Presentation is loading. Please wait.

Presentation is loading. Please wait.

Overview – SOE PatchTT December 2013.

Published byPhebe Bishop Modified over 6 years ago

Similar presentations

Presentation on theme: "Overview – SOE PatchTT December 2013."— Presentation transcript:

1 Overview – SOE PatchTT December 2013

2 So component have two parts as below:
Overview SOE PatchTT is a policy based tool that allows to proactively monitoring patches and software updates by analysis, and report required patch compliance across enterprise. It works on client server architecture, i.e. client side collects data and send it to the server for computation and representation. So component have two parts as below: PatchTT Server (Installed on TI Presentation Server). PatchTT Client (Installed on all Clients).

3 Features and Benefits Automated distribution and centralized management of monthly baseline and other (custom, cumulative etc.) policies in complete infrastructure. Automated distribution of baseline patches in complete infrastructure. Intelligence to report vulnerabilities as per patch dependency defined in policy. Compliance computation on the basis of applicable patch count or host count in the registered group. Report remediation requirement by tracking patches against policy activated on servers centrally. Multiple Policies applicable on single server. Feature to define custom patch security baseline policy, to benchmark system’s vulnerability and standards. Facilitate proactive management for complete infrastructure with secure, centralized and optimal method. Implement a single reporting framework for distributed, heterogeneous UNIX server’s i.e. same solution for AIX, Linux, HP-UX and Solaris. Compliance summary on the basis of various categories, i.e. patch severity and host operating system, etc. Pictorial flash graphs for management summary.

4 PatchTT v.1.0-9 Highlights Client Enhancements: Server Enhancements:
Introduced new command line option to scan multiple policies in one go. Enhancement to incorporate Linux YUM like scanning feature in PatchTT. Optimized patchTT scanning performance for Linux environment. Enhancement to handle new naming convention for cumulative policy. Server Enhancements: Host Filter is available in “patch Compliance detailed” report. Now both baseline and ALLPatch policy options are available in cumulative policy management interface. Option included to select multiple severity type in cumulative policy management interface. Multiple host selection using TXT file(only for Mozilla and IE 10 browsers) feature included New format option available for Patch Detailed compliance report (single patch and server combination per row) Background submit option included in “Patch Detailed Compliance” report.

5 PatchTT v.1.0-9 Highlights Server Enhancements:
New report header feature available for all patchTT reports, with below options: Short Type includes: Report name Account Policy name Date of report DD-MON-YEAR Submitted by username PTT version Any filters applied full list of filters, e.g. rating/ALL, OS , hosts (file name | included | excluded) etc. Options: (Depends on report, but, for example, host based or account based report etc.) Verbose Type Includes: Same as sort but additionally lists ALL hosts in scope NONE: No Report header required. Report header is also available as a separate Tab in all Excel download reports..

6 PatchTT Architecture SOE Tools Installed on the Various Components
PatchTT Client PatchTT Data transfer via POLL /PUSH mode with SW Deploy enable TI PS TI SFS PatchTT Data transfer via POLL /PUSH mode with SW Deploy enable PatchTT Client Data Transfer via POLL/PUSH Mode with SW Deploy enable Data Transfer via POLL/PUSH Mode with SW Deploy enable Via POLL /PUSH mode with SW Deploy enable PatchTT Data transfer PatchTT Client SOE Tools Installed on the Various Components PatchTT Client : PatchTT Client and csc_ti client with SW Deploy Enable. TI SFS : csc_ti server. TI PS : csc_ti server, Perl PS, Auto_config server or higher and PatchTT Server.

7 PatchTT Architecture for Patch Distribution

8 Policy Creation and Publish
Below is the sequence for creation and publish of SOE Baseline and All patch policy : Every month release security patches and bug fixes has been collected from Vendor Sites, i.e. Oracle, Red Hat , etc. Policy has been created by UnixSOE team in required format and published at and Distribution servers. Sample Policy file:

9 Policy Import SOE Baseline and All Patch Policy could be imported via PatchTT server script named “import_patch.pl”. Usage of script have been shown below:

10 Available Reports Main categories of reports available on PatchTT server as below: Account Based: Summary Report Baseline Patch Compliance Compliance Progress 2D Report Custom Patch Compliance Monthly All Patch Compliance Patch Compliance Trend Baseline Patch Compliance Details Cumulative Patch Compliance Details Custom Patch Compliance Details Monthly All Patch Compliance Details Install Patch List Patch Scan Raw Report Missing Patch Status Summary Patch Compliance Detailed Report Host Based: Patch Status (Last Month) Report Network Services Report Packages Installed Report Patches Applied Report Active Policies Configuration Based: Exclude Servers from PatchTT Manage PatchTT Policies NOTE: Few major reports shown below, please refer PatchTT User Guide for detailed information.

11 Summary Report This report provides applied and missing patch count summary as per SOE baseline patching policy for last month for the given servers.

12 Baseline Patch Compliance
This report provides applied and missing patch count summary along with patch compliance for a particular month.

13 Compliance Progress 2D Report
This report provides last six month compliance for all the registered accounts. It could be used for tracking the compliance progress for last six months in a particular account, to take corrective actions for making environment secure and robust.

14 Custom Patch Compliance
This report provides missing and applied patch count summary along with percentage compliance for the registered accounts, as per custom policy.

15 Monthly All Patch Compliance
This report provides missing and applied patch count summary along with percentage compliance for the registered accounts, on the basis of “All patch policy” release.

16 Patch Compliance Trend
This report provides account based patch scan historical view for available policies. It also shows, selected policy compliance line chart for an account.

17 Baseline Patch Compliance Details
This report used to generate host level percentage compliance on the basis of selected ‘Baseline’ policy for an account.

