applicable along with the technical bid.
EMD of the unsuccessful bidder will be returned within due course after the evaluation of the price bid.
EMD of the successful bidder will be returned only after successful execution of job against the Outline agreement /
Purchase Order and submission of PBG (if applicable)”
8. You should submit your Techno-commercial & price bid through online mode to the BPCL e-tendering site. However, the instrument i.e. EMD in the form of Demand Draft to be submitted in physical form on or before the due date and time of this tender. 9. BPCL does not take any responsibility for any delay in submission of online bid due to connectivity problem or non-availability of site and/or receipt of instrument i.e. DD to be submitted in physical form due to postal delay. No claims on this account shall be entertained. 10. Incomplete tenders shall be liable for rejection without seeking any further clarification. We also reserve the right to reject any or all tenders without assigning any reasons whatsoever. Thanking you, Yours faithfully, For Bharat Petroleum Corporation Ltd.
Himanshu Shah
Chief. Manager IS (Procurement & Contracts)
Virtual Private Network (VPN) Page 4
Contents General Instructions to Tenderers for E-Tendering .............................................................................................. 5
1. Important Notes to Bidders ........................................................................................................................ 8
Scope of Work ............................................................................................................................................... 10
1. Pricing Type ..................................................................................................................................... 11
11. Other Contractual Stipulations ..................................................................................................... 14
Technical Bid Format ...................................................................................................................................... 16
Annexure-I: Technical Specification for Enterprise class TLS VPN .................................................................. 17
Annexure –IV: Direct OEM support .............................................................................................................. 23
Annexure – V: MANUFACTURERS’ AUTHORIZATION FORM ..................................................................... 24
Annexure – VI : NDA ................................................................................................................................ 25
Annexure-VII: Proof Of Concept .................................................................................................................. 29
Virtual Private Network (VPN) Page 5
General Instructions to Tenderers for E-Tendering
1. Interested parties may download the tender from BPCL website (http://www.bharatpetroleum.in) or the CPP portal (http://eprocure.gov.in) or from the e-tendering website (https://bpcleproc.in) and participate in the tender as per the instructions given therein, on or before the due date of the tender. The tender available on the BPCL website and the CPP portal can be downloaded for reading purpose only. For participation in the tender, please fill up the tender online on the e-tender system. You can submit the bid only on https://bpcleproc.in. Prior to submission of bid, you need to register in the portal.
2. For registration on the e-tender site https://bpcleproc.in, you can be guided by the “Instructions to Vendors” available under the download section of the homepage of the website. As the first step, bidder shall have to click the “Register” link and fill in the requisite information in the “Bidder Registration Form”. Kindly remember your e-mail id (which will also act as the login ID) and the password entered therein. Once you complete this process correctly, you shall get a system generated mail. Login in to the portal using your credentials. When you log in for the first time, system will ask you to add your Digital Signature. Once you have added the Digital Signature, please inform by mail to the vendor administrator [email protected] with a copy to [email protected] for approval. Once approved, bidders can login in to the system as and when required.
3. As a pre-requisite for participation in the tender, vendors are required to obtain a valid Digital Certificate of Class IIB and above (having both signing and encryption certificates) as per Indian IT Act from the licensed Certifying Authorities operating under the Root Certifying Authority of India (RCIA), Controller of Certifying Authorities (CCA). The cost of obtaining the digital certificate shall be borne by the vendor.
In case any vendor so desires, he may contact our e-procurement service provider M/s. E-Procurement Technologies Ltd., Ahmedabad (Contact no. Tel: +91 79 4001 6816 | 6848 | 6844 | 6868 & Tel: +91 22 65354113 | 65595111) for obtaining the digital signature certificate.
4. Corrigendum/amendment, if any, shall be notified on the site https://bpcleproc.in. In case any corrigendum/amendment is issued after the submission of the bid, then such vendors who have submitted their bids, shall be intimated about the corrigendum/amendment by a system-generated email. It shall be assumed that the information contained therein has been taken into account by the vendor. They have the choice of making changes if needed in their bid before the due date and time.
Bidders are required to complete the following process online on or before the due date/time of closing of the tender:
Techno-commercial Bid (Part-I)
Priced Bid (Part-II)
5. Directions for submitting online offers, electronically, against e-procurement tenders directly through internet:
Vendors are advised to log on to the website (https://bpcleproc.in) and arrange to register themselves at the earliest, if not done earlier.
The system time (IST) that will be displayed on e-Procurement web page shall be the time considered for determining the expiry of due date and time of the tender and no other time shall be taken into cognizance.
Vendors are advised in their own interest to ensure that their bids are submitted in e-Procurement system well before the closing date and time of bid. If the vendor intends to change/revise the bid already submitted, they shall have to withdraw their bid already submitted, change / revise the bid and submit once again. In case vendor is not able to complete the submission of the changed/revised bid within due date & time, the system would consider it as no bid has been received from the vendor against the tender and consequently the vendor will be out from tendering process. The process of change / revise could be done any number of times till the due date and time of submission deadline. However, no bid can be modified after the bids submission deadline.
Once the entire process of submission of online bid is complete, they will get an auto mail from the system stating you have successfully submitted your bid in the following tender with tender details.
Bids / Offers shall not be permitted in e-procurement system after the due date / time of tender. Hence, no bid can be submitted after the due date and time of submission has elapsed.
No manual bids/offers along with electronic bids/offers shall be permitted.
