IBM BigFix is pleased to announce the release of BigFix Compliance Analytics version 1.10, formerly called IBM Endpoint Manager for Security and Compliance Analytics (SCA).   Product: BigFix Compliance Title: Availability of BigFix Compliance Analytics version 1.10 Details: BigFix Compliance Analytics version 1.10 release includes the following new features, fixes and updates. Published site: SCM Reporting, version 123.   New features and updates: BigFix Compliance Analytics now includes a new “Patch Reporting”... [More]

IBM BigFix Compliance is an effective solution to help organizations enable continuous compliance with government regulations and security policies while reducing costs and mitigating security risks.  Leveraging the BigFix infrastructure and best-practice checklists implemented based on benchmarks published by CIS, DISA STIG, USGCB, and PCI DSS, BigFix Compliance provides near real-time visibility into security configurations across an organization while facilitating continuous, automated policy enforcement to all endpoints, including... [More]

Banking Client implements fully-automated discovery using BigFix infrastructure and IBM TADDM 7.3.0.5 IBM’s client in the Banking sector, needed to discover technical components in all secure zones without breaching the Bank’s existing IT Security policies; and without introducing any new infrastructure that would need to be maintained by the IT team. The client was already using IBM TADDM to discover the operational IT infrastructure and to keep the CMDB up to date. IBM TADDM had an existing capability to perform Asynchronous... [More]

Product: IBM BigFix Compliance     Title: Updated DISA STIG Checklist for Oracle Linux 6 to support a more recent version of benchmark and added new applicability fixlet   Security Benchmark: Oracle Linux 6 STIG Version 1, Release 12   Published Sites: DISA STIG Checklist for Oracle Linux 6 , site version 2 (The site version is provided for air-gap customers.)     Details: Added New Fixlet: The "Filesystem Scan" Applicability Fixlet to ensure the file scan script is successfully run.   Actions to... [More]

Tags:  endpoint-manager endpoint-management endpoint_manager scm disa endpoint bigfix bigfix_compliance

IBM BigFix Patch released a new version of AIX Plug-in R2. Upgrade your AIX Download Plug-in to version 1.0.0.4 and later to avoid issues. If you use AIX Plug-in R2  for OpenSSH and OpenSSL content, you might encounter an error indicating that the download failed due to not finding the download link for the package. Actions to Take: Upgrade to AIX Plug-in R2 version 1.0.0.4. Published site version: Patching Support, version 828. Additional links: None Application Engineering Team IBM BigFix

Tags:  aixr2_download_plugin download_plugin patch

Product: IBM BigFix Compliance Title: Updated DISA STIG Checklist for RHEL 7 to update a check Security Benchmark: Red Hat Enterprise Linux 7 Manual STIG, Version 1, Release 1   Published Sites: DISA STIG Checklist for RHEL 7, site version 5 (The site version is provided for air-gap customers.) Release Notes: Updated the following check   RHEL-07-040300:  Fixed what ssh packages to look for, now looks for openssh-server and openssh-clients.   Actions to take: · To subscribe to the above site, you can use the... [More]

Tags:  endpoint-management disa bigfix_compliance bigfix

Product: IBM BigFix Compliance PCI Add on   Title: Updated PCI DSS Checklists for Windows 2012 and Windows 2016 for relevance and action scripts fix. Category: Updated PCI DSS checklist Security Benchmark: Payment Card Industry Data Security Standard v3.2     Details: The IBM BigFix Compliance PCI Add-on team has updated the PCI DSS Checklists for Windows 2012 and Windows 2016 for relevance and action scripts fix issue. These remediation actions allow BigFix operators to efficiently remediate a non-compliance issue with a single... [More]

Tags:  bigfix pcidss pci compliance

Product: IBM BigFix Compliance     Title:   Updated DISA STIG Checklist for Windows 7 to support a more recent version of manual and benchmark   Security Benchmark: Windows 7 STIG , V1, R30     Published Sites: DISA STIG Checklist for Windows 7, site version 31 (The site version is provided for air-gap customers.)     Details: Both analysis and remediation checks are included   Some of the checks allow you to use the parameterized setting to enable customization for compliance evaluation. Note that... [More]

