Overview – SOE PatchTT December 2013.

Slides:



Advertisements
Similar presentations
This course is designed for system managers/administrators to better understand the SAAZ Desktop and Server Management components Students will learn.
Advertisements

Pennsylvania BANNER Users Group 2006 Integrate Your Decision Support with Cognos 8.
Red Hat Linux Network. Red Hat Network Red Hat Network is the environment for system- level support and management of Red Hat Linux networks. Red Hat.
Vulnerability Analysis Borrowed from the CLICS group.
User Responsibility A “How To” Guide for SecurityCenter.
Maintaining and Updating Windows Server 2008
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.
The Pros and Cons of Collecting Performance Data using Agentless Technology Dima Seliverstov John Tavares Tianxiang Zhang BMC Software, Inc.
Windows Server 2008 Chapter 11 Last Update
11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW Understand the difference between service.
11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW  Understand the difference between service.
SOE and Application Delivery Gwenael Moreau, Abbotsleigh.
Linux Operations and Administration
Linux & UNIX Version 5.3 (Power) Version 6.1 (Power) Version 7.1 (Power) AIX Version 11iv2 (PA-RISC/IA64) Version 11iv3 (PA-RISC/IA64) HP-UX Version.
Tim Vander Kooi Systems
Microsoft ® System Center Operations Manager 2007 Infrastructure Planning and Design Published: June 2008 Updated: July 2010.
Network Management Tool Amy Auburger. 2 Product Overview Made by Ipswitch Affordable alternative to expensive & complicated Network Management Systems.
11 MANAGING AND DISTRIBUTING SOFTWARE BY USING GROUP POLICY Chapter 5.
1 Apache. 2 Module - Apache ♦ Overview This module focuses on configuring and customizing Apache web server. Apache is a commonly used Hypertext Transfer.
FNAL System Patching Design Jack Schmidt, Al Lilianstrom, Andy Romero, Troy Dawson, Connie Sieh (Fermi National Accelerator Laboratory) Introduction FNAL.
© 2006 Cisco Systems, Inc. All rights reserved. Optimizing Converged Cisco Networks (ONT) Module 6: Implement Wireless Scalability.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 14: Windows Server 2003 Security Features.
Securing Your Enterprise with Enterprise Manager 10g Amir Najmi Principal Member of Technical Staff System Management Products Oracle Corporation Session.
Rob Davidson, Partner Technology Specialist Microsoft Management Servers: Using management to stay secure.
GraDS MacroGrid Carl Kesselman USC/Information Sciences Institute.
System Center 2012 Configuration Manager Service Pack 1 Overview.
Maintaining and Updating Windows Server 2008 Lesson 8.
SoftUpdate New features and management technique.
Compliance Management System. Intelex System Overview Focus Modules: –Permits Management –Monitoring & Measurement –Training Management –Document Control.
Overview – SOE Syslog-ng
Overview – SOE Cfengine v3.4.0
Core Elements Engineering - Platform Development Studio
Overview – SOE Net-SNMP v5.7.2
Overview – TI Services September-2016.
John Philbrick PE, CCP, PMP
Overview – TI Services November-2015.
Overview – SOE Net-SNMP v
Overview – SOE Net-SNMP v5.7.3
Monitoring Storage Systems for Oracle Enterprise Manager 12c
Overview – SOE vAuto-Config
Overview – SOE Auto-Config
Overview – SOE Auto-Config
An Operating System Security Solution
System Center 2012 Configuration Manager
UnixSOE Enterprise Suite v8.x Data Security
IBM Workload Scheduler 2015 Take the Complexity Out of Workload Automation, while Keeping the Technology Up-to-Date IEM fixlets and Centralized Agent Update.
Chapter 6 Application Hardening
Overview – SOE PatchTT November 2015.
Hands-On Microsoft Windows Server 2008
Overview – SOE Cfengine v3.6.5
IBM Tivoli Provisioning Manager Red Hat 5 patch management
An Operating System Security Solution
Unix Provisioning Manager
An Operating System Security Solution
UnixSOE Enterprise Suite v9.x Data Security
Kanban Task Manager for Outlook ‒ Introduction
A technical look at new capabilities and features
Michael Mast Senior Architect
Gain powerful insights into your print environment
Maintaining software solutions
Monitoring Storage Systems for Oracle Enterprise Manager 12c
Mitel Pricing Tool - MPT Overview of MPT. SX-200 ICP Sales Training2 Mitel Pricing Tool - MPT  The Mitel Pricing Tool (MPT) consolidates various tools.
More Scripting & Chapter 11
Solutions: Backup & Restore
Introduction of Week 3 Assignment Discussion
DHCP, DNS, Client Connection, Assignment 1 1.3
IS3440 Linux Security Unit 9 Linux System Logging and Monitoring
Chapter 9: IOS Images and Licensing
11/23/2018 3:03 PM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.
Presentation transcript:

