SecurityExpressions
aida azhari
|
November 18th, 2009
Hi All,
I' not sure whether here are the right place to post regarding above title
I got the problem when I want to upgrade AV client through ClientRemote Install.
I hv admin right in my company and was using domain admin account. When I tried to push the client, I was asked to provide username and password. I was put domain admin password but got the error which avoid me from completing the task.
1 comments
Rickbr
|
October 4th, 2009
Friends of the forum,
How do I know that this one machine with the agent of "security expression"?
What procedure should I do to open the console when the machine is displayed automatically.
Waiting in the wings.
Anyone have any guide walkthrough the installation and configuration of this product?
Rickbr
1 comments
Rickbr
|
October 1st, 2009
Gentlemen,
I need help for the module "Security Expression". I installed the product, but do not know use it.
I installed some agents in xp machines, but they do not appear on the console in my domain. I do a scan on my "range" and I think almost all the machines domino.
The question is: how do I recognize the console machines with agents?
Thank you all.
Rick.
1 comments
kanatosman
|
September 27th, 2009
Normal
0
21
false
false
false
TR
X-NONE
X-NONE
MicrosoftInternetExplorer4
/* Style Definitions */
table.MsoNormalTable
{mso-style-name:"Normal Tablo";
mso-tstyle-rowband-size:0;
mso-tstyle-colband-size:0;
mso-style-noshow:yes;
mso-style-priority:99;
mso-style-qformat:yes;
mso-style-parent:"";
mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
mso-para-margin-top:0cm;
mso-para-margin-right:0cm;
mso-para-margin-bottom:10.0pt;
mso-para-margin-left:0cm;
line-height:115%;
mso-pagination:widow-orphan;
font-size:11.0pt;
font-family:"Calibri","sans-serif";
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:"Times New Roman";
mso-fareast-theme-font:minor-fareast;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;}
We have 4 Symantec Security Gateway 5000 unfortunately faced a problem; this problem is fall short some server or doesn’t work some programs (gives an error login problem). After the problem...
0 comments
Jeff Vandervoort
|
September 13th, 2009
Prelude
Initially, I wrote this about Backup Exec, because that's where I ran into this problem. I'm also a SAV & SEP veteran but don't recall seeing this heinous language in their KB articles. So maybe it's a Veritas thing. But, whatever...
...then it occurred to me that while BE may (or may not) be the only Symantec enterprise product to which the symptom applies, the cure is universal. Because it bridges a huge gap between the goals of Symantec Sales, Support, Connect, Knowledge Base, and Product Managers. So I've taken the unusual-and-hopefully-not-presumptuous step of tagging it to all available products. It is global.
That kinda makes it Ideas spam, I know. Never done it before; probably never will again. Hope you can forgive me!
Don Quixote Battles Symantec
Two KB articles I've browsed recently contain variations on this boilerplate (emphasis mine):
"There are currently no plans to address this issue by way of a patch or hotfix in the...
11.x, 12.x, 8.x, Altiris Client Management Suite, Security, 10.x, 11.x, 7.x and Earlier, Altiris Deployment Solution, Vision User Conference, 10.x and Earlier, 9.x and Earlier, Altiris IT Asset Management, Storage Management, Altiris Notification Server, Backup and Archiving, Altiris Recovery Solution, Clustering and Replication, Altiris Server Management Suite, Endpoint Management and Virtualization, Inside Symantec, Brightmail Gateway, Cluster Server One, Control Compliance Suite, Critical System Protection, Data Loss Prevention (Vontu), Dell Management Products, Endpoint Encryption, Endpoint Protection (AntiVirus), Endpoint Protection Small Business, Enterprise Security Manager, General Symantec, Ghost Solution Suite, Helpdesk Solution, Hosted Mail Security, HP Management Products, IM Manager, Mail Security for Exchange/Domino, Mobile Security, Network Access Control, Online Backup, Online Storage for Backup Exec, pcAnywhere, Replication Exec, Security Information Manager, SecurityExpressions, ServiceDesk, SFHA Management (SFM, VIAS, VOS), Storage Foundation for Windows, Symantec Connect, Symantec Vision, Volume Replicator, Web Gateway, Wise Application Packaging, Wise Installation Development, Workflow Solution, Workspace Corporate, Workspace Remote, Workspace Streaming, Workspace Virtualization
15 comments
Alexis Papadopoulos
|
July 20th, 2009
Hello again,
I've been doing some testing by using agents as proxies. Although the work gets done, I have been facing some issues with latency, etc. I therefore decided to sniff the network traffic and here's what I found.