6. For tenders whose estimated procurement value is more than Rs. 10 lakhs, vendors can see the rates quoted by all the participating bidders once the price bids are opened. For this purpose, vendors shall have to log in to the portal under their user ID and password, click on the “dash board” link against that tender and choose the “Results” tab.
7. No responsibility will be taken by BPCL and/or the e-procurement service provider for any delay due to connectivity and availability of website. They shall not have any liability to vendors for any interruption or delay in access to the site irrespective of the cause. It is advisable that vendors who are not well conversant with e-tendering procedures, start filling up the tenders much before the due date /time so that there is sufficient time available with him/her to acquaint with all the steps and seek help if they so require. Even for those who are conversant with this type of e-tendering, it is suggested to complete all the activities ahead of time. It should be noted that the individual bid becomes viewable only after the opening of the bid on/after the due date and time. Please be reassured that your bid will be viewable only to you and nobody else till the due date/ time of the tender opening. The non availability of viewing before due date and time is true for e-tendering service provider as well as BPCL officials.
8. BPCL and/or the e-procurement service provider shall not be responsible for any direct or indirect loss or damages and or consequential damages, arising out of the bidding process including but not limited to systems problems, inability to use the system, loss of electronic information etc.
In case of any clarification pertaining to e-procurement process, the vendor may contact the following agencies / personnel:
For system related issues:
M/s. E-Procurement Technologies Ltd at contact no. Tel: +91 22 2417 6419 | 65354113 | 65595111 & Tel: +91 79 4001 6816 | 6848 | 6844 | 6868) followed with an e-mail to id [email protected].
While preparing this document, BPCL tried to cover all relevant information. However, vendor should examine this document for technical feasibility and bring out any omissions in a separate chapter under “Deviation Statement”, in their “Techno-Commercial Bid” with relevant write-up and any such inclusions must be factored-in in their commercial bids. Once the bid is technically acceptable & commercially evaluated, it is the responsibility of the vendor to complete the Project, as per the Scope, without any further commercial impact to BPCL.
It is the Vendor’s responsibility to carefully review this document and understand the scope of work while
quoting for the bid. This Project is to be completed on Turn-Key Basis as defined in the Scope of work. Any hardware, software required for executing the project & not listed in this RFP, will be on vendor’s account and bidder must take into account all such costing while submitting bids.
Jobs awarded under this contract cannot be sub-contracted without the consent of BPCL.
All queries regarding pre bid meeting of this tender need to be submitted two days in advance to below mentioned officials. Further queries/clarifications on this tender may not be entertained after pre‐bid
meeting.
Contact Person for Technical Clarification Mohit Kumar Choudhary BPCL, A – Installation ERP Competency Center Sewree Fort Road, Sewree East Mumbai 400015. Contact No. : 022-24176270 Email : [email protected]
Bidder has to conduct PoC (Proof of Concept) of offered solution at BPCL Data center in Sewree as a part of
technical bid evaluation. PoC should be completed within 1 week from the date of intimation. Bidders satisfying the PoC criteria(i.e Annexure VII) will only be considered for next level of Evaluation.
During Techno-Commercial bid evaluation the vendor will be required to give Technical Presentation on the Architectural Design & SLAs.
2. Bidder Types
Sr. No.
Quote & Supply of S/W and subscription
Remarks
1 BP (Business Partner) or SI (System Integrator)
• Quote should be submitted in Indian Rupees. • SI/BP should submit an undertaking from OEM on the letterhead that the OEM will enter into back to back agreement with their SI/BP for supply of Hardware, Software, Subscription and Support of the necessary Software, also OEM would provide direct Support & Services during Implementation, Warranty & AMC as mentioned in the Tender (RFP). The undertaking
Virtual Private Network (VPN) Page 9
should also mention that the support for 5 years shall be provided at the quoted rate in the bid. This should be submitted along with the Technical bid. • Successful SI/BP should submit the above back to back agreement & direct OEM support agreement, within 15 days of issue of purchase order.
3. Techno-Commercial Evaluation
Techno-commercial bid will be accepted only if they are in the prescribed format in e-tender, with complete information and technical conditions have been complied with.
4. Commercial Bid Evaluation/Order Award Criteria
The entire Bill of Material against this tender would be evaluated as a ‘single lot’ on Lowest Total Cost of Ownership (TCO) on L1 basis.
Price bids of Techno-Commercially Qualified bidders will be evaluated using criteria of ‘Lowest Quote’ of Total
Cost of Ownership (TCO). The ‘Lowest Quote’ will be established based on the following:
a) For supplies required within Maharashtra: In case party shall be making supplies from within Maharashtra and billing from within Maharashtra with TIN Registration (in Maharashtra), VAT CREDIT will be taken in to account while commercially evaluating the offers.
b) Techno-Commercially Qualified Bids under this tender would be evaluated based on Total Cost of Ownership (TCO) [i.e. Considering the Basic price of software, Subscription & support during warranty, Implementation, AMC etc., applicable Taxes and Duties, VAT and Service tax set-off, Octroi as applicable.
c) Any Taxes, Duties, Levies etc. borne by BPCL shall be loaded as applicable during commercial evaluation.
Background BPCL has more than 200 locations spread across India and connected over Wide Area Network (WAN) through
desperate network links such as MPLS, VSAT and lease links in redundant modes to access applications/services
at the Data Centers (DCs) in Mumbai and Greater Noida. At times, due to network unavailability at locations,
users connect to DCs through Internet in a secured VPN mode for accessing the applications. Besides, a few of
the small locations like COCO ROs too connect through VPN when the VSATs have issues.
