*NEW* DISA SUSE 9 and 11 + FDCC Windows TEM Security Compliance Content Available!
Shivani_S 270004D3WJ Visits (2285)
Hello Security and Compliance Community!
IBM is pleased to announce the availability of the new security configuration management checklists for Tivoli Endpoint Manager for Security and Compliance! The new checklists based on guidance provided by the Defense Information Systems Agency (DISA – US DoD) and the Federal Desktop Core Configuration (FDCC) are:
- SCM Checklist for DISA STIG on SUSE 9 (Action Script based parameterization)
- SCM Checklist for DISA STIG on SUSE 11 (Action Script based parameterization)
- DISA STIG Checklist for SUSE 9 (In-line parameterization, requires TEM 8.1+)
- DISA STIG Checklist for SUSE 11 (In-line parameterization, requires TEM 8.1+)
- FDCC Checklist for Internet Explorer 7
- FDCC Checklist for Windows Vista Firewall
- FDCC Checklist for Windows Vista
- FDCC Checklist for Windows XP Firewall
- FDCC Checklist for Windows XP
* Please note:
For Unix - The “Action Script based” parameterization model, each security control has a corresponding Fixlet Task that can be used to alter the check’s parameters. In the “In-line” parameterization model, each security control contains the parameterization settings in a form directly on the Fixlet Description tab. For Unix Fixlets, the In-line model requires TEM 8.1 and later.
For FDCC - The existing sites with the naming pattern “SCM Checklist for FDCC…” are now superseded by the new sites (“FDCC Checklist…”), but will be supported for some time. The new FDCC sites provide additional functionality such as parameterization, parameterized remediation, and measured value analyses.
This content contains security configuration checks that evaluate and, if desired, remediate the security settings of your endpoints according the DISA or FDCC standards. As with most of the existing SCM content in the Tivoli Endpoint Manager for Security and Compliance library, most checks include a corresponding analysis property to report actual values (not just pass/fail), and most checks have a parameterized setting enabling simple customization for compliance evaluation and remediation.
addition to the new sites, the following existing sites have been updated to be
compatible with the new content (site versions included for air-gap
- BES Support v824
- SCM Reporting v31
For a complete list of SCM Checklists included in the product, please see:
ACTIONS TO TAKE
All customers that currently license the
Tivoli Endpoint Manager for Security and Compliance product, the BigFix SCMv3
solution module, the BigFix SCVM solution pack, or the BigFix SLM+SCVM solution
bundle are entitled to the new content. If you are using BES 8.0 or Tivoli
Endpoint Manager 8.1 and you are entitled to the new content, you may use the
License Overview dashboard to enable and gather the sites. If you are running
BES 7.x and you are currently licensed for Tivoli Endpoint Manager for Security
and Compliance, BigFix SCVM, BigFix SLM+SCVM, or BigFix SCM v3, please contact
We hope you find this latest release of SCM content useful and effective.