[BESAdmin-Announcements] *NEW* DISA SUSE 9 and 11 + FDCC Windows TEM Security Compliance Content Available!

[Announcements for BES Administrators]

Dear BESAdmin Community,


**NEW Release**

IBM is pleased to announce the availability of the new security 
configuration management checklists for Tivoli Endpoint Manager for 
Security and Compliance. The new checklists based on guidance provided by 
the Defense Information Systems Agency (DISA – US DoD) and the Federal 
Desktop Core Configuration (FDCC) are:

- SCM Checklist for DISA STIG on SUSE 9 (Action Script based 
parameterization)
- SCM Checklist for DISA STIG on SUSE 11 (Action Script based 
parameterization)
- DISA STIG Checklist for SUSE 9 (In-line parameterization, requires TEM 
8.1+)
- DISA STIG Checklist for SUSE 11 (In-line parameterization, requires TEM 
8.1+)
- FDCC Checklist for Internet Explorer 7
- FDCC Checklist for Windows Vista Firewall
- FDCC Checklist for Windows Vista
- FDCC Checklist for Windows XP Firewall
- FDCC Checklist for Windows XP

*       Please note:

For Unix - The “Action Script based” parameterization model, each security 
control has a corresponding Fixlet Task that can be used to alter the 
check’s parameters. In the “In-line” parameterization model, each security 
control contains the parameterization settings in a form directly on the 
Fixlet Description tab. For Unix Fixlets, the In-line model requires TEM 
8.1 and later.

For FDCC - The existing sites with the naming pattern “SCM Checklist for 
FDCC…” are now superseded by the new sites (“FDCC Checklist…”), but will 
be supported for some time. The new FDCC sites provide additional 
functionality such as parameterization, parameterized remediation, and 
measured value analyses.


This content contains security configuration checks that evaluate and, if 
desired, remediate the security settings of your endpoints according the 
DISA or FDCC standards. As with most of the existing SCM content in the 
Tivoli Endpoint Manager for Security and Compliance library, most checks 
include a corresponding analysis property to report actual values (not 
just pass/fail), and most checks have a parameterized setting enabling 
simple customization for compliance evaluation and remediation.

In addition to the new sites, the following existing sites have been 
updated to be compatible with the new content (site versions included for 
air-gap customers):

- BES Support v824
- SCM Reporting v31

For a complete list of SCM Checklists included in the product, please see:
http://ibmurl.hursley.ibm.com/2DD2

ACTIONS TO TAKE
All customers that currently license the Tivoli Endpoint Manager for 
Security and Compliance product, the BigFix SCMv3 solution module, the 
BigFix SCVM solution pack, or the BigFix SLM+SCVM solution bundle are 
entitled to the new content. If you are using BES 8.0 or Tivoli Endpoint 
Manager 8.1 and you are entitled to the new content, you may use the 
License Overview dashboard to enable and gather the sites. If you are 
running BES 7.x and you are currently licensed for Tivoli Endpoint Manager 
for Security and Compliance, BigFix SCVM, BigFix SLM+SCVM, or BigFix SCM 
v3, please contact ibmtemlicensing at lotus.com for access to the new 
mastheads.


We hope you find this latest release of SCM content useful and effective. 
Thank you!

  -- The Tivoli Endpoint Manager for Security and Compliance product team
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20111117/4bfda5a0/attachment.htm