Job Management Partner 1/Client Security Control Description, User's Guide and Operator's Guide

5.4.3 Setting up JP1/CSC - Manager

When automatic setup is selected during installation of JP1/CSC - Manager, the installer automatically sets up JP1/CSC - Manager. When automatic setup is not selected, an administrator must execute the cscsetup command to set up JP1/CSC - Manager. To change the option specified during setup, use the Client Security Control - Manager Setup dialog box.

The Client Security Control - Manager Setup dialog box has three panes, which can be selected by clicking the corresponding tab.

The following figure shows the Client Security Control - Manager Setup dialog box.

Figure 5-2 Client Security Control - Manager Setup dialog box

The following table describes the contents set in the Client Security Control - Manager Setup dialog box.

Table 5-1 Contents set in the Client Security Control - Manager Setup dialog box

Tab selected Description

Basic Settings tab This tab is used to display settings information for JP1/CSC - Manager environments already set up, and to change environment settings information.

Agent tab This tab is used to display the IP address and port number of the JP1/CSC - Agent that connects to JP1/CSC - Manager.
You can also add and delete IP addresses and port numbers for JP1/CSC - Agent.

Remote Option tab This tab is used to display the IP address of the JP1/CSC - Manager Remote Option that connects to JP1/CSC - Manager.
You can also add and delete IP addresses for the JP1/CSC - Manager Remote Option.

Automatic updates for anti-virus products tab This tab is used to display the setting information required to link with an anti-virus product installed on a client in order to enable the automatic updating of judgment policies for anti-virus products.
You can also add and delete a client on which an anti-virus product to be linked is installed. You can also set a period of time following which the update information for the anti-virus product is applied to the judgment policies.

To display the Client Security Control - Manager Setup dialog box and edit the setting items:

Click the Start button, and then choose Programs, then Client Security Control, and Manager setup.
The dialog box is displayed.

Click the tabs to set the item values.
When an item is selected, a box is displayed below the item list, in which you can either enter a value or string, or select a value from the drop-down list.

Click the OK button.
The specified contents are set for the JP1/CSC - Manager environment. The Client Security Control - Manager Setup dialog box closes. To close the dialog box without performing environment settings, click the Cancel button.

Organization of this subsection

(1) Using the Basic Settings page

(2) Using the Agent page

(3) Using the Remote Option page

(4) Using the Automatic updates for anti-virus products page

Tab selected	Description
Basic Settings tab	This tab is used to display settings information for JP1/CSC - Manager environments already set up, and to change environment settings information.
Agent tab	This tab is used to display the IP address and port number of the JP1/CSC - Agent that connects to JP1/CSC - Manager. You can also add and delete IP addresses and port numbers for JP1/CSC - Agent.
Remote Option tab	This tab is used to display the IP address of the JP1/CSC - Manager Remote Option that connects to JP1/CSC - Manager. You can also add and delete IP addresses for the JP1/CSC - Manager Remote Option.
Automatic updates for anti-virus products tab	This tab is used to display the setting information required to link with an anti-virus product installed on a client in order to enable the automatic updating of judgment policies for anti-virus products. You can also add and delete a client on which an anti-virus product to be linked is installed. You can also set a period of time following which the update information for the anti-virus product is applied to the judgment policies.

(1) Using the Basic Settings page

Use the Basic Settings page to display and change the environment settings information for JP1/CSC - Manager.

The following figure shows the Basic Settings page.

Figure 5-3 Basic Settings page

The following table describes and lists the items that can be checked and set in the Basic Settings page.

Table 5-2 Items that can be set and checked in the Basic Settings page

Item Description Specifiable values Default for initial environment setup

Manager communication environment information Port number for receiving requests The port number of the JP1/CSC - Manager used for request reception. Enter the same port number as specified in Port number for Manager communication environment information, in the Client Security Control - Agent Setup dialog box. 1024 to 65535 22340

Port number for receiving automatic policy update requests The port number of the JP1/CSC - Manager used for request reception when the automatic policy update feature is enabled.
Enter the same port number as specified for Port number under Manager communication environment information in the Client Security Control - Manager Remote Option Setup dialog box. 1024 to 65535 22351

Security level judgment information At addition of asset information Specify whether or not to judge the security level when a new client is added to the network. Judge / Do not Judge Judge

At update of asset information Specify whether or not to judge the security level when client inventory information is updated. Judge / Do not Judge Judge

Method for counting the number of consecutive days and times Specify the method of counting the number of consecutive days and times for the security level.

