For a one to one solution, Real Time System Manager (RTSM) provides a powerful set of tools for troubleshooting, asset management, remediation, and others. What functionality have you been missing? RTSM also contains tools that directly utilize Intel vPro (AMT) technology directly, providing unsurpassed functionality in a single web interface.

Introduction

Real Time System Manager (RTSM) provides a robust point to point solution for managing Windows Workstations and Servers. Not only does RTSM provide a convenient single web interface, but it is an agent-less solution that requires no pre-installed software to use. The core functionality is based off WMI, yet RTSM also provides AMT vPro technology tools that enhances the standard WMI tools. With vPro, management gets much easier.

RTSM in a nutshell

Like a tool belt, RTSM provides a console with a myriad of tools to use for managing, troubleshooting, and maintaining managed systems. While robust on its own, add vPro functionality to the tool belt and you greatly enhance what you are able to do, including functionality not available elsewhere.

Functionality

For functionality references, see the below screenshot showing the RTSM Console:

Click to view.

The left-side pane provides the following nodes. The AMT items are bolded, and all nodes contain descriptions of functionality:

Administrative Tasks

1. Hardware Management – This provides power options. Without AMT a system can be powered up using Wake On LAN, or shutdown via WMI. With AMT the following functionality is available:
   1. AMT reliable Power options, including reboot, power off, and power on.
   2. Serial Over LAN (SOL) – this allows non-graphical remote control of a system, including the BIOS, Intel ME, and any text-based interfaces. A checkbox to have the system boot directly into the BIOS in an SOL session is also available.
   3. IDE Redirect (IDER) – This allows a reboot to initiate a boot-up redirection to a local drive, ISO image, or other drive image. Such images can automatically run troubleshooting or maintenance utilities, boot an OS outside of the hard drive for hardware troubleshooting, etc...
   4. Advanced boot settings – On a RTSM initiated reboot or boot, an admin can Lock client keyboard, Disable power buttons, and Bypass computer's startup password.
2. Local Groups – This allows you to view the computer's local security groups.
3. Local Users – This allows you to view the computer's local security users.
4. Manage Printers – You can add/ remove/ edit printers (drivers) for local or network printers.
5. Network Filtering – This is an AMT System Defense utility that allows you to restrict network access. Very useful for systems posing a threat to the Network. Network filtering uses a configuration file to lock down most communication but allow certain communication for management items, such as the ports to the Notification Server.
6. Provisioning Mode – This provides information on what AMT provisioning mode the computer has, and allows certain Provisioning options for a system that has only been partially unprovisioned (Out of Band Management).
7. Rename User or Group – As labeled this allows a security item to be renamed.
8. Reset Password – Ability to reset or change a user's password.
9. Run Application – Allows Remote application initializing.

Configuration

1. Alert Configuration – Allows configuration of SNMP alerts within AMT. Enter in a SNMP Server, SNMP community string (public is default) and now many alerts are available. They include:
   • Link up
   • Password Attack
   • Agent presence
   • Firmware update
   • Circuit breaker (now known as System Defense)
   • Network adapter state tampered
   • CPU #1 missing
   • CPU #1 dead on arrival (subsequent CPUs will also be available as additional alerts)
   • DIMM #1 missing (subsequent DIMMs will also be available as additional alerts)
   • Sensor activations
2. Intel® AMT Settings – Allows management of the AMT Settings set on the local system.

Event Logs

The following default logs are available to view from RTSM. Note that any additional event logs will show up as a node (IE: Intel® AMT Event Log)

1. Application Log
2. Security Log
3. System Log

General Information

1. Agent Watchdogs – This ties to any vPro Agent Watchdogs available.
2. Computer System – Basic computer information including Manufacturer, Product (Model), Serial Number, UUID.
3. Local Time
4. Operating System – Basic OS information including Manufacturer, Build Number, Build Type, Service Pack, System Directory, Serial Number, Status.
5. Page File Settings – Provides the ability to adjust the OS Page File settings including the Initial Size, the Maximum size, and the Name/Path of the file.
6. Proxy Server – IF a Proxy is in use it can be manipulated here.
7. Quick-Fix Engineering – This provides details on what patches and security updates are installed.
8. Registry – Basic Registry information including Maximum size, Current size, Proposed size (this is an ability to manipulate the size of the registry), and Status.
9. Share – Gives information on what Shares are available on the system.
10. Summary – a dashboard interface that contains Basic Information, CPU information, Memory usage, Disk Usage, Network Connectivity, and Anti-Virus.
11. Terminal Server – Displays whether Terminal connections are allowed or not.

Input Devices

1. Keyboard – Provides details about the keyboard hardware.
2. Pointing Device – Hardware details about the mouse.
3. Other devices can be listed here as detected.

