lumension content wizard: eliminating security gaps and automating tedious tasks
TRANSCRIPT
PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Lumension® Content Wizard:
Eliminating Security Gaps and Automating Tedious Tasks
March 6, 2012
•Rene Gonzalez, Product Management
•Andrea Hilwig, Solution Marketing
Introduction to LCW
3PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Business Challenges
• Many vulnerability solutions cover specific software and applications, but don’t expand to custom in-house software detection and remediation.
• PC configuration-related issues continuously increase your IT staff’s workload and introduce new sources of risk every day
• Tedious manual system management tasks consume too much time, effort, and resources
• Organizations are more distributed than ever before, making software distribution and management a major challenge
What is Lumension® Content Wizard (LCW)?
» Extends the capabilities of Lumension®
Patch and Remediation (Add-On) and L.E.M.S.S.
» Automates tedious and time-consuming system and desktop management tasks
» Simplifies policy creation and baseline enforcement through the use of wizards – without requiring additional tools or expertise
» Create and centrally manage power policy settings to reduce IT power consumption
4PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
LCW simplifies the creation and management of custom software patches, scripts, and desktop configurations to improve IT efficiencies and your overall security posture.
5PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Key Features & Benefits
Feature Benefit
Flexible Content Creation and Management
Optimizes IT Efficiencies & Reduces IT Costs and Ensures Entire Network Security
Wizard-based Content Authoring Optimizes IT Resources by Simplifying Patch Creation
Centralized Power Management Reduces Endpoint Energy Costs and Enforces Green Policies
Custom Script Management and Development
Simplifies remediation package development and provides centralized deployment, management and reporting on all custom IT scripts.
Enforcement of Local Security Configuration Policy
Increases the overall security posture
Software Deployment, Upgrades and Removal
Optimizes IT Efficiencies and Improves Software Usage Compliance
Centralized Management of System Desktop Configuration Tasks and Policies
Optimizes IT Resources and Increases Compliance
6PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
LCW Wizards
•Simple wizard-based policy creation and baseline enforcement – without requiring additional tools:
» Patch Creation» Software Installs and Uninstalls » Windows Security Policies » Power Management Policies » NEW! Windows Firewall Policies
Inside The Content
8
Signature
Fingerprint
Package Package
Prerequisite
Content
Signature
Fingerprint Fingerprint
Content Signature Structure
9PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Content Signature Structure
•Signature » Determines Operating System
Applicability • Ex: Windows Vista, 7, Server
2008
•Fingerprint » Determines detection status
• Patched, Not Patched
•Prerequisite » Another Layer of Applicability
• Ex: Detect for Adobe Reader, MS Outlook
.PLF is a compressed archive that contains the Signatures, Fingerprint, Prerequisites, and the Remediation Script
• Package » Remediation
• Fix it or make a change to the system
» Script • Script Engine to execute the patch or
make a change to the system .VBS, .JS, Command or BAT
Demo
Q & A
For more Information…
• Decreased IT complexity• Security-Optimized Infrastructure• Increased ROI for System Center
Go to www.lumension.com > Products > Lumension Content Wizard
• More on Lumension® Content Wizard» On-Demand Demos» Guided Tour» Datasheet» Free 1-on-1 Demonstrations » Free Trial Evaluation
• Contact Lumension Today!» 1.888.725.7828» [email protected]
Appendix
14PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
What’s new in 7.1?
Feature BenefitWindows Firewall Wizard Administrators are now able to detect and define
Windows Firewall Policies for Windows Vista and higher
operating systems.
Role-Based Access Control for
LCW
Content authors can now create and modify content
without requiring SQL SysAdmin fixed server role.
MSU Compatibility Windows Stand-alone Installer (MSU) was first
introduced by Microsoft in Windows Vista and higher.
MSU is a new Package Manager that is designed to
patch the base operating system. 7.1 extends the
existing New Patch Wizard capabilities to support this
new file type so the wizard can easily create the
detection and remediation signatures.
Compiled HTML Help (.chm) Get instant help by pressing <f1> within the LCW User
Interface.
15PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
LCW Best Practices
•Create a custom group for testing your content » Make sure your group represents your environment
• Windows XP / 2003• Windows 7 / Windows 2008
•Assign a custom Agent Policy Set and change the Patch Module communication interval to 5 minutes » Reduces the time to wait for the detection results to appear in the L.E.M.S.S.
Web Console, or Leverage the Listener Port.
•Turn off the following settings in the Tools > Options > Agents Page» DAU should be run after subscription replication
• Improves system performance
» DAU should be run after inventory change • Improves system performance
PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Global Headquarters8660 East Hartford Drive
Suite 300
Scottsdale, AZ 85255
1.888.725.7828