Currently BPCL has Portwise SSL VPN (www.extaps.in) from Nexusgroup to access all web based applications
like MyPortal and Cisco AnyConnect IPSEC VPN (Cisco ASA 5520) is primarily used to access all thick client
based systems like SAP GUI, SSH etc. Both the solutions are now more than 5 years old.
The Successful Bidder will be required to supply, install and commission all the required deliverables of project
at the identified locations. Benchmark specifications for various types of components to be supplied &
operationalized as part of this project are given in Annexure I. Bidders are required to ensure that components
proposed are capable to meet these benchmark specifications and are also able to adhere to the functional
requirements specified in RFP.
SI should use the industry best practices for implementation of TLS VPN at Data centers.
Virtual Private Network (VPN) Page 11
Commercial Terms & Conditions
1. Pricing Type
a. The quoted rates shall be valid for acceptance for the period of 90 days from the date of opening
commercial bid. b. The Vendor should quote separately for Basic price, Excise duty and VAT / CST as applicable in the Price
Bid. Rate of Excise duty, VAT / CST and service tax as applicable on the material should be quoted separately in the un-priced bid.
c. Variation in the rates for Statutory levies/ taxes / duties during the tenure of the contract for supplies within delivery schedule will be allowed only on the submission of documentary evidence from Govt. / Statutory Authorities and its acceptance by BPCL.
d. Vendor to quote separately for Supplies i) Within Maharashtra and ii) out of Maharashtra.
• In case, vendor supplies goods to locations within Maharashtra, from Maharashtra, BPCL shall avail Vat Credit subject to the vendor has TIN Certificate for the same and billing also being made from within Maharashtra.
• Vendor should submit Maharashtra VAT Reg. No (TIN No) along with a copy of the registration certificate. All the invoices raised should be #TAX INVOICES# and should be in the manner set out under section 86 of the ACT, so as to ensure that Input Tax Credit could be availed by BPCL on purchases from you within Maharashtra.
2. TAX Clause Rate of VAT applicable on the material supplied should be separately mentioned in the Tender Form. For deriving at the material component of the works contract please mention the method followed which can be either of the following:- a) Actual material used- giving the details of the actual material used and the applying the rate of VAT on
each as per Schedule on each of them. b) Standard deduction method- Applying the standard deduction percentage (as specified in ACT
#depending on type of contract) on the contract value to derive the material cost. c) Composition scheme- Whether opted for composition scheme under MVAT act.
Variation in the rates for Statutory levies/ taxes / duties during the tenure of the contract for supplies within delivery schedule will be allowed only on the submission of documentary evidence from Govt. / Statutory Authorities and its acceptance by BPCL.
3. Delivery Schedule • All Schedules will be calculated from the Zero Date i.e. Date of issue of Purchase Order. • Delivery of the hardware and software shall be made within 4 weeks from the date of PO. • Part delivery will not be considered. Even if it is delivered partly, the last shipment as per the purchase
order will be considered as delivered date. • Road permits / Entry permits shall be made available to the vendor by the respective location. However,
the same should be communicated to BPCL within 7 days in advance. • Vendor should indicate the Nodal point for deliveries/logistics and to whom Road permits are to be sent. • Delivery as per the purchase order has to be made before submitting the invoice for payment. Part
payment of the solution will not be made other than payment terms. • Vendor to provide complete bill of materials with part numbers which will be required to identify proper
delivery.
Virtual Private Network (VPN) Page 12
Delayed Delivery: Penalty @0.5% of the total cost per week or part thereof, maximum up to 5% of the total cost shall be deducted for delayed delivery at the time of making first payment.
Vendor shall supply the hardware and software as per the address given below:
Sr. No Description Delivery Address 1 Delivery of Hardware/
Licenses Mr. Mohit Kumar Choudhary CDC: BPCL Corporate Data Centre, “A” Installation, Sewree Fort Road, Sewree -East, Mumbai, Maharashtra. PIN: 400015.
• BPCL should be able to shift the user licenses from primary data center to DR data center for carrying out business transactions, eg. In case of disaster at primary data center or failure of both VPN appliances at primary DC, licenses should be transferable to DR site.
5. Project Execution • Configuration & integration of the total system / solution as defined in the Annexure II and final acceptance
by BPCL should be completed within 4 weeks from the date of delivery. • The OEM/SI will provide Project Services as specified in Annexure - II. • The OEM/SI is required to execute the order as a turn-key project and BPCL shall not be responsible for
any omission/deletion of any component and no additional cost shall be paid to vendor by BPCL towards the same. Such component / accessories shall be provided by Vendor at his/her cost.
• Delay in project execution shall attract penalty calculated @0.5% per day of delay (maximum up to 5% of the total cost shall be deducted for delay in project execution).
6. Payment Terms : Sr. No.
Product / Services Terms
A. Supply of Hardware, Software and licenses with 1 year on-site comprehensive warranty
Hardware/Software and licenses
50% value of supplied items (Hardware, Software & Licenses Keys) ON receipt and verification
30% value of supplied items after verification of licenses, installation, configurations, Integration and Implementation as per acceptance sheet jointly signed by the vendor & BPCL representative.
Balance 20% of the total value of the supplied items will be paid on submission of Performance Bank Guarantee (PBG) for 10% of the basic value of the supplied items, valid for a period of 1 year. Further, this PBG should be renewed year on Year basis during post Warranty period of 4 years
Virtual Private Network (VPN) Page 13
(preferably one month in advance before expiry of the PBG).