Overview – SOE PatchTT December 2013

So component have two parts as below: Overview SOE PatchTT is a policy based tool that allows to proactively monitoring patches and software updates by analysis, and report required patch compliance across enterprise. It works on client server architecture, i.e. client side collects data and send it to the server for computation and representation. So component have two parts as below: PatchTT Server (Installed on TI Presentation Server). PatchTT Client (Installed on all Clients).

Features and Benefits Automated distribution and centralized management of monthly baseline and other (custom, cumulative etc.) policies in complete infrastructure. Automated distribution of baseline patches in complete infrastructure. Intelligence to report vulnerabilities as per patch dependency defined in policy. Compliance computation on the basis of applicable patch count or host count in the registered group. Report remediation requirement by tracking patches against policy activated on servers centrally. Multiple Policies applicable on single server. Feature to define custom patch security baseline policy, to benchmark system’s vulnerability and standards. Facilitate proactive management for complete infrastructure with secure, centralized and optimal method. Implement a single reporting framework for distributed, heterogeneous UNIX server’s i.e. same solution for AIX, Linux, HP-UX and Solaris. Compliance summary on the basis of various categories, i.e. patch severity and host operating system, etc. Pictorial flash graphs for management summary.

PatchTT v.1.0-9 Highlights Client Enhancements: Server Enhancements: Introduced new command line option to scan multiple policies in one go. Enhancement to incorporate Linux YUM like scanning feature in PatchTT. Optimized patchTT scanning performance for Linux environment. Enhancement to handle new naming convention for cumulative policy. Server Enhancements: Host Filter is available in “patch Compliance detailed” report. Now both baseline and ALLPatch policy options are available in cumulative policy management interface. Option included to select multiple severity type in cumulative policy management interface. Multiple host selection using TXT file(only for Mozilla and IE 10 browsers) feature included New format option available for Patch Detailed compliance report (single patch and server combination per row) Background submit option included in “Patch Detailed Compliance” report.

PatchTT v.1.0-9 Highlights Server Enhancements: New report header feature available for all patchTT reports, with below options: Short Type includes: Report name Account Policy name Date of report DD-MON-YEAR Submitted by username PTT version Any filters applied full list of filters, e.g. rating/ALL, OS , hosts (file name | included | excluded) etc. Options: (Depends on report, but, for example, host based or account based report etc.) Verbose Type Includes: Same as sort but additionally lists ALL hosts in scope NONE: No Report header required. Report header is also available as a separate Tab in all Excel download reports..

PatchTT Architecture SOE Tools Installed on the Various Components PatchTT Client PatchTT Data transfer via POLL /PUSH mode with SW Deploy enable TI PS TI SFS PatchTT Data transfer via POLL /PUSH mode with SW Deploy enable PatchTT Client Data Transfer via POLL/PUSH Mode with SW Deploy enable Data Transfer via POLL/PUSH Mode with SW Deploy enable Via POLL /PUSH mode with SW Deploy enable PatchTT Data transfer PatchTT Client SOE Tools Installed on the Various Components PatchTT Client : PatchTT Client and csc_ti client with SW Deploy Enable. TI SFS : csc_ti server. TI PS : csc_ti server, Perl PS, Auto_config server12.0-1 or higher and PatchTT Server.