Security level set to same as the previous level
The count is increased when the security level is the same as the previous judgment, and cleared when it is different.

Security level set to higher than the previous level
The count is increased when the security level is the same or higher than the previous judgment, and cleared when it is lower.

Security level set to same as the previous level / Security level set to higher than the previous level Security level set to same as the previous level

Customize judgment results (security updates)^#1 Specify the security level to be used when, as a result of the security update judgment, the specified patch is not found in the list of installed software or in the unapplied patch information. Unknown / Safe / Security level set for the judgment policy Security level set for the judgment policy

Customize judgment results (anti-virus products) Specify the security level to be used for anti-virus product judgment when a product other than the specified anti-virus product is installed. Safe / Caution / Warning / Danger / Not applicable Not applicable

Action execution Specify whether or not to skip implementation of the action as soon as the security level has been judged. Skip / Do not skip Do not skip

Perform judgment if asset information is not updated Specify whether or not to skip security level judgment for assets whose asset information has not changed since the last time their security level was judged.
Actions are not implemented for assets for which judgment is skipped. Skip / Do not skip Do not skip

Result notification information Notification of security level judgment results Specify whether or not to notify JP1/IM of security level judgment results. Notify / Do not notify Do not notify

Notification of action execution results Specify whether or not to notify JP1/IM of action implementation results. Notify / Do not notify Do not notify

IM linkage information IM linkage^#2 Specify whether or not to notify JP1/IM of JP1/CSC messages. Notify / Do not notify Do not notify

History information Number of history preservation generations^#3 Specify the maximum number of generations of security level judgment history and action history to save in the database. 1 to 99 20

Log information Log file size Specify the maximum size (in kilobytes) of the JP1/CSC - Manager log files. 1 to 2097151 1024

Number of log files Specify the maximum number of JP1/CSC - Manager log files to be created. 1 to 999 10

Cluster information^#3 Cluster environment Specify whether or not to run JP1/CSC - Manager in a cluster environment. Use / Do not use Do not use

Logical IP address Specify a logical IP address to use in the cluster environment. IPv4 format (xxx.xxx.xxx.xxx) N/A

Logical host Specify the logical host name for JP1/IM linkage, as used in the cluster environment. Host name N/A

Shared disk Specify the shared disk name used in the cluster environment. Full path N/A

Software Distribution information Software Distribution SubManager^#4 Specify whether to judge the security level and implement actions for servers on which Software Distribution SubManager is installed. Do not subject to judgment or action for the security level / Subject to judgment and action for the security level Do not subject to judgment or action for the security level

Software Distribution manager (relay manager) Specify whether to judge the security level and implement actions for servers on which Software Distribution Manager (relay manager) is installed. Do not subject to judgment or action for the security level / Subject to judgment and action for the security level Do not subject to judgment or action for the security level

Asset deletion information Automatic refusal of network connection^#5 Specify whether to automatically deny a client's network connections when the client is removed from the client security control system. Execute / Do not execute Execute^#6

Policy update information Anti-Virus products Specify whether to automatically update anti-virus product judgment policies (the virus definition file and engine version) by linking with an anti-virus product that is compatible with automatic judgment policy updating. Update automatically / Do not update automatically Do not update automatically

Message notification information "Safe" or "Not applicable" results Specify whether or not to include Safe and Not applicable in the judgment results displayed in the message. Include / Do not include Include

Display position of the judgment results Specify whether to display PC judgment results at the beginning or end of the message. Display at the end of the message / Display at the beginning of the message Display at the end of the message

Notification method Specify the message notification method to be used for security level judgment.

Synchronous method
The existing notification method. When message notification processing is completed, another request is executed.

Asynchronous method
Message notification processing and another request are executed concurrently.