B. 24/7 Direct OEM/SI support, –(during the 1st year warranty)
Quarterly payment after the completion of quarter within 30 days from the date of submission of invoice duly authorized by BPCL officer.
C. 24/7 Direct OEM/SI support (AMC period during 2nd , 3rd , 4th and 5th Year, 6th Year)
• Creation of AMC PO by BPCL and to be accepted and signed by Vendor.
Quarterly support and services (24/7 Direct OEM support) Payment after the completion of quarter within 30 days from the date of submission of invoice duly authorized by BPCL officer.
Vendor/System Implementer will have to ensure that all invoices and other documents are signed, stamped with date by the location In-charge/BPCL officer and submitted at respective departments for payment.
Octroi, if applicable shall be paid against original receipt only.
Successful bidder will have to ensure that all the equipment carries in-transit insurance
Payment would be made through Electronic Fund Transfer (EFT). Hence, please ensure that a bank detail submitted by you is correct or submit the latest bank details in the format available with us.
If the delivered Solution is shifted to any other location in India by BPCL during the Warranty / AMC period, the vendor has to provide support under warranty/AMC period at the location.
7. Warranty, AMC & SLA a) All Software and Subscription
1. 1st year support and services shall start from the date of successful completion of the Project &
acceptance by BPCL. Subsequent to the 1st year Warranty, BPCL shall issue PO for AMC to SI for subsequent period of 5 years on satisfactory performance on yearly basis as per tender.
2. Commencement of Warrantee date for 1st year shall be deemed from the date of successful completion of the Project & acceptance by BPCL.
b) Service Level Agreement (SLA): Mandatory & Non-negotiable
1. Successful bidder must ensure direct OEM TAC support (24 hrs every day x 365 days in each year) for any Software/Hardware issue and it is the responsibility of the bidder to ensure that BPCL avails all necessary support from the TAC team to address technical issues for timely resolution.
2. Successful bidder would be solely responsible for any defect in service. 3. Successful bidder should ensure response within 4 hours from OEM for any software related issues. 4. Bidder to provide on-site NBD support.
8. Penalty (During Warranty & AMC lifecycle)
a) Violation of response clause
For every additional hour or part thereof response time beyond specified hours, penalty will be calculated based on following table
Virtual Private Network (VPN) Page 14
Sr. No
Type of Penalty
Measuring Point
Type of issue Response time Penalty Terms beyond response time
1 Delay in response
Time of call logging
Any issue related to software
4 hours Rs.1000 per hour or part thereof
2 Delay in response
Time of call logging
Any issue related to hardware
Next business Day
0.5% per day or part thereof
b) Maximum Penalty
• The penalty clause is to ensure that OEM vendor is putting best efforts to honor SLAs committed to BPCL.
• Maximum of 5% of total Warranty/AMC cost for hardware issue of that particular year and will be calculated separately for each violation.
• Maximum of Rs 10000 of total AMC cost for software issue of that particular year will be calculated separately for each violation.
c) Other Conditions
Penalty will be adjusted against support and services (24/7 Direct OEM, SI NBD support) payment done at the end of quarter(s).
BPCL reserves the right to terminate the contract on reaching the maximum penalty by serving 30 days’ notice.
9. Non-Compliance of SLAs
Bidders must take a note that the Max limits of penalties are upper tolerance and BPCL reserves right to terminate the contract at any point of time for breach of SLAs without reaching the Max limit of penalties and initiate legal action to claim business losses from the vendor.
10. Exit Clause
BPCL intend to use Enterprise class TLS VPN solution for 6 years and bidder shall enter into a six year contract
agreement with BPCL. However, in case of the change in technology of VPN, change in associated software or
launch of more advance solutions making the offerings of this product less effective, BPCL reserves the right
to terminate the contract at any point of time after completion of 3 years without any Explanation given
to the bidder, by serving 3 months’ notice.
11. Other Contractual Stipulations
a. Risk Purchase: If the vendor fails to supply the required quantity or if the quality of items supplied is found to be unsatisfactory or bad, BPCL will have the right to procure from elsewhere and extra cost incurred would be recovered from the vendor.
b. BPCL reserves the right to reject the tender without assigning any reason whatsoever.
c. If the equipment is shifted to any other location in India by BPCL during the warranty / AMC period, the
successful vendor has to provide support under warranty/AMC period at the location.
Virtual Private Network (VPN) Page 15
d. Right to Audit: BPCL reserves the right to audit or inspect work performed by the vendor. BPCL may participate directly or through an appointed representative, e.g., Mutually Agreeable external auditor, in order to verify that the tasks related to this project have been performed in accordance to the procedures indicated.
e. NDA Clause: The successful bidder has to sign the 'Non Disclosure Agreement(NDA)' on Rs. 100/-
stamp paper (Non Judicial) from their competent authority as a compliance for the 'Non Disclosure Agreement' in line with BPCL's IS Security Policy ,refer Annexure VI. Purchase orders will not be placed without entering into above NDA. If NDA has already been submitted, please ignore this clause.
f. IP (Intellectual Property)
Organization retains all rights to its pre-existing intellectual property and any intellectual property it creates in connection with the agreement; and
The vendor assigns to organization all rights in any work product developed pursuant to the agreement and acknowledges that all materials created by the vendor pursuant to the agreement shall be deemed to be owned by the organization. If the vendor will not agree to an assignment, then the vendor should, at a minimum, grant organization a perpetual, irrevocable, worldwide, royalty-free license to use the work product developed pursuant to the agreement.
