![[Contents]](FIGURE/CONTENT.GIF)
![[Glossary]](FIGURE/GLOSS.GIF)
![[Index]](FIGURE/INDEX.GIF)
![[Back]](FIGURE/FRONT.GIF)
![[Next]](FIGURE/AFTER.GIF)
Job Management Partner 1/Client Security Control Description, User's Guide and Operator's Guide
An administrator can control network connections by specifying the particular client in the Client Security Management window of AIM or by using the network control command (cscnetctrl).
- Organization of this subsection
- (1) Controlling network connections from the Client Security Management window of AIM
- (2) Controlling network connections by command
(1) Controlling network connections from the Client Security Management window of AIM
Using the Client Security Management window of AIM, an administrator can control client access to the network. The administrator can cut network connections for clients with a high security level, or reconnect clients confirmed as safe.
(a) Transition of windows used to control network connections
The following figure shows the transition of windows used to control network connections.
Figure 9-2 Transition of windows used to control network connections
To open the initial window of AIM, log in to AIM with CSC administrator permissions. For the procedure to open the initial window, see 8.1 Transitions of windows used for client monitoring.
(b) Controlling network connections
An administrator can specify a client, and permit or deny the network connection.
To control the network connection for a specified client:
- In the PC Search window, search for the client for which the network connection is to be controlled.
The PC List window is displayed.
- Select the Asset No. check box of the client for which the network connection is to be controlled.
The client for which the network connection is to be controlled is selected.
- For Network connection, click either the Refuse button or the Permit button.
A message box is displayed to confirm client network control.
- Click the OK button.
The specified processing is performed, and the Action Message dialog box is displayed. If an error message is displayed, see 17.4.1 Action messages in the PC List window, and act accordingly.
- Click the Close button.
The Action Message dialog box closes.
Note that network connections can be controlled even when client security management is disabled for the client.
- Note
- Do not attempt to control client network connections by directly accessing a linked network control product. Always use the Client Security Management window of AIM.
(2) Controlling network connections by command
The JP1/CSC administrator or an administrator of a remote system can control client connections to the network by executing the network control command (cscnetctrl) from a remote management server linked to the remote system. This enables the administrator to disconnect any client judged a high security risk when a virus is detected by the remote system, and to reconnect the client when certain that it is secure.
When a client is disconnected by execution of the network control command (cscnetctrl), the network connection status becomes immediate denial. Network connection permission as the result of a subsequent security level judgment does not clear an immediate denial already in force. To clear an immediate denial, permit network connection using the cscnetctrl command or the Client Security Management window.
In the following example, the command disconnects the client with IP address 100.20.150.40 from the network as an immediate denial:
cscnetctrl -r -i 100.20.150.40For details about the network control command, see cscnetctrl (controls network connections) in 15. Commands.
All Rights Reserved. Copyright (C) 2009, 2011, Hitachi, Ltd.
Copyright, patent, trademark, and other intellectual property rights related to the "TMEng.dll" file are owned exclusively by Trend Micro Incorporated
![[Figure]](FIGURE/ZU090400.GIF)