Synchronous method / Asynchronous method Synchronous method

Audit log information Audit log Specify whether or not to output audit logs. Output / Do not output Do not output

Statistics information User definition judgment Specify whether or not to include user-defined judgment items when compiling statistics. Do not include in the "Type of total" pulldown menu / Include in the "Type of total" pulldown menu Do not include in the "Type of total" pulldown menu

Mail notification information Email sender address^#8 Specify the email sender address to be used for email notification. Use no more than 64 bytes. Email address manager@csc.message

N/A: Not applicable

#1

The Customize judgment results (security updates) setting is valid when the following conditions are satisfied.

In the Edit Judgment Policy (Security Update) window, Specify security updates is selected for the judgment condition, and patch information is defined.

The patch information specified for installed software information is not found.

The client is linked to MBSA or WUA.

The patch information specified as security update information not applied to the client (unapplied patch information) is not found.

#2

When Do not notify is set for IM linkage in the IM linkage information, JP1/IM notification is not performed even when Notify is for Notification of security level judgment results and Notification of action execution results. To report results to JP1/IM, be sure to set IM linkage to Notify. Also, when selecting the Notify IM check box in the Edit Action Policy window, be sure to set IM linkage to Notify.

#3

The set value cannot be changed when the JP1/CSC - Manager service is running. To change the set value, first stop the JP1/CSC - Manager service.

#4

Servers on which JP1/Software Distribution Client (relay system) is installed are subject to judgment and execution of an action for the security level even if Do not subject to judgment or action for the security level is set. If you do not want these servers to be subject to judgment and execution of an action, you need to disable security management. For details about how to disable security management, see 8.5 Enabling and disabling security management for a client.

#5

This function can only be used on clients with JP1/Software Distribution installed.

#6

If you upgrade from version 07-51 of JP1/CSC - Manager, the default will be Do not execute when you set up the initial environment.

#7

If you do not specify anything for Email sender address, the default email address (manager@csc.message) is set.

Reference note

The log information contains information about startup and termination of JP1/CSC, as well as security level judgment results and action implementation results.

If you specify Execute for the Automatic refusal of network connection item, the administrator is not required to deny the client connection to the network before the client is removed. Note that you cannot use JP1/CSC to deny a client connection to the network once its asset information has been deleted from AIM. In this case you must change the settings directly from the network control product. For details, see 14. Operating a Quarantine System.

If you specify Asynchronous method for Notification method for Message notification information, you can implement important actions such as network control and judge the security level irrespective of the status of message notification processing.