g. Force Majeure Clause:
The parties to this agreement cannot be responsible for any failure of performance or delay in performance of their obligations there under if such failure or delay shall be the result of any Government Directive relevant to this agreement or due to war, hostilities, act of public enemy, riots or civil commotion’s, strikes, lock out, fire, floods, epidemics or act of God, arrests and restraints or rulers and people political or administrative acts of recognized or de-facto Government Import or Export restrictions, compliance with any Government or local authority or any other cause or cause beyond the control of the parties hereto.
h. Arbitration clause:
• In case of any dispute or differences arising under and out of, or in connection with the contract, shall be referred to the sole arbitration by an arbitrator appointed under the provision of Indian arbitration Act and conciliation Act 1996 and subject to jurisdiction of courts in Mumbai only. • In case of any dispute in the interpretation of the terms and conditions of the tender, the decision of the Corporation shall be final and binding
Limitation of liability will be restricted to Total Contract Value. ALL ABOVE TERMS & CONDITIONS ARE ACCEPTABLE TO US. SIGNATURE & NAME OF THE PERSON COMPANY SEAL
Virtual Private Network (VPN) Page 16
Technical Bid Format
Please provide the following information as part of your RFP bid. All information required herein must be provided. If the information provided is found to be incomplete, incorrect or unsatisfactory, the bid is liable to be rejected. Please provide following: a) List of Deviations, if any else submit NIL deviation statement. b) Power of Attorney – Attested copy. c) Your cover note on company’s letter head, duly signed by “Authorized signatory” indicating if you are submitting bid as SI. d) Technical Specification & Projects services as per Annexure-I and Annexure II e) The full Bill of Material (BOM) with part number of the vendor and the quantity needs to be mentioned in the Technical bid. The individual items need to be clearly mentioned as Software, Subscription, Support & Services. f) Undertaking that the vendor is quoting for all the line items mentioned in technical bid and he will be supplying the same as per quoted rate. g) Blank Commercial Bid with declaration on it that “The Commercial bid is as per the format requested & prices submitted are in the units specified in the tender without any condition attached” under the signature of the authorized signatories. In case there is any condition mentioned in commercial bid or is not in the required format, which is not mentioned in Technical bid under “Deviation Statement”, the bid is likely to be rejected. The Bidder is required to present the proposed solution with full technical details, including architecture of the solution, Project deployment plan to BPCL. A soft copy of the proposed solution is required to be submitted along with the technical bid.
Virtual Private Network (VPN) Page 17
Annexure-I: Technical Specification for Enterprise class TLS VPN Sr. No. Requirement Compliance
1 TLS VPN should be a hardware based purpose built appliance with following features
a. 2 nos 1G Ethernet or 2 nos 1 Gb Fiber ports b. 2 nos 10G Fiber interface ports c. All Transreciever’s should be supplied. d. Appliance should have dual power supply and
hot swappable feature.
2 Solution should have SSL VPN throughput of at least 3.5 Gbps.
3 SSL VPN solution vendor should be listed in Gartner VPN market guide for Enterprise Infrastructure VPN 2016 with flowing features 1.Workstation Remote Access VPN 2.Mobile VPN
4 License should be fully transferable to DR in case of failure of both SSL appliances at DC. Licenses will be used to support business operations at DR site till the time primary data center operations are restored.
5 Appliance should have capacity to support at least 10,000 concurrent VPN users on same hardware from day one.
6 The license should be run in active-passive mode when in HA. When in HA mode licenses should seamlessly transfer to other node in case of an appliance issue.
7 Should provide fast and easy access to all applications including Web‐based, client/server, server‐based architecture.
8 Must to have Secure Socket Layer- Transport Layer security VPN certification 4.0 from ICSA Labs or FIPS 2.0 (As on RFP release date).
9 Should support HTTP 1.1 compression, utilizing GZIP compression for improved performance when accessing Web based applications.
10 Should Support Mobile client for smart phones like Iphone, iPad, Android to run both TCP and UDP base client/server applications.
11 Should support NAC features like End Point detection on IOS to detect whether the phone is in Jailbreak mode, Posture checking.
12 Should support End Point detection on Android platform to detect whether the phone is in rooted mode
13 Should Provide additional protection for entrusted environments by allowing authentication credentials to be entered via a virtual keyboard. (optional)
14 Should Support recurring end point control scans. If a classification change is noticed after SSL VPN tunnel built, the session can be terminated.
15 Posture checking should support checking of latest signature of Major anti virus, anti spyware & personal firewall solutions.
Virtual Private Network (VPN) Page 18
16
Appliance should support Ipv6 from day one.
17
Appliance should trigger password change / expiration notice
18
Should provide session persistence to across office, home or mobile IP addresses, without re authentication.