I have two machines, one client C and a server S. Although both are accessible from the machine hosting SecurityExpressions, I want the audit of C to be proxied through S (which already has the agent installed and properly configured). I was quite amazed to see that the SecurityExpressions console, despite proxy having been chosen in the preferences of C client, tried to contact (either ICMP ping or Netbios traffic!) the C machine. Why is that so, I mean I explicitly set it to be contacted only through S? It seems that eventually the proxy is used for the actual auditing, but nevertheless (useless) traffic is exchanged between console and C.
The documentation presents the proxy solution as a way to bypass firewall limitations. If firewall are (properly) set, this...
0 comments
Srini_Ris
|
July 6th, 2009
Client background:
This experience of mine goes way back in early days of my career where I was part of server management group 1997-98. This includes server, desktop, tools, database, backup management. To put it in IT terminology Jack of all Master of one (Netbackup Architect) … Now I now the terminology is changing though, where in you in need to be Jack of all but at least you have to be master of two to three products
This is the banking environment experience that I am referring to, where I started my career. Since we being one of the private techno savvy bank, with centralized banking system, was essential for us to have the high computing devices to cater to the banking connectivity of 300+ branches with those no of branch servers apart from the centralized banking servers of high computing and technology. I know those servers were too the tune of Compaq EVA Series, Compaq Proliant Servers, IBM Series, Sun Fire computing and the list would go one.. These are the...
0 comments
TomSchroeder
|
June 26th, 2009
Gartner Information Security Summit, Sept 21-22, London, Royal Lancaster Hotel, UK
Visit Symantec - the Premier Sponsor at Gartner Information Security Summit and and learn how you can protect and manage today’s ever-growing variety of endpoints and systems—smartphones, laptops, mail servers, gateways, and more
The Gartner Information Security Summit will give you the information you need to create a layered approach combining risk management and compliance, secure business enablement and infrastructure protection. Hear the latest analysis revealing market trends, opportunities and threats to you and your organization.
Topics: Business Continuity Management, Customer Security and Privacy, Identity and Access Management, Infrastructure Protection, Managed Security Services, Mobile Security, Securing the Workplace, Security Management, Security Risk Management, Security Software
For further questions please contact Ilka Eimkemeier, EMEA Events (ilka_eimkemeier@symantec.com...
Agents, Altiris Client Management Suite, Emerging Threats, Security, Altiris Deployment Solution, Evolution of Security, Altiris IT Asset Management, Internet Security Threat Report, Altiris Notification Server, IT Risk Management, Altiris Recovery Solution, Drivers, LiveUpdate, Altiris Server Management Suite, Endpoint Management and Virtualization, Malicious Code, Inside Symantec, Online Fraud, Compatibility, Security Risks, Configuring, Spam, Vulnerabilities & Exploits, MS Exchange, Brightmail Gateway, VMware, Windows, Control Compliance Suite, Critical System Protection, Data Loss Prevention (Vontu), Reporting, Endpoint Protection (AntiVirus), Tip/How to, Endpoint Protection Small Business, Enterprise Security Manager, General Symantec, Hosted Mail Security, Mobile Security, Network Access Control, Security Information Manager, SecurityExpressions, Workspace Virtualization
2 comments
breas
|
June 4th, 2009
This is actually called the 1326 error if we want to get technically correct. The 1326 error is a Microsoft error. In this case, the credentials being used were a local account, not a domain account. SecurityExpressions assumes domain credentials unless the local account is specified. To specify the local credentials, use the system name or IP before the username when entering the credentials.
For example, if the username is jsmith and the system is testsystem then to use the local account the credentials would be entered as testsystem\jsmith.
Getting access denied when I run a UNIX policy file
First, SecurityExpressions will not automatically change anything on the target system—you must select the "fix" function to change a setting.