Item	Description	Specifiable values	Default for initial environment setup
Manager communication environment information	Port number for receiving requests	The port number of the JP1/CSC - Manager used for request reception. Enter the same port number as specified in Port number for Manager communication environment information, in the Client Security Control - Agent Setup dialog box.	1024 to 65535	22340
Port number for receiving automatic policy update requests	The port number of the JP1/CSC - Manager used for request reception when the automatic policy update feature is enabled. Enter the same port number as specified for Port number under Manager communication environment information in the Client Security Control - Manager Remote Option Setup dialog box.	1024 to 65535	22351
Security level judgment information	At addition of asset information	Specify whether or not to judge the security level when a new client is added to the network.	Judge / Do not Judge	Judge
At update of asset information	Specify whether or not to judge the security level when client inventory information is updated.	Judge / Do not Judge	Judge
Method for counting the number of consecutive days and times	Specify the method of counting the number of consecutive days and times for the security level. Security level set to same as the previous level The count is increased when the security level is the same as the previous judgment, and cleared when it is different. Security level set to higher than the previous level The count is increased when the security level is the same or higher than the previous judgment, and cleared when it is lower.	Security level set to same as the previous level / Security level set to higher than the previous level	Security level set to same as the previous level
Customize judgment results (security updates)^#1	Specify the security level to be used when, as a result of the security update judgment, the specified patch is not found in the list of installed software or in the unapplied patch information.	Unknown / Safe / Security level set for the judgment policy	Security level set for the judgment policy
Customize judgment results (anti-virus products)	Specify the security level to be used for anti-virus product judgment when a product other than the specified anti-virus product is installed.	Safe / Caution / Warning / Danger / Not applicable	Not applicable
Action execution	Specify whether or not to skip implementation of the action as soon as the security level has been judged.	Skip / Do not skip	Do not skip
Perform judgment if asset information is not updated	Specify whether or not to skip security level judgment for assets whose asset information has not changed since the last time their security level was judged. Actions are not implemented for assets for which judgment is skipped.	Skip / Do not skip	Do not skip
Result notification information	Notification of security level judgment results	Specify whether or not to notify JP1/IM of security level judgment results.	Notify / Do not notify	Do not notify
Notification of action execution results	Specify whether or not to notify JP1/IM of action implementation results.	Notify / Do not notify	Do not notify
IM linkage information	IM linkage^#2	Specify whether or not to notify JP1/IM of JP1/CSC messages.	Notify / Do not notify	Do not notify
History information	Number of history preservation generations^#3	Specify the maximum number of generations of security level judgment history and action history to save in the database.	1 to 99	20
Log information	Log file size	Specify the maximum size (in kilobytes) of the JP1/CSC - Manager log files.	1 to 2097151	1024
Number of log files	Specify the maximum number of JP1/CSC - Manager log files to be created.	1 to 999	10
Cluster information^#3	Cluster environment	Specify whether or not to run JP1/CSC - Manager in a cluster environment.	Use / Do not use	Do not use
Logical IP address	Specify a logical IP address to use in the cluster environment.	IPv4 format (xxx.xxx.xxx.xxx)	N/A
Logical host	Specify the logical host name for JP1/IM linkage, as used in the cluster environment.	Host name	N/A
Shared disk	Specify the shared disk name used in the cluster environment.	Full path	N/A
Software Distribution information	Software Distribution SubManager^#4	Specify whether to judge the security level and implement actions for servers on which Software Distribution SubManager is installed.	Do not subject to judgment or action for the security level / Subject to judgment and action for the security level	Do not subject to judgment or action for the security level
Software Distribution manager (relay manager)	Specify whether to judge the security level and implement actions for servers on which Software Distribution Manager (relay manager) is installed.	Do not subject to judgment or action for the security level / Subject to judgment and action for the security level	Do not subject to judgment or action for the security level
Asset deletion information	Automatic refusal of network connection^#5	Specify whether to automatically deny a client's network connections when the client is removed from the client security control system.	Execute / Do not execute	Execute^#6
Policy update information	Anti-Virus products	Specify whether to automatically update anti-virus product judgment policies (the virus definition file and engine version) by linking with an anti-virus product that is compatible with automatic judgment policy updating.	Update automatically / Do not update automatically	Do not update automatically
Message notification information	"Safe" or "Not applicable" results	Specify whether or not to include Safe and Not applicable in the judgment results displayed in the message.	Include / Do not include	Include
Display position of the judgment results	Specify whether to display PC judgment results at the beginning or end of the message.	Display at the end of the message / Display at the beginning of the message	Display at the end of the message
Notification method	Specify the message notification method to be used for security level judgment. Synchronous method The existing notification method. When message notification processing is completed, another request is executed. Asynchronous method Message notification processing and another request are executed concurrently.	Synchronous method / Asynchronous method	Synchronous method
Audit log information	Audit log	Specify whether or not to output audit logs.	Output / Do not output	Do not output
Statistics information	User definition judgment	Specify whether or not to include user-defined judgment items when compiling statistics.	Do not include in the "Type of total" pulldown menu / Include in the "Type of total" pulldown menu	Do not include in the "Type of total" pulldown menu
Mail notification information	Email sender address^#8	Specify the email sender address to be used for email notification. Use no more than 64 bytes.	Email address	manager@csc.message

(2) Using the Agent page

From the Agent page, you can add or delete information about the IP addresses and port numbers for JP1/CSC - Agent.

The following figure shows the Agent page.

Figure 5-4 Agent page

(a) Adding agent information

To add information about JP1/CSC - Agent, click the Add button on the Agent page to display the Add Agent Information window, and use the window to register the IP address and port number of a JP1/CSC - Agent.

The following figure shows the Add Agent Information window.

Figure 5-5 Add Agent Information window

To register the IP address and port number of a JP1/CSC - Agent in the Add Agent Information window:

Enter an IP address.
Specify the IP address of the JP1/CSC - Agent to be added, in IPv4 format (xxx.xxx.xxx.xxx).

Enter a port number.
Specify the port number of the JP1/CSC - Agent to be added. 22345 is set by default, and the specifiable range is 1024 to 65535. Enter the same port number as that specified for Port number in Agent communication environment information, in the Client Security Control - Agent Setup dialog box.

