![[Contents]](FIGURE/CONTENT.GIF)
![[Glossary]](FIGURE/GLOSS.GIF)
![[Index]](FIGURE/INDEX.GIF)
![[Back]](FIGURE/FRONT.GIF)
![[Next]](FIGURE/AFTER.GIF)
Job Management Partner 1/Client Security Control Description, User's Guide and Operator's Guide
A client security level is judged based on client inventory information and the client judgment policy.
The security level is judged automatically by the judgment policy whenever inventory information is updated. In addition, the administrator can check security levels at regular intervals by registering a command for judging security levels in Scheduled Tasks in Windows, and can assess the security level of a particular client by specifying the client in the Client Security Management window of AIM.
A security level is judged for each judgment item, and the highest security level within the judgment items becomes the client security level.
The following explains how and when a security level is judged for a client.
- Organization of this section
- (1) When a security level is judged
- (2) How a security level is judged
(1) When a security level is judged
The security level of a client is judged when the following types of judgment triggers occur:
- Automatic judgment when inventory information is updated
When client inventory information is updated, such as when software is installed on a client or a Windows security update is applied, the inventory information is reported from the client to JP1/Software Distribution Manager. The reported inventory information is reflected in the asset management database of AIM, and the client security level is determined from the applicable judgment policy and the updated inventory information.
Note that the setting of whether or not to perform an automatic judgment when inventory information is updated can be changed. By default, Judge is set. To prevent an automatic judgment when inventory information is updated, change this setting in the setup window of JP1/CSC - Manager. For details about this window, see 5.4.3 Setting up JP1/CSC - Manager.
- Periodic judgment
The administrator registers the command for determining the security level (cscjudge) as a task in Scheduled Tasks in Windows.
A security level can be judged regularly when this task is enabled. For details about how to register a task in Scheduled Tasks, see 5.9 Procedures for setting a task in Scheduled Tasks.
- Judgment by an administrator
Using the Client Security Management window of AIM, the administrator selects a client to judge its security level. For details about how to judge the security level for a specified client, see 8.4 Judging a client security level.
- Reference note
- In the JP1/ CSC - Manager setup window, you can set whether to skip security level judgment for clients whose inventory information has not changed since the last time their security level was judged.
(2) How a security level is judged
In a judgment policy, the following security levels are judged in order, to determine the security level of the client.
- Security level for each judgment condition
The security level is judged for the judgment conditions in each judgment item.
- Security level for each judgment item
Of the security levels for each judgment condition, the highest security level becomes that of the judgment item.
- Client security level
Of the security levels of all judgment items to be judged, the highest security level becomes that of the client.
The security levels, in descending order, are Danger, Warning, Caution, and Safe.
The following figure shows an example of how a security level is judged.
Figure 2-8 Example of how a security level is judged
All Rights Reserved. Copyright (C) 2009, 2011, Hitachi, Ltd.
Copyright, patent, trademark, and other intellectual property rights related to the "TMEng.dll" file are owned exclusively by Trend Micro Incorporated
![[Figure]](FIGURE/ZU010700.GIF)