Welcome to the BigFix Blog, where you can read the perspectives from network and service assurance experts. This Blog provides insights into the endpoint management solution, as well as technical details about specific IBM products.
Welcome to the Endpoint Management blog. This
blog is one of several within the Service Management Connect community,
and its purpose is to provide readers with ideas and perspectives about
the endpoint management solution directly from the
technical experts. Follow this blog, and you can get tips, tricks, and
perspectives on several endpoint management topics, including: Installation Integration Performance Customization Technical tips and tricks More... If you have specific topics for which you would like to see blog entries, don't... [More]
There is a new wiki for all IBM Tivoli Endpoint Manager (BigFix) best practices, and it can be found here: https://www.ibm.com/developerworks/mydeveloperworks/wikis/home?lang=en#/wiki/Tivoli%20Endpoint%20Manager As with all Service Management Connect wikis,
you can expect to find a lot of information created by subject matter
experts, including but not limited to the following content: Best practices Customizations Fixlet authoring Lifecycle management Troubleshooting information Bookmark the new Tivoli Endpoint Manager wiki today.... [More]
We are looking to retire the following legacy sites in March 2012: Patches for RedHat Enterprise Linux Patches for RedHat Enterprise Linux (Outdated RPMs) Before anyone starts to panic, keep in mind that we replaced these sites with the Patches for RHEL 3|4|5 sites in 2009. The Patches for RHEL sites were developed to make our patch content easier to deploy by supporting RPM dependency resolution. By retiring the legacy Red Hat sites, we will be able to clear up confusion around the two different sets of content, reduce the maintenance... [More]
Hi everybody, We have been slowly transitioning our customer-facing documentation and technical info pages from our legacy BigFix sites to IBM systems. Here is a quick overview of some of the changes: New "Endpoint Management Community" -- This page basically links to all the pages discussed below. New "Endpoint Management" Blog -- (You are reading my first blog post.) We didn't have a blog at BigFix and instead used mailing list updates and forum posts. But... we think the blog is a better way to communicate and we... [More]
The Inspector Search site been updated and enhanced. Try it out: http://support.bigfix.com/inspectorsearch/inspector_search.html (It can also be reached at the link at search.bigfix.com) New functionality includes enhanced descriptions of inspectors. For example: 1. In the Type field, enter substring. 2. Click the Find Inspectors button. 3. It should list 19 inspectors that match that criterion. Click on start of <substring>. The search result is displayed. Before this addition to the program, no type information was provided.... [More]
SCM Content has been updated for the DISA UNIX Checklists! * Only the Linux OS's are affected by this update -- here are the new versions of the checklists: Self-Parameterizing Checklists: DISA STIG Checklist for AIX 5.1 ---------- now site version 6 DISA STIG Checklist for AIX 5.2 ---------- now site version 5 DISA STIG Checklist for AIX 5.3 ---------- now site version 5 DISA STIG Checklist for AIX 6.1 ---------- now site version 5 DISA STIG Checklist for HPUX 11.00 --- now site version 5 DISA STIG Checklist for HPUX... [More]
Hi All, We've just released a new Fixlet site to deploy and
manage Proventia Desktop and IBM Security Server Protection for Windows.
The site is named "Client Manager for Host Protection". "Client Manager for Host Protection" includes the following key capabilities: - Deploy and upgrade Server Protection and Proventia Desktop agents - Report on Server Protection and Proventia Desktop agent status and version Note
that as with other Client Manager content, this site is not a
replacement for the SiteProtector... [More]
Hey Guys, We are nearing the official release of BigFix Labs! Here's a sneak peak: BigFix Labs is a new Domain we are offering for free to all our customers. Labs offers a wide variety of interesting as-is projects that help make your BigFix life easier. Tired of writing out common relevance expression by hand? Try the new Relevance Builder in Labs! Looking a way to import BigFix data directly into excel? Labs has your back. Want to set and manage local user passwords with BigFix? Oh you bet there is a Lab for that. This is just... [More]
Hi All, Lately, we have seen an increased adoption of Microsoft Forefront, so we recently added support for Microsoft Forefront Endpoint Protection to our Client Manager for Endpoint Protection (CMEP) Fixlet site. Customers can now use CMEP to support the following Microsoft Forefront management tasks: - Report on agent health (running, stopped) - Report on client information (definition versions, engine version, client status, etc) - Deploy definition updates via the Microsoft Forefront Update Wizard - Enforce a policy that monitors the... [More]
As we approach the release of BigFix Labs to the general public (currently slated to be around mid October), I thought it might be fun to highlight some of the more interesting features in Labs. Todays subject: Local User Management! There is a common problem experienced by BigFix Users. Say an administrator leaves the company, and you want to change the password to the "administrator" accounts on the computers they managed for security reasons. The solution seems simple, write a BigFix action to set the user password and... [More]
We have just published another set of updates to our Client
Manager for Endpoint Protection site to add support for the most recent versions
of supported vendor products: Symantec
Endpoint Protection 12 McAfee VirusScan
Enterprise 8.8 McAfee GroupShield 7.0 / McAfee
Security 7.6 for Microsoft Exchange Forefront
Client Security CA Anti-Virus / Total Defense
Just a heads up, our tenative delivery times for this upcoming Patch Tuesday are: 2:00PM PST for Kernel Patches 9:30PM PST for all Patch Tuesday Patches You can find more information about the upcoming October Patch Tuesday here: http://technet.microsoft.com/en-us/security/bulletin/ms11-oct
We just released the first set of Patch Tuesday patches for October 2011. They should all be included in version 1529 of the Enterprise Security site. This first set includes content for: MS11-075 MS11-076 MS11-077 MS11-080 MS11-081 The rest of the patches are scheduled to be delivered around 9:30PM PST.