18 Cumulative Patch Compliance Details
This report used to generate host level percentage compliance on the basis of selected ‘Cumulative’ policy for an account.

19 Custom Patch Compliance Details
This report used to generate host level percentage compliance on the basis of selected ‘Custom’ policy for an account.

20 Monthly All Patch Compliance Details
This report used to generate host level percentage compliance on the basis of selected ‘All Patch’ policy for an account.

21 Installed Patch List This report provides installed patches count. On drill down complete list of Installed patches with some more details for the selected host would be available.

22 Patch Scan Raw Report This report used to show all the scan results of selected policy for an account in raw format ( without any processing or calculation at server end).

23 Missing Patch Status Summary
This report provides account based missing patch list with host count on which those patches are applicable and missing.

24 Patch Compliance Detailed Report
This report provides account based patch compliance detailed report, which consists total applicable patch list and missing patch list per host in a summarized format.

25 Patch Status Report This is a host-based report which provide last month SOE Baseline patch status in the selected host.

26 Network Details Report This is a Host Based report
Network Details Report This is a Host Based report. It shows list of open ports, protocol and their respective service name in the host.

27 Packages Installed Report This is a host-based report which provide installed packages list on a particular host.

28 Applied Patch Report This is a host-based report which provide applied patch list on a particular host.

29 Active Policies This report shows activated cumulative and custom policy status on the selected host, i.e. Reporting, Not Reported and Not Applicable.

30 Known Limitation “Patch Compliance Details (One Row Per Server)” report have know limitation of truncation while excel download. The truncation only affects the display - all of the patches are listed in the cell, but are not visible in excel. We could access the data by below ways : 1. “Copy" the cell in Excel then "paste" into MS Word (gives one patch per line - whereas notepad loses line feeds) 2. The online report lists everything

31 Solution Pack Unix SOE & TI Services
Questions & Feedback Product Support Helpline

Download ppt "Overview – SOE PatchTT December 2013."

Similar presentations

This course is designed for system managers/administrators to better understand the SAAZ Desktop and Server Management components Students will learn.

This course is designed for system managers/administrators to better understand the SAAZ Desktop and Server Management components Students will learn.
Pennsylvania BANNER Users Group 2006 Integrate Your Decision Support with Cognos 8.

Pennsylvania BANNER Users Group 2006 Integrate Your Decision Support with Cognos 8.
Red Hat Linux Network. Red Hat Network Red Hat Network is the environment for system- level support and management of Red Hat Linux networks. Red Hat.

Red Hat Linux Network. Red Hat Network Red Hat Network is the environment for system- level support and management of Red Hat Linux networks. Red Hat.
Vulnerability Analysis Borrowed from the CLICS group.

Vulnerability Analysis Borrowed from the CLICS group.
User Responsibility A “How To” Guide for SecurityCenter.

User Responsibility A “How To” Guide for SecurityCenter.
Maintaining and Updating Windows Server 2008

Maintaining and Updating Windows Server 2008
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.
The Pros and Cons of Collecting Performance Data using Agentless Technology Dima Seliverstov John Tavares Tianxiang Zhang BMC Software, Inc.

The Pros and Cons of Collecting Performance Data using Agentless Technology Dima Seliverstov John Tavares Tianxiang Zhang BMC Software, Inc.
Windows Server 2008 Chapter 11 Last Update 2012.06.07 1.0.0.

Windows Server 2008 Chapter 11 Last Update
11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW Understand the difference between service.

11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW Understand the difference between service.
11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW  Understand the difference between service.

11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW  Understand the difference between service.
SOE and Application Delivery Gwenael Moreau, Abbotsleigh.

SOE and Application Delivery Gwenael Moreau, Abbotsleigh.
Linux Operations and Administration

Linux Operations and Administration
Linux & UNIX Version 5.3 (Power) Version 6.1 (Power) Version 7.1 (Power) AIX Version 11iv2 (PA-RISC/IA64) Version 11iv3 (PA-RISC/IA64) HP-UX Version.

Linux & UNIX Version 5.3 (Power) Version 6.1 (Power) Version 7.1 (Power) AIX Version 11iv2 (PA-RISC/IA64) Version 11iv3 (PA-RISC/IA64) HP-UX Version.
Tim Vander Kooi Systems

Tim Vander Kooi Systems
Microsoft ® System Center Operations Manager 2007 Infrastructure Planning and Design Published: June 2008 Updated: July 2010.

Microsoft ® System Center Operations Manager 2007 Infrastructure Planning and Design Published: June 2008 Updated: July 2010.
Network Management Tool Amy Auburger. 2 Product Overview Made by Ipswitch Affordable alternative to expensive & complicated Network Management Systems.

Network Management Tool Amy Auburger. 2 Product Overview Made by Ipswitch Affordable alternative to expensive & complicated Network Management Systems.
11 MANAGING AND DISTRIBUTING SOFTWARE BY USING GROUP POLICY Chapter 5.

11 MANAGING AND DISTRIBUTING SOFTWARE BY USING GROUP POLICY Chapter 5.
1 Apache. 2 Module - Apache ♦ Overview This module focuses on configuring and customizing Apache web server. Apache is a commonly used Hypertext Transfer.

1 Apache. 2 Module - Apache ♦ Overview This module focuses on configuring and customizing Apache web server. Apache is a commonly used Hypertext Transfer.
FNAL System Patching Design Jack Schmidt, Al Lilianstrom, Andy Romero, Troy Dawson, Connie Sieh (Fermi National Accelerator Laboratory) Introduction FNAL.

FNAL System Patching Design Jack Schmidt, Al Lilianstrom, Andy Romero, Troy Dawson, Connie Sieh (Fermi National Accelerator Laboratory) Introduction FNAL.

Similar presentations

Ads by Google