Tags:  disa endpoint scm endpoint-manager bigfix endpoint-management bigfix_compliance endpoint_manager

Product: IBM BigFix Compliance     Title: Updated DISA STIG Checklist for Internet Explorer 11 RG03 to support a more recent version of manual and benchmark   Security Benchmark: Microsoft Internet Explorer 11 STIG , V1, R15     Published Sites: DISA STIG Checklist for Internet Explorer 11 RG03, site version 5 (The site version is provided for air-gap customers.)     Details: Both analysis and remediation checks are included   Some of the checks allow you to use the parameterized setting to enable... [More]

Tags:  bigfix_compliance endpoint_manager endpoint-manager bigfix disa endpoint-management endpoint scm

Oracle Solaris 10 has ended its premium support and since February 1, 2018, has been under extended support, a paid subscription plan. For more information regarding Solaris extended support, see https://blogs.oracle.com/solaris/oracle-solaris-10-support-explained .   BigFix does not support patches for extended support. Moving forward, BigFix no longer provides content and support for the Oracle Solaris 10 (SPARC and x86 platform versions), including the following patch types: Security Patches Recommended Patches Recommended Patch... [More]

Tags:  solaris bigfix extended_support patch 10

Product: IBM BigFix Compliance   Title: Updated CIS Checklist for MS SQL Server 2012 to support a more recent version of benchmark   Security Benchmark: CIS MS SQL Server 2012 Benchmark, V 1.4.0    Published Sites: CIS Checklist for MS SQL Server 2012, site version 5 (The site version is provided for air-gap customers.)   Details: The checklist now supports following Operating systems: Windows Server 2008 SP2 Windows Server 2008 R2 SP1 Windows Server 2012 Windows Server 2012 R2 Both analysis and remediation checks are... [More]

Tags:  cis endpoint-manager endpoint_manager endpoint endpoint-management bigfix_compliance scm bigfix

IBM BigFix Patch is pleased to announce that it has extended support to include SUSE Linux Enterprise Server 11 on IBM PowerPC 64-bit Big Endian (BE). The new site called 'Patches for Patches for SLE 11 PPC64BE' uses zypper, which is SLE's default package manager, and contains content from the following channels for SLES 11 PPC64BE systems: * SLES11-Pool * SLES11-Updates * SLES11-SP1-Pool * SLES11-SP1-Updates * SLES11-SP2-Pool * SLES11-SP2-Updates * SLES11-SP3-Pool * SLES11-SP3-Updates * SLES11-SP4-Pool * SLES11-SP4-Updates Users... [More]

Product: IBM BigFix Compliance   Title: New sites: CIS Checklist for Docker CE  and CIS Checklist for Kubernetes 1.8   Security Benchmarks: CIS Docker Community Edition Benchmark , V 1.1.0 CIS Kubernetes 1.8 Benchmark , V 1.2.0   Published Sites: CIS Checklist for Docker CE, site version 1 CIS Checklist for Kubernetes 1.8, site version 2 (The site versions are provided for air-gap customers.)   Details: · Analyses for checks are included · Some of the checks allow you to use the parameterized setting to... [More]

Tags:  cis bigfix_compliance kubernetes docker endpoint endpoint-management

  Product: IBM BigFix Compliance   Title: IBM BigFix Compliance Client Manager for Endpoint Protection (CMEP) adds support for Symantec Endpoint Protection 14 for Mac OS   Details: IBM BigFix Compliance CMEP adds support for Symantec Endpoint Protection version 14 on Mac systems. The following Fixlet was released for the newly supported product version: Fixlet ID: 670 - UPDATE: Outdated Symantec Endpoint Protection 14 Virus Definition Detected for Macintosh (Intel CPU)   Published Site: Client Manager for Endpoint... [More]

Tags:  compliance cmep fix sep bigfix endpoint-manager endpoint-management endpoint