19 Should provide fast & easy access to all applications like web based, client/server, server based or host based combining application layer control of SSL with layer 3 tunnel
20 Should not have any addressing and routing conflicts
21 Must to have support for Access control for bi directional Client / Server communication
22 Should support Name and domain based access control on Layer 3 tunnel and SAML Authentication.
23 Should support resource or object based access control and allow unified resource creation for any type of access.
24
Should be able to purges browser cache for windows as well as Macintosh users, session history, cookies and passwords
25
End user should be able to change password from Work Place portal, connect tunnel and Mobile Connect
26
Should support User connection monitoring, event alarms, View logs and performance information via the Management Console
27 Should be able to allow, deny and quarantine access and provides data protection based on end point security profile) for the users
28 should support encryption through atleast Configurable session length, Ciphers: DES, 3DES, RC4, AES, Hashes: MD5, SHA
29 Should support following Authentication methods: a) Username and Password, b) Active Directory, LDAP
30 Solution should support customization of multiple portal interfaces for different groups or users. Business partners may be presented with one interface for example, while internal employees are presented with another.
31 Solution provides support for the interrogation of end points in order to determine the trust level of the device based on the following attributes: Any running application or process Running anti-virus solution (matching anti-virus vendor, version and
signature file update status) Running personal firewall solution (matching personal firewall
vendor, version and signature file update status)
Virtual Private Network (VPN) Page 19
Running Anti-spyware solution (matching anti-spyware vendor, version and signature file update status).
32 Solution should have intelligent provision capabilities such as automatically scans each access environment to determine optimal user experience for users accessing via the portal interface. Access agents should dynamically distributed based on device capabilities (O/S, browser, admin rights) and device trust (provision agents based on end point control)
33 Appliance must support workflow functionality that should allow security administrators to approve end user hardware machine before users can access the published resources
34 SSL VPN client should support broader platforms including Windows, Mac, Linux, Android, IOS.
35
Appliance should support HTML5 browser access.
36
Should support continuous endpoint security compliance check.
37
Layer 7 Web single sign-on (SSO) to downstream applications.
38 SSL VPN should support enhanced reporting (Bandwidth summary, Top Users, User Login / failed login, Events listed by date, Connection Summary etc.
39 The proposed SSL VPN solution must be a SSL VPN and must have a proven track record, deployed in at least 2 recognized Enterprise customer in India (Min 1000 SSL users solution to be at each Customer (Reference to be provided.)
40
SSL VPN should support HA with built in load balancing.
41 SSL VPN should support Per App VPN
42 The offered hardware and software should not have end of sale within 3
years from the date of RFP and should have support for minimum 6 years
from the date of commissioning. Solution should also offer periodic
updates and upgrades during warranty and AMC.
43 We confirm acceptance of all terms & conditions mentioned in this
document.
44 Non-Disclosure Agreement (NDA) form (Specimen enclosed) duly signed
by the Authorized signatory in case we are successful bidder.
45 List of Deviations, if any else submit NIL deviation statement (as per format
enclosed herewith).
46 Mention details of DD submitted in form of EMD in remark column.
Virtual Private Network (VPN) Page 20
Annexure-II: Project Implementation Services
Sr No#
Services during Project Implementation
Specifications in Brief Compliance (Yes/ No)
1 End to end Project Management
Project to be implemented as per the below points 1. Design and develop TLS VPN architecture to be deployed in
BPCL considering existing network architecture and after discussion with Network Administrators.
2. Design the project implementation plan using IT best practices of VPN implementation.
3. Integration with existing custom developed OTP solution. 4. Integration of the Solution with BPCL’s Arcsight SIEM System 5. Creation and configuration of monitoring dashboards, reports
and alert notification. 6. Documentation of the architecture, configurations and access
points deployed. 7. Project sign-off
Virtual Private Network (VPN) Page 21
Annexure-III: Commercial Bid Format
Sr. No#
Description Delivery Type Hardware(H/W) / Software (S/W) / Service (SER)
Qty UOM
10
Hardware based purpose built SSL VPN
appliance with following features:
a) Appliance must support HA configuration
b) Capacity to support min. 10000
concurrent users
c) Dual power supply and hot swappable
disks
d) Along with All SFP /SFP+ transreceivers.
CDC
H/W 2 EA
20
Hardware based purpose built SSL VPN
appliance with following features:
a) Capacity to support min. 10000
concurrent users
b) Dual power supply and hot swappable
disks
c) Along with All SFP /SFP+ transreceivers.
IDC
H/W 1 EA
30
Concurrent User License in HA mode with
following features
a) Accessible from Smart Phone / Tablet (android/Ios)
b) Accessible from Laptop/desktops (win7 & above, Mac etc)
S/W 1000 EA
40
Concurrent User License in single appliance
use mode with following features
a) Accessible from Smart Phone/ tablets (android/Ios)
b) Accessible from Laptop/desktops (win7 & above, Mac etc)
S/W 100 EA
50 Installation and Implementation Charges CDC &
IDC SER 1 EA
Virtual Private Network (VPN) Page 22
60 Hardware: NBD support by OEM &SI CDC &
IDC SER 1 EA
70
1100 Concurrent Users: 24x7 support by
OEM & SI
CDC & IDC SER 1 EA
80 1st Year: Hardware- NBD support by OEM
&SI
CDC &
IDC SER 1 YR
90
1st Year: 1100 Concurrent Users- 24x7
support by OEM & SI
CDC &
IDC SER 1 YR
100
2nd Year: Hardware- NBD support by OEM
&SI
CDC &
IDC SER 1 YR
110
2nd Year: 1100 Concurrent Users- 24x7
support by OEM & SI
CDC &
IDC SER 1 YR
120
3rd Year: Hardware- NBD support by OEM
&SI
CDC &
IDC SER 1 YR
130
3rd Year: 1100 Concurrent Users- 24x7
support by OEM & SI
CDC &
IDC SER 1 YR
140
4th Year: Hardware- NBD support by OEM
& SI
CDC &
IDC SER 1 YR
150 4th Year: 1100 Concurrent Users- 24x7
support by OEM & SI
CDC &
IDC SER 1 YR
160
5th Year: Hardware- NBD support by OEM
& SI
CDC &
IDC SER 1 YR
170
5th Year: 1100 Concurrent Users- 24x7
support by OEM & SI
CDC &
IDC SER 1 YR
180
Additional Concurrent User Licenses:: In
lots of 500 ( To be procured in Subsequent
years)
a) Accessible from Smart Phones/Tablets (android/Ios)
b) Accessible from Laptop/desktops (win7 & above, Mac etc)
(In case required during contract
period)
CDC
S/W 1 EA
Virtual Private Network (VPN) Page 23
Annexure –IV: Direct OEM support
Direct OEM support
• The OEM/SI should nominate an Account Support team/Manager with escalation matrix for handling all support related services during Warranty & AMC Period. The Account Support Team/Manager should be the single point of contact with end-to-end account ownership for all committed deliverables during Warranty & AMC Period
• OEM shall provide 24x7 direct support in all 365 days in a year. • BPCL shall be able to directly log any case with OEM without the intervention of SI/BP. • BPCL shall be able to directly interact with OEM’s support Personnel without the intervention of SI/BP for
resolution of any issue, obtaining technical guidance for any further changes in the software or it’s configuration, upgrades, updates and all other types of technical queries.
