File(s)
Download Security Update 20 Release Notes (PDF)
Download Security Update 20 for Solaris SPARC
Download Security Update 20 for HP-UX
Download Security Update 20 for AIX RS/6000
Download Security Update 20 Linux platforms
Linux Platforms include:
- Red Hat Linux
- Red Hat Enterprise Server
- SUSE LINUX Standard Server 8
- SUSE LINUX Enterprise Server 8
Download Security Update 20 for Windows NT
Download Security Update 20 for Windows 2000
Download Security Update 20 for Windows XP
Download Security Update 20 for Windows Server 2003
Download Symantec ESM 6.0 SUSE Linux Server 8 Agent Setup
Download Symantec ESM 6.0.1 Windows Server 2003 for 64-Bit Itanium-based Systems Agent Setup
In SU 18, Symantec ESM introduced large file support for AIX 4.33 and higher and Solaris 2.7 and higher. In SU 20, Symantec ESM introduces large file support for HP-UX 11.00 and higher.
NOTE: Do not install on earlier versions of HP-UX, AIX or Solaris.
Download Security Update 20 for HP-UX (large file support 11.00+ only)
Download Security Update 20 for IBM AIX RS/6000 (large file support - 4.33+ only)
Download Security Update 20 for Solaris SPARC (large file support - 2.7+ only)
For these platforms, continue to use Security Update 18:
Download Security Update 18 for Digital UNIX
For these platforms, continue to use Security Update 17:
Download Security Update 17 for Irix
Download Security Update 17 for Sequent
For these platforms, continue to use Security Update 15:
Download Security Update 15 for NetWare
Release Notes fully document all module enhancements. New User's Guides are issued only with new versions of Symantec ESM. Continue using your Security Update 17 User's Guides until the next version of Symantec ESM is released. See Security Update 20 Release Notes (PDF).
Download Security Update 17 User's Guide for UNIX (PDF)
Download Security Update 17 User's Guide for Windows (PDF)
Updating Symantec ESM 6.1 without LiveUpdate
1. Download the UpdatePackage.zip.
2. Create a \Symantec\ESM\update folder on each of your Symantec ESM Managers.
3. Extract the UpdatePackage.zip to the update folder on each of your Symantec ESM Managers.
Note: The package unzips the UpdatePackage.rdl to the ble\su_2000\en folder. UpdatePackage.rdl contains essential content that is used by Symantec Enterprise Reporting.
4. From the Agent machine, install the tpk (tuneup pack).
5. From an ESM console, run a Policy Run on the Agent to ensure that the Agent is updated.
6. This process will take a few minutes because the .rdl must populate the new security update data on the database.
Note: The Agent will not return any new SU 20 data until you run the CreateOptViews.sql script for your database. All scripts are located on the ESM Reporting Installation CDs under \sql\\createESMdb. For more information see Refreshing database views after LiveUpdate in the Symantec Enterprise Security Manager Security Update 20 Release Notes.
Message mapping of security content of 6.1 after LiveUpdate
Message mapping on all databases are not updated when doing a LiveUpdate. To refresh, use the appropriate script for each database platform. You must refresh the database from the actual database server. The scripts are located on the ESM Reporting Installation CDs under \sql\\createESMdb.
For more information see Refreshing database views after LiveUpdate in the Symantec Enterprise Security Manager Security Update 20 Release Notes.
Description
Install Security Update 20 to upgrade Windows, UNIX, and Linux security modules on Symantec ESM 6.x and 5.5 agents. For detailed descriptions of new features and enhancements, download Security Update 20 Release Notes.
Note: In Japanese, SU 20 is compatible with Symantec ESM 5.5.3 Japanese on Windows and Solaris operating systems only.
New ESM agent platforms
SU20 includes support for two new platforms:
- Windows Server 2003 for 64-Bit Itanium-based Systems
- SUSE LINUX Enterprise Server, version 8
Windows, UNIX, and Linux platforms
- File Watch: Enhancement to File Watch template
Windows only platforms
- Active Directory: New check-Security Options
- File Attributes: New check-File Version
- File Attributes: New option-Event Log Info
- File Find (New Module): New check-Windows file content search
- File Find: New option-FileFind keywords
- File Watch: New option-Event Log Info
- Login Parameters: New check-Inactive accounts with unchanged passwords
- Network Integrity: Four new checks-Ipv6 Protocol, Internet Connection Firewall, Internet Connection Sharing, ICS exposed network services
- Network Integrity: New templates-Services.spx and Services.s3s
UNIX and Linux only platforms
- File Attributes: New check-NFS exported files
- File Attributes: New templates-Support for SUSE Enterprise Server 8
- File Watch: New check-Filter changed device ownership/permissions
- Login Parameters: Three new checks-Inactive accounts with expired passwords, Excessive failed su attempts for users, Excessive successful su attempts for users
- Network Integrity: Four new checks-SNMP default community strings, SNMP write access, SNMP v3 encryption, SNMP version
- Network Integrity: Two new options-SNMP config file path, Exported non-secure exclude list
- OS Patches: New Patch templates-Support for SUSE Enterprise Server 8
- Startup Files: New option-Approved Wrappers
Last modified on: Thursday, 21-Oct-04 06:18:37
|