Hi All, We are considering developing some content to support reporting and basic management of BitLocker deployments. If you use BitLocker, or are considering deploying it in the future, please share your thoughts on the below areas to help us build a more useful offering. If you'd like to provide input in a private forum, feel free to email me directly at firstname.lastname@example.org. (1) Do you currently use BitLocker, or plan to deploy it soon? If not, are you using another disk encryption technology? (2) If you are using BitLocker, on how many... [More]
The second set of Fixlets for October Patch Tuesday is now available in version 1530 of the EnterpriseSecurity site. This set covers the following security bulletins: * MS11-078: Vulnerability in .NET Framework and Microsoft Silverlight Could Allow Remote Code Execution * MS11-079: Vulnerabilities in Microsoft Forefront Unified Access Gateway Could Cause Remote Code Execution * MS11-082: Vulnerabilities in Host Integration Server Could Allow Denial of Service
We expect to publish Fixlets for the localized versions of the October 2011 security patches by Thursday (13 Oct 2011) evening Pacific Time. We will post an update on this blog once the content for non-English versions of Patches for Windows Fixlet sites is published.
Hey guys, We have released our new BigFix Labs domain to the world! BigFix Labs is a special domain, which every deployment has free access to, that contains a bunch of cool/interesting/useful experimental features, such as the relevance builder and Local User Management. We will continue to update and add more features to Labs, but note that all the content is UNSUPPORTED. Use at your own risk. See our preview post for some more info. We've added Labs to everyone's license bundles. This means that you should see a message like this at the... [More]
Security Configuration Management (SCM) for Unix Systems The Security and Compliance team at IBM has modified the content within the UNIX System checklists to add per user ignore for the following controls: AIX 5.3 & 6.1 GEN000800 GEN000540 GEN000620 GEN000600a GEN000580 GEN000680 GEN000700 RHEL 4 & 5 GEN000540 GEN000700 Solaris 8, 9 & 10 GEN000540 ---- Site Versions ---- Self-Parameterizing Sites: DISA STIG Checklist for AIX 5.1 v7 DISA STIG Checklist for AIX 5.2 v6 DISA STIG Checklist for AIX 5.3 v6 DISA STIG Checklist for AIX... [More]
Now that labs is released to the world , I'll be spending some more time highlighting some of the cooler features we've included, as well as anything we will add in the future. Today's feature: Client Relevance Builder! The BigFix Relevance language is an immensely powerful and versatile tool, and is one of the main reasons BigFix is so capable a platform. There is a downside to this: if you want to start making custom Fixlet content to get the full potential out of your deployment, you have to learn this new language, which not... [More]
There is a document created listing all the supported endpoint protection products for CMEP at this wiki page: https://www.ibm.com/developerworks/mydeveloperworks/wikis/home?lang=en#/wiki/Tivoli%20Endpoint%20Manager/page/Client%20Manager%20for%20Endpoint%20Protection%20%E2%80%93%20Supported%20Products It will be updated once a support for a new product is published.
We've just released our first of many updates to Labs. Featured in this release: Relay Cache Management! One of the keys to BigFix great scalability is our awesome relay infrastructure and file caching system. This lets our agents download files directly from their parent relays over fast LAN connections, saving tons of time and bandwidth. The relay caches mostly take care of themselves, however sometimes you want to more detailed control over your cache, to save space on disk, to make sure large or critical files are not kicked out of... [More]
Just a heads up, our tenative delivery times for this upcoming Patch Tuesday are 2:00PM PST for all patches. We'll release non-English security patches shortly afterwards. You can find more information about the upcoming November Patch Tuesday here: http://technet.microsoft.com/en-us/security/bulletin/ms11-nov
Just wanted to let you guys know that our Patch Tuesday fixlets for November 2011 are live. They hit the world roughly forty minutes ago. We also published the re-release of MS11-037 as part of that push. We'll be working next on the non-English Patch Tuesday fixlets.
We just published the Fixlets for Patches for Windows sites for German, Japanese and Chinese (Simplified) languages. The Patch Tuesday content for the remaining language sites should be available by Wednesday evening PST.
We've released another cool new dashboard to labs today: Bandwidth Throttling! BigFix natively offers the ability to throttle the amount of bandwidth machines will use when communicating with its parents or children, within the BigFix relay hierarchy. This is great for deployments that have constrained network connections. Simply throttle your client or relay download speeds, and you can prevent your 56k connection from being overwhelmed, while still keeping your clients responsive and up to date. However as users of this feature... [More]
Hello Security and Compliance Community! IBM
is pleased to announce the availability of the new security configuration
management checklists for Tivoli Endpoint Manager for Security and Compliance! The new checklists based on guidance provided by the Defense Information
Systems Agency (DISA – US DoD) and the Federal Desktop Core Configuration
(FDCC) are: - SCM
Checklist for DISA STIG on SUSE 9 (Action Script based parameterization) - SCM
Checklist for DISA STIG on SUSE 11 (Action Script based parameterization) - DISA
Just a quick post on some of the setup and configuration changes you can expect in version 8.2. On upgrade, all existing Console users will be migrated to local users. Console users will be asked to provide .pvk files on initial login for the purposes of verification only and will not be used for subsequent login attempts. Consoles in 8.2 connect to the Server through HTTPS 52313. This replaces the previous method of ODBC connections. This is configurable. Account provisioning is now handled by the Console, not the BESAdmin tool. However,... [More]
Just wanted to give everyone a heads up that we are in the process of reviewing and updating our fixlets. The good news is that these changes will have a positive impact on your environments by reducing the size of the fixlets while maintaing all of the same function. As we progress I will post to the blog which fixlets are being updated each day. We will begin rolling out these changes next week, updating between 4-6 sites a day.