![[Contents]](FIGURE/CONTENT.GIF)
![[Glossary]](FIGURE/GLOSS.GIF)
![[Index]](FIGURE/INDEX.GIF)
![[Back]](FIGURE/FRONT.GIF)
![[Next]](FIGURE/AFTER.GIF)
Job Management Partner 1/Client Security Control Description, User's Guide and Operator's Guide
The following figure shows the basic configuration of a quarantine system linked to JP1/NM.
Figure 12-6 Basic configuration of quarantine system linked to JP1/NM
- Management terminal
- A management terminal is used by an administrator to reference the asset management database, manage client asset information, monitor the status of client security measures, and implement actions. It uses the GUI for AIM.
- Management server
- A management server manages inventory information in an asset management database, judges client security levels according to the security policy, and implements actions appropriate to these security levels.
- It also packages files used to implement the security measures, such as software patches.
- Network control server
- A network control server receives instructions from actions (permit or deny network connections) implemented on the management server, and from the network control command (cscnetctrl) executed on the remote management server. It then instructs the monitoring server to control client network connections based on these instructions.
- Remote management server
- A system configuration with a remote management server is set up to automatically update judgment policies by linkage with the anti-virus product installed on the remote management server, or to control client network connections from another system.
- Install JP1/CSC - Manager Remote Option on the remote management server.
- Client subject to judgment policy automatic updating
- This client contains an anti-virus product linked with automatic judgment policy updating for anti-virus products. This client is required to automatically update judgment policy definitions for anti-virus products based on the update information for the anti-virus product installed on the client.
- Treatment and monitoring servers
- Set up a treatment server when using the JP1/NM quarantine support facility, or a monitoring server when not using this function.
- Treatment server
When using the JP1/NM quarantine support facility, set up a treatment server.
A treatment server controls client network connections. It also maintains communication with clients that have been disconnected from the network, in order to implement security measures on the client.
Clients disconnected from the network are shut off from communication with other devices. These clients are allowed to communicate with the treatment server only through the quarantine support facility. This allows security measures to be implemented in an online environment.
- Monitoring server
When not using the JP1/NM quarantine support facility, set up a monitoring server. A monitoring server controls client network connections.
Only JP1/NM should be installed on the monitoring server if the quarantine support facility is not used. You do not need to install JP1/Software Distribution Client (relay system) or JP1/Software Distribution SubManager.
- Client
- A client is the entity that is managed in a quarantine system. A client sends inventory information to the management server, which judges the security level of the client for the inventory information based on the security polity.
All Rights Reserved. Copyright (C) 2009, 2011, Hitachi, Ltd.
Copyright, patent, trademark, and other intellectual property rights related to the "TMEng.dll" file are owned exclusively by Trend Micro Incorporated
![[Figure]](FIGURE/ZU121000.GIF)