• OEM Response time < 60 minutes from the time of logging a call • Access to OEM’s knowledge base and technical forum
Virtual Private Network (VPN) Page 24
Annexure – V: MANUFACTURERS’ AUTHORIZATION FORM Ref: Date: To, Sr. Manager IS ( P & C) M/s Bharat Petroleum Corporation Limited IS Department, CPO sewree, 1st Floor, A- Installation Sewree East, Mumbai-400015 Subject: Manufacturer Authorization for Tender No CRFQ ______________ Sir, We, <OEM/ Manufacturer name> having our registered office at <OEM/ Manufacturer address>, are an established and reputed manufacturer of VPN Solution. We confirm that <Bidder Name> having its registered office at <Bidder Address> is our authorized partner for ________________________. We hereby authorize <Bidder Name> to quote and execute the order for the subject tender on behalf of <OEM/ Manufacturer name>. Our full support is extended to them in all respects for supply and installation. Further, we <OEM/ Manufacturer name> shall provide support services during entire warranty and AMC period directly by us for the offered VPN Solution in India as per the terms and conditions of the tender. We also undertake that in case of default in execution of this tender by the <Bidder Name>, the <OEM/Company Name> will take all necessary steps for successful execution of this project as per tender requirements. In case the partner firm is not able to perform the obligations as per contract during the period of contract, as Original Equipment Manufacturer, either we will provide the support services directly or through parties acceptable to the BPCL as per the terms & conditions mentioned in CRFQ No: XXXXXXXXX. Thanking You For <OEM/ Manufacturer name> <(Authorized Signatory)> Name : Designation :
Note: This letter of authority should be on the letterhead of the manufacturer and should be signed & stamped by Legal
Officer/HR Head/Company Secretary of OEM Company/Power of Attorney
Virtual Private Network (VPN) Page 25
Annexure – VI : NDA
Non Disclosure Agreement
This Agreement is made as of the ------------- 2008 between BHARAT PETROLEUM CORPORATION LTD. (BPCL)
a Government of India Enterprise, having its registered office and Corporate office at Bharat Bhavan , 4&6 , Currimbhoy
Road , Ballard Estate , Mumbai -400001 hereinafter referred as First Part which expression shall unless repugnant
to the subject or the context mean and included its successors, nominees or assigns and M/s ------------------ -------- ----
----------------------------------------------------- a company incorporated under the Indian Companies Act, 1956, and having
its registered office at ------------------------------------ ------------------------------------------------------ herein after called “-
Second Part ” which expression shall unless repugnant to the subject or the context mean and include its successors,
nominees or assigns.
Whereas in order to pursue the business purpose of this particular project as specified in Annexure A (the “Business
Purpose”), M/s---------------------------------------------------------------------------------------------- recognize that there is a need
to disclose certain information, as defined in para 1 below, to be used only for the Business Purpose and to protect
such confidential information from unauthorized use and disclosure.
In consideration of First Part’s disclosure of such information, Second Part agrees as follows:
1. This Agreement will apply to all confidential and proprietary information disclosed by First part to Second part , including information which the disclosing party identifies in writing or otherwise as Confidential before or within thirty days after disclosure to the receiving party (“Confidential Information”).
Confidential Information consists of certain specifications, designs, plans, drawings, software, prototypes
and/or technical information, and all copies and derivatives containing such Information, that may be disclosed
to other part by first part for and during the Purpose, which disclosing party considers proprietary or
confidential (“Information”). Confidential Information may be in any form or medium, tangible or intangible,
and may be communicated/disclosed in writing, orally, or through visual observation or by any other means
by other part (hereinafter referred to as the receiving party) by the First Part (hereinafter referred to as one
disclosing party). Information shall be subject to this Agreement, if it is in tangible form, only if clearly marked
as proprietary or confidential as the case may be, when disclosed to the receiving party or, if not in tangible
form, its proprietary nature must first be announced, and it must be reduced to writing and furnished to the
receiving party within thirty (30) days of the initial disclosure.