Click the OK button.
The IP address and port number are added, and the Add Agent Information window closes. To cancel addition of JP1/CSC - Agent information, click the Cancel button.

(b) Deleting agent information

To delete the IP address and port number of a JP1/CSC - Agent, from the Agent page, select the IP address and port number you want to delete, and then click Delete.

(3) Using the Remote Option page

Use the Remote Option page to add or delete IP addresses used by JP1/CSC - Manager Remote Option to connect to JP1/CSC - Manager.

The following figure shows the Remote Option page.

Figure 5-6 Remote Option page

(a) Adding remote option information

To add an IP address of JP1/CSC - Manager Remote Option, click the Add button on the Remote Option page. In the displayed Add Remote Option Information window, add the IP address of the JP1/CSC - Manager Remote Option.

The following figure shows the Add Remote Option Information window.

Figure 5-7 Add Remote Option Information window

To register an IP address of JP1/CSC - Manager Remote Option in the Add Remote Option Information window:

Enter an IP address.
Specify the IP address of the JP1/CSC - Manager Remote Option to be added, in IPv4 format (xxx.xxx.xxx.xxx).

Click the OK button.
The IP address is added, and the Add Remote Option Information window closes. To close the window without adding information about JP1/CSC - Manager Remote Option, click Cancel.

(b) Deleting remote option information

To delete information about JP1/CSC - Manager Remote Option, select the IP address you want to delete in the Remote Option page, and then click Delete.

We recommend that you delete the relevant IP address in the following cases.

The method of automatically updating judgment policies for anti-virus products by linkage with a remote management server has changed to the method that links with a client.

The network control command (cscnetctrl) is not used.

(4) Using the Automatic updates for anti-virus products page

Use the Automatic updates for anti-virus products page to add or delete clients that have anti-virus products that link with automatic judgment policy updating for anti-virus products. You can also set the period of time following which the update information for the anti-virus products is applied to the judgment policies.

The following figure shows the Automatic updates for anti-virus products page.

Figure 5-8 Automatic updates for anti-virus products page

The following table describes the items that can be checked on the Automatic updates for anti-virus products page.

Table 5-3 Items that can be checked on the Automatic updates for anti-virus products page

Item Description

Asset number The asset number of the client on which the anti-virus product linked with automatic judgment policy updating for anti-virus products is installed.

Update extension period The period (in days) following which the update information for the anti-virus product is applied to the judgment policies.

Description Comment on the automatic update information (Asset number and Update extension period).

(a) Adding automatic update information

To link an anti-virus product installed on the client in order to automatically update judgment policies for anti-virus products, click the Add button on the Automatic updates for anti-virus products page to open the Additional automatic update information window. In this window, set the asset number of the client on which the anti-virus product to be linked is installed and the update extension period following which the update information for the anti-virus product is applied to the judgment policies.

The following figure shows the Additional automatic update information window.

Figure 5-9 Additional automatic update information window

To register automatic update information in the Additional automatic update information window:

Enter an asset number.
Specify the asset number of the client on which the anti-virus product to be linked is installed. Use 1 to 60 bytes of alphanumeric characters. This item must be specified.

Enter an update extension period.
Specify the period (in days) following which the update information for the anti-virus product is applied to the judgment policies. Use a value in the range from 0 to 100. The default is 0. This item must be specified.

Enter a description (optional).
Enter a comment for the automatic update information to be added. Use a string from 0 to 300 bytes. This item is optional.

Click the OK button.
The automatic update information is added, and the Additional automatic update information window closes. To cancel addition of the automatic update information, click Cancel.

(b) Deleting automatic update information

To delete automatic update information, select the automatic update information you want to delete in the Automatic updates for anti-virus products page, and then click Delete.

Item	Description
Asset number	The asset number of the client on which the anti-virus product linked with automatic judgment policy updating for anti-virus products is installed.
Update extension period	The period (in days) following which the update information for the anti-virus product is applied to the judgment policies.
Description	Comment on the automatic update information (Asset number and Update extension period).

[Contents][Back][Next]

[Trademarks]

All Rights Reserved. Copyright (C) 2009, 2011, Hitachi, Ltd.
Copyright, patent, trademark, and other intellectual property rights related to the "TMEng.dll" file are owned exclusively by Trend Micro Incorporated