Mass Storage

1. Disk Drive – The physical properties of the primary hard drive.
2. Floppy Disk Drive – If available, the details of the Floppy Controller.
3. Logical Disk Drive – This provides the ability to review the details of all logical disks in Windows, including the ability to set or change the Volume name.
4. Media Device – Typically this is the CD or DVDROM drive.

Motherboard, Controllers, and Ports

1. BIOS – Basic information about the BIOS including Manufacturer, Release Date, Serial Number, and Status.
2. Cache Memory – information on the motherboard's memory caches (L1 and L2 typically).
3. IDE Controller – Information on the IDE interfaces.
4. Logical Memory Configuration – Memory configuration including Total Page file Space, Total Virtual Memory, Total Physical Memory, and Available Virtual Memory.
5. Modems
6. Motherboard Devices – Lists the Primary and Secondary BUS types.
7. Parellel Port – Info on the physical port (not what's attached to it, if anything).
8. Physical Memory – Provides data on each memory stick including Form Factor, Memory Type, and Capacity.
9. Printers – List of all Printer drivers installed on the system, and provides the ability to rename the Driver.
10. Processor – Details on the processors, for each instance providing Current / Max Speed (MHz), Manufacturer, and Load Percentage.
11. SCSI Controller – if SCSI device exist they will display Manufacturer, PNP Device ID, and Status of each.
12. Serial Port – Physical details about available Serial Ports (not what's connected to them).
13. SMBIOS – Data on the SMBIOS including System Enclosure, Memory Devices, and Memory Array.
14. Sound Devices – Details on any installed sound drivers.
15. USB Controller – Details on what USB Controllers are installed on the system.
16. USB Hub - Details on what USB Hub is installed on the system.

Networking

1. IP4 Route Table – Considerable details concerning IP ranges with Description, Type, Destination, and Next Hop.
2. Network Adapter – Information on all installed Network Adapters with the following data: Manufacturer, MAC Address, Adapter Type, Service name, and Time of last reset.
3. Network Adapter Configuration – Details on the active adapter including IP Address, DHCP Server, Primary WINS Server, Default IP Gateway, DNS Server search order, IP subnet, and MAC Address.
4. Network Connections – Consider these share mappings.
5. Server Connections
6. Server Sessions
7. Wireless Profile – Details on any wireless profiles available on the system.

Processes and Services

1. Printing Jobs – Any in execution or pending Printing jobs and their details
2. Processes – Like the list shown in Task Manager including the Name and PID.
3. Services – Like the Services MMC with the following details: Name, Status, Startup Type, Log On As, and Description.

Video and Monitor

1. Display Configuration – Provides details on Driver Version, Resolution, and the Current refresh rate.
2. Monitor – Details on in-use monitors including Device ID, Resolution, and Status.

Authentication

The Credentials used to connect to a system via RTSM come from a configuration page found in the Altiris Console under View > Solutions > Real-Time Console Infrastructure > under Configuration > click on Manage Credential Profiles. This node can be used to configure authentication to connect to remote machines. Multiple profiles can be created if the utilized credentials need to be specialized by location or department, etc.

The default profile, managed internally by Altiris and not editable, is called the Runtime Profile. This essentially contains the credentials of the last known good authentication to the remote system. When the Real-Time tab is accessed, if the Runtime Profile doesn't work, a drop-down list will be presented listing the profiles, or the user can enter credentials directly.

• AMT – For vPro the AMT username (usually admin) and set password to connect
• WMI – This will need to be a local administrator or equivalent account on the target system

RTSM Ports

RTSM uses several technologies to manage end point systems. The following diagram shows the core ports used by the application:

Click to view.

• Remote Console > Notification Server > Managed System
• Remote Console < Notification Server < Managed System

Troubleshooting

The main issue with RTSM is connectivity, usually involving authentication issues or firewalls. The following tips are offered as troubleshooting suggestions.

Connectivity

• Change who you are trying to connect as if the connection is unavailable. Connection tool buttons are available at the top of most pages in the Real-Time Console.
• Try using both local accounts (computername\administrator), and Domain accounts if applicable.
• If using WMI, can you connect using microsoft's WMI tool? See the following Altiris KB article for details: https://kb.altiris.com/article.asp?article=38519&p=1
• If the AMT functionality isn't available, try the local Web address to access AMT to ensure it is working properly. The format is: http://ipaddress:16992/ ie http://10.10.10.1:16992/. If you cannot connect, there may be a problem with AMT on that system. Shut down the system, unplug the power, and then plug back in and power to reset AMT.

Firewalls

• Note the Port requirements under the preceding RTSM Ports section. These ports should be open to allow RTSM access to the local system.
• The best test to see if the firewall is denying connection is to disable it temporarily to see if you can then use RTSM on the system.

Conclusion

AMT adds robust tools to RTSM, and RTSM offers a plethora of tools via other methods to create a powerful troubleshooting tool. Try RTSM out today. If you have a Notification Server, you can try it out without having to rollout agents to target systems.