You do not have to change the group—you should be using the AuditOnlyGroup so that you can run scripts on UNIX systems. The group used has nothing to do with permissions on directories or files.
What happens is the agent software...
0 comments
mranum
|
April 13th, 2009
My customers often ask me how to configure SES so that it can run in a NAC environment. I use Cisco, so this article will be Cisco-biased, but you can follow my instructions the same way with your hardware and it should be fine. So basically, SES acts as the external posture validation server in the Cisco NAC environment.
Also, all paths I use are for default installations, so make sure to check that if you installed differently.
Below is a basic configuration example for the components involved with Cisco NAC. These components are the Cisco Network access Device, Cisco ACS Server and the SES. Again, as I said, this example uses a Cisco router. Cisco switches may also be deployed as the network access device.
Basic Network Access Device Configuration: (Router)
aaa new-model
aaa authentication eou default group radius
ip admission name NSITE_EAPOUDP_po eapoudp inactivity-time 60
eou allow clientless
eou...
0 comments
GuidoSanchidrian
|
March 19th, 2009
In the last couple of weeks, I get many requests regarding "EuroSOX" - the nickname for the 8th EU Company Law Directive which has become EU law last summer. The official name is "Directive 84/253/EEC", called the 8th Company Law Directive, repealed by 2006/43/EC, and it is very tight to the 4th and 7th Company Law Directive.
The EuroSOX naming itself is quite confusing because there is very less similarity with US Sabanes-Oxley (SOX) than the nickname try to delude.
In the U.S., the big scandals of Enron and MCI caused a lot of publicity and triggered the immediate creation of the SOX legislation and its nationwide adoption. In contrast, the legislative process in the European Union takes time. While the EU Company Law Directives from 2006 had implementation deadlines for the member states (June and September 2008), the time to go through the legislative process varies from member state to member state. I.e., in Germany the directive is adopted in the new law...
Security, IT Risk Management, Best Practice, Security Risks, Control Compliance Suite, Enterprise Security Manager, Security Information Manager, SecurityExpressions
0 comments
sergio.arias@rr...
|
March 5th, 2009
Hi all
Somebody has worked with SSIM agent installed on windows 2003 Cluster?
How it works?
Thanks
0 comments
jroach21
|
October 29th, 2008
Could someone help me with understanding the reports that are printed out after an audit is run? At the bottom fo the report it has a heading that says "Machine" then a number next to that. The next line states the hardware that was audited and a number next to that. Depending on how the report was run, there is a line with a "Grand Total:" at the bottom. What do these numbers mean?
1 comments
erikw
|
October 2nd, 2008
Are you really secure? What does a construction helmet, gas mask, taser or stop sign have to do with Altiris?
Watch the movie, and you will learn an important lesson in safety.
http://www.youtube.com/watch?v=YQ_ZxQETHcw
Regards
Erik Westhovens
0 comments
Alexis Papadopoulos
|
October 1st, 2008
Hello (again :),
as I said in my previous post, I just upgraded SecurityExpressions to the latest version 4.1.1 (from 4.1). As I read in both the documentation and all release notes, the agent will be upgraded automatically upon the next audit.
This does not seem to work for me though. I've tried auditing with administrator credentials, with windows networking only, agent only (privileged or not)... The agent is not upgraded.
Am I doing something wrong ?
3 comments
Alexis Papadopoulos
|
September 29th, 2008
Hello,
I've just created a new sif file with a single rule (filenotexist). I want the fix action to result in the execution of a small application that is located on the security expression server, therefore I set the REMOTE parameter to NO.
This doesn't work, the application executes remotely whatever I try (I even tried to put everything in a bat script). I replaced the application with notepad and it opened up on the remote host...
Is this a bug or am I doing something wrong here ?
Btw, I updated to 4.1.1 just to be sure that it's not a known issue that has already been fixed.
Thanks in advance for your help
2 comments
Philip Sinquefield
|
August 27th, 2008
Installing Security Expressions 4.0 on Altiris NS Server 6 sp3-r8
when configuring the general settings under the Audit and compliance solution
Entered security expressions server name as the https://FQDN/seserver
i receive the following error
"The Connection was successful but a web service exception occurred: System.Web.Services.Protocols.SoapException: The Audit Web Service is not enabled, please contact your web IT administrator at Altiris.SecurityExpressions.WebServices.SEWSAudit.SecuirtyExpressionsAudit.GetVersion()
Any thoughts?