PatchTT Architecture for Patch Distribution

Policy Creation and Publish Below is the sequence for creation and publish of SOE Baseline and All patch policy : Every month release security patches and bug fixes has been collected from Vendor Sites, i.e. Oracle, Red Hat , etc. Policy has been created by UnixSOE team in required format and published at https://unixsoe.csc.com/ and Distribution servers. Sample Policy file:

Policy Import SOE Baseline and All Patch Policy could be imported via PatchTT server script named “import_patch.pl”. Usage of script have been shown below:

Available Reports Main categories of reports available on PatchTT server as below: Account Based: Summary Report Baseline Patch Compliance Compliance Progress 2D Report Custom Patch Compliance Monthly All Patch Compliance Patch Compliance Trend Baseline Patch Compliance Details Cumulative Patch Compliance Details Custom Patch Compliance Details Monthly All Patch Compliance Details Install Patch List Patch Scan Raw Report Missing Patch Status Summary Patch Compliance Detailed Report Host Based: Patch Status (Last Month) Report Network Services Report Packages Installed Report Patches Applied Report Active Policies Configuration Based: Exclude Servers from PatchTT Manage PatchTT Policies NOTE: Few major reports shown below, please refer PatchTT User Guide for detailed information.

Summary Report This report provides applied and missing patch count summary as per SOE baseline patching policy for last month for the given servers.

Baseline Patch Compliance This report provides applied and missing patch count summary along with patch compliance for a particular month.

Compliance Progress 2D Report This report provides last six month compliance for all the registered accounts. It could be used for tracking the compliance progress for last six months in a particular account, to take corrective actions for making environment secure and robust.

Custom Patch Compliance This report provides missing and applied patch count summary along with percentage compliance for the registered accounts, as per custom policy.

Monthly All Patch Compliance This report provides missing and applied patch count summary along with percentage compliance for the registered accounts, on the basis of “All patch policy” release.

Patch Compliance Trend This report provides account based patch scan historical view for available policies. It also shows, selected policy compliance line chart for an account.

Baseline Patch Compliance Details This report used to generate host level percentage compliance on the basis of selected ‘Baseline’ policy for an account.

Cumulative Patch Compliance Details This report used to generate host level percentage compliance on the basis of selected ‘Cumulative’ policy for an account.

Custom Patch Compliance Details This report used to generate host level percentage compliance on the basis of selected ‘Custom’ policy for an account.

Monthly All Patch Compliance Details This report used to generate host level percentage compliance on the basis of selected ‘All Patch’ policy for an account.

Installed Patch List This report provides installed patches count. On drill down complete list of Installed patches with some more details for the selected host would be available.

Patch Scan Raw Report This report used to show all the scan results of selected policy for an account in raw format ( without any processing or calculation at server end).

Missing Patch Status Summary This report provides account based missing patch list with host count on which those patches are applicable and missing.

Patch Compliance Detailed Report This report provides account based patch compliance detailed report, which consists total applicable patch list and missing patch list per host in a summarized format.

Patch Status Report This is a host-based report which provide last month SOE Baseline patch status in the selected host.

Network Details Report This is a Host Based report Network Details Report This is a Host Based report. It shows list of open ports, protocol and their respective service name in the host.

Packages Installed Report This is a host-based report which provide installed packages list on a particular host.

Applied Patch Report This is a host-based report which provide applied patch list on a particular host.

Active Policies This report shows activated cumulative and custom policy status on the selected host, i.e. Reporting, Not Reported and Not Applicable.

Known Limitation “Patch Compliance Details (One Row Per Server)” report have know limitation of truncation while excel download. The truncation only affects the display - all of the patches are listed in the cell, but are not visible in excel. We could access the data by below ways : 1. “Copy" the cell in Excel then "paste" into MS Word (gives one patch per line - whereas notepad loses line feeds) 2. The online report lists everything

Solution Pack Unix SOE & TI Services Questions & Feedback Product Support Helpline unixsoe@csc.com

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.