2. M/s --------------------------- i.e. Second Part ----------------------------------hereby agreed that during the Confidentiality Period:
a) The receiving party shall use Information only for the Purpose, shall hold Information in confidence using
the same degree of care as it normally exercises to protect its own proprietary information, but not less than
reasonable care, taking into account the nature of the Information, and shall grant access to Information only
to its employees who have a need to know, but only to the extent necessary to carry out the business purpose
of this project as defined in exhibit A, shall cause its employees to comply with the provisions of this
Agreement applicable to the receiving party, shall reproduce Information only to the extent essential to fulfilling
the Purpose, and shall prevent disclosure of Information to third parties. The receiving party may, however,
disclose the Information to its consultants and contractors with a need to know; provided that by doing so, the
Virtual Private Network (VPN) Page 26
receiving party agrees to bind those consultants and contractors to terms at least as restrictive as those stated
herein, advise them of their obligations, and indemnify the disclosing party for any breach of those obligations.
b) Upon the disclosing party's request, the receiving party shall either return to the disclosing party all
Information or shall certify to the disclosing party that all media containing Information have been destroyed.
3. The foregoing restrictions on each party's use or disclosure of Information shall not apply to Information that the receiving party can demonstrate:
a) Was independently developed by or for the receiving party without reference to the Information, or was
received without restrictions; or
b) Has become generally available to the public without breach of confidentiality obligations of the receiving
party. The information shall not be deemed to be available to the general public merely because it is embraced
by more general information in the prior possession of Recipient or of others, or merely because it is
expressed in public literature in general terms not specifically in accordance with the Confidential Information;
or
c) Was in the receiving party's possession without restriction or was known by the receiving party without
restriction at the time of disclosure and receiving party declare of possession of such confidential information
within a day upon such disclosure by disclosing party ; or
d) Pursuant to a court order or is otherwise required by law to be disclosed', provided that Recipient has
notified the disclosing party immediately upon learning of the possibility of any such court order or legal
requirement and has given the disclosing party a reasonable opportunity and co-operate with disclosing party
to contest or limit the scope of such required disclosure including application for a protective order.
e) Is disclosed with the prior consent of the disclosing party; or
f) The receiving party obtains or has available from a source other than the disclosing party without breach by
the receiving party or such source of any obligation of confidentiality or non-use towards the disclosing party.
4. Receiving party agrees not to remove any of the other party’s Confidential Information from the premises of the disclosing party without the disclosing party’s prior written approval and exercise extreme care in protecting the confidentiality of any Confidential Information which is removed, only with the disclosing party’s prior written approval, from the disclosing party’s premises. Receiving party agrees to comply with any and all terms and conditions the disclosing party may impose upon any such approved removal, such as conditions that the removed Confidential Information and all copies must be returned by a certain date, and that no copies are to be make off of the premises.
5. Upon the disclosing party’s request, the receiving party will promptly return to the disclosing party all tangible items containing or consisting of the disclosing party’s Confidential Information all copies thereof.
6. Receiving party recognizes and agrees that all of the disclosing party’s Confidential Information is owned solely by the disclosing party (or its licensors) and that the unauthorized disclosure or use of such Confidential Information would cause irreparable harm and significant injury, the degree of which may be difficult to ascertain. Accordingly, receiving party agrees that the disclosing party will have the right to obtain an
Virtual Private Network (VPN) Page 27
immediate injunction enjoining any breach of this Agreement, as well as the right to pursue any and all other rights and remedies available at law or in equity for such a breach.
7. As between the parties, all Information shall remain the property of the disclosing party. By disclosing Information or executing this Agreement, the disclosing party does not grant any license, explicitly or implicitly, under any trademark, patent, copyright, mask work protection right, trade secret or any other intellectual property right. The disclosing party disclaims all warranties regarding the information, including all warranties with respect to infringement of intellectual property rights and all warranties as to the accuracy or utility of such information. Execution of this Agreement and the disclosure of Information pursuant to this Agreement does not constitute or imply any commitment, promise, or inducement by disclosing party to make any purchase or sale, or to enter into any additional agreement of any kind.
8. Disclosing party’s failure to enforce any provision, right or remedy under this agreement shall not constitute a waiver of such provision, right or remedy.
9. This Agreement will be construed in, interpreted and applied in accordance with the laws of India.
10. This Agreement and Exhibit A attached hereto constitutes the entire agreement of the parties with respect to the parties' respective obligations in connection with Information disclosed hereunder and supersedes all prior oral and written agreements and discussions with respect thereto. The parties can amend or modify this Agreement only by a writing duly executed by their respective authorized representatives. Neither party shall assign this Agreement without first securing the other party's written consent.
11. This Agreement will remain in effect for three years from the date of the last disclosure of Confidential Information, at which time it will terminate, unless extended by the disclosing party in writing.
12. With regard to the confidential information of M/s disclosed to BPCL, BPCL agrees to comply with all the obligations of receiving party mentioned in this Agreement.
IN WITNESS WHEREOF, the parties hereto have executed this Agreement by their duly
authorized officers or representatives.
M/S ----------------------------- BHARAT PETROLEUM CORPORATION LIMITED
![Bharat Petroleum |Oil & Gas Companies in India …...Bharat Petroleum Corporation Limited Welcome, x C:] 6:33 PM Bharat Petroleum Feedback & Rating](https://static.documents.pub/doc/80x56/5f0ecc287e708231d440fc95/bharat-petroleum-oil-gas-companies-in-india-bharat-petroleum-corporation.jpg)