1 comments
jroach21
|
August 12th, 2008
Just a quick tip...
I tried using Security Expressions (SE) on our UNIX boxes without installing the agent. It doesn't work becuase we have root locked to the console. After trying SUDO and other things we realized that the only way around this would be to install the agent.
1 comments
mcsereed
|
July 24th, 2008
We are currently using Safe guard easy for all of our HD encryption for IBM laptops. We have alot of remote workstations that we can deploy this encryption software and have the drives encrypt. The issue we are having.... Is there a way anyone has found out in the NS or DS to confirm the drive has encrypted. We were given a registry key to look for but was not sure if the NS captures this. Does anyone know where in the database registry keys are stored if it is captured?
Any help or direction will be appreciated.
2 comments
shaguf
|
July 23rd, 2008
The era of virtualisation is now fully upon the technology industry. For businesses to thrive, adapting to the changing needs of their customers is paramount. For businesses to win, they must deliver the right solutions at the right time, and offer propositions that are more attractive to their customers than a competing solution. One word describes the nature of this kind of business environment: dynamic. The ability of business and the people that constitute it is not just to survive, but thrive in the face of these dynamic demands; and that is a direct function of the capability and fitness of the infrastructure of business systems that underpin and support their work. Business Technology Summit 2008, held 22-26 September 2008 in Mumbai and Bangalore, offers a program, replete with technical and business insights that guarantee you the keys to a flexible and dynamic IT.
The Virtualisation track at BT Summit 2008 covers Storage Virtualisation, Server Virtualisation, Desktop...
0 comments
achayra78
|
July 17th, 2008
If I try to clone and create additional tasks and packages, the seem to connect and update the existing task and package.
For example – see attached
If I clone the package (with blue icon), the clone will appear but when I modify it and click apply, it also updates the original.
Same happens when cloning the task, any changes made to the clone automatically updates the original within the folder.
I am not sure if there is a way of duplicating this folder since we need 8 folders in total for production deployment.
Questions:
Is there a way of cloning the folder so we can use and configure the package and tasks for total of 8
Is this a bug or a workaround available?
If we use Software Delivery task, will it still consume a Software Delivery license?
1 comments
mkessler
|
July 13th, 2008
Hi all,
I have just one small question to ask. I'm looking for a solution that can block USB, Wifi, CD rom, and I have found the Symantec EndPoint Security solution that look very nice and full compare to other solutions.
But can you tell me if the EndPoint Security solution can be configured based on Users / Groups and not only on Computer Collections.
I'm looking for a solution based on users and groups, not only on Computers
Thanks for your help and futher replies
5 comments
elmelvin
|
May 29th, 2008
Hi ppl.
I'm completly new on the altiris plataform, and my Information Security Administrator isn't very intelligent, and we have a little Issue with a part of the Endpoint Security Solution.
The all suite of Altiris is working well, but when we try to Install, Remove or Repair Office 2K, 2003 or another version of MS Office the process of STengine.exe starts to consume 99% of the processor. This happens on Windows 2K or Windows XP Professional, with SP3 or SP2.
I need to know if there's some bug with this process, becasue the Altiris Support on Argentina doesn't have any case similar and they can't help us.
If need some information about plataforms or software or configuration, just tell me.
Thnx!!!
Amadeo.
-_-_-_
UPDATE:
It was fixed. Removing all Altiris Agents and reinstalling it.
0 comments
tnielsen91 2
|
April 10th, 2008
I have got the SEP Integration working. Except for when I go into the configuration is just shows "BASIC DATA INPUT" at the top of the screen. I am not allowed to enter anything... ideas?
1 comments
mcsereed
|
March 28th, 2008
I am looking for anyone that is currently using a solution for managing the Windows Firewall. I would like to know how you manage it and a direction to get that information. We are looking to manage remote firewalls and be able to make changes. Any help or direction will be appreciated.
If there is another firewall used and is manageable, please post that info.
6 comments