![[Contents]](FIGURE/CONTENT.GIF)
![[Glossary]](FIGURE/GLOSS.GIF)
![[Index]](FIGURE/INDEX.GIF)
![[Back]](FIGURE/FRONT.GIF)
![[Next]](FIGURE/AFTER.GIF)
Job Management Partner 1/Client Security Control Description, User's Guide and Operator's Guide
When a client is judged a security risk and denied access to the network, security measures must be implemented on the client. Security measures are implemented differently depending on whether the JP1/NM quarantine support facility is used. This section describes how to implement security measures with and without the JP1/NM quarantine support facility.
- Organization of this subsection
- (1) When using the JP1/NM quarantine support facility
- (2) When not using the JP1/NM quarantine support facility
(1) When using the JP1/NM quarantine support facility
To implement security measures on a client that is denied access to the network, execute the software distribution facility of JP1/Software Distribution.
By using this facility, the administrator can distribute software from JP1/Software Distribution Manager on the management server, using JP1/Software Distribution Client (relay system)# on the treatment server as a relay system. Alternatively, the client can be provided with packages for the user to install.
For details about the software distribution facility, see the manual Job Management Partner 1/Software Distribution Administrator's Guide Volume 1, for Windows systems.
- #
- JP1/Software Distribution SubManager 07-50 or later can also be used.
(2) When not using the JP1/NM quarantine support facility
Security measures can be implemented on a client that is denied access to the network in either of two ways:
- Using the JP1/Software Distribution offline machine management facility
- Providing installation media to the client
Each method is described below.
(a) Using the JP1/Software Distribution offline machine management facility
The offline machine management facility of JP1/Software Distribution allows you to install software offline and to obtain inventory information from offline machines. You can use this facility to implement client security measures in an offline environment.
For details about the offline machine management facility, see the manual Job Management Partner 1/Software Distribution Administrator's Guide Volume 1, for Windows systems.
(b) Providing installation media to the client
A client user can use an installation medium or similar to implement security measures. However, after the security measures have been implemented, the client will still be unable to reconnect to the network. This is because the client is unable to notify the management server of the latest inventory information.
To reconnect the client to the network:
- Implement the appropriate security measures.
Apply the most recent patches for the client, or install the latest anti-virus product.
- In the PC List window of the Client Security Management window, select the client to be reconnected to the network, and in Network Connection, click the Permit button.
Network connections are permitted for the client.
You can also execute a network control command (cscnetctrl) from the remote management server to permit network connections. For details about this command, see cscnetctrl (controls network connections) in 15. Commands.
- Reconnect the client to the network.
Physically reconnect the client to the network.
- Collect the latest inventory information for the client.
The client inventory information updated by the security measures implemented in step 1 is collected by JP1/Software Distribution.
- Using the latest inventory information for the client, judge the security level of the client according to the judgment policy.
- Check the judgment results in the PC List window.
Using the PC List window, the administrator confirms that the security level of the client added to the network is Safe.
All Rights Reserved. Copyright (C) 2009, 2011, Hitachi, Ltd.
Copyright, patent, trademark, and other intellectual property rights related to the "TMEng.dll" file are owned exclusively by Trend Micro Incorporated