[BESAdmin-Announcements] *NEW* DISA SUSE 9 and 11 + FDCC Windows TEM Security Compliance Content Available!
Announcements for BES Administrators
besadmin-announcements at bigmail.bigfix.com
Thu Nov 17 16:41:55 PST 2011
Dear BESAdmin Community,
**NEW Release**
IBM is pleased to announce the availability of the new security
configuration management checklists for Tivoli Endpoint Manager for
Security and Compliance. The new checklists based on guidance provided by
the Defense Information Systems Agency (DISA – US DoD) and the Federal
Desktop Core Configuration (FDCC) are:
- SCM Checklist for DISA STIG on SUSE 9 (Action Script based
parameterization)
- SCM Checklist for DISA STIG on SUSE 11 (Action Script based
parameterization)
- DISA STIG Checklist for SUSE 9 (In-line parameterization, requires TEM
8.1+)
- DISA STIG Checklist for SUSE 11 (In-line parameterization, requires TEM
8.1+)
- FDCC Checklist for Internet Explorer 7
- FDCC Checklist for Windows Vista Firewall
- FDCC Checklist for Windows Vista
- FDCC Checklist for Windows XP Firewall
- FDCC Checklist for Windows XP
* Please note:
For Unix - The “Action Script based” parameterization model, each security
control has a corresponding Fixlet Task that can be used to alter the
check’s parameters. In the “In-line” parameterization model, each security
control contains the parameterization settings in a form directly on the
Fixlet Description tab. For Unix Fixlets, the In-line model requires TEM
8.1 and later.
For FDCC - The existing sites with the naming pattern “SCM Checklist for
FDCC…” are now superseded by the new sites (“FDCC Checklist…”), but will
be supported for some time. The new FDCC sites provide additional
functionality such as parameterization, parameterized remediation, and
measured value analyses.
This content contains security configuration checks that evaluate and, if
desired, remediate the security settings of your endpoints according the
DISA or FDCC standards. As with most of the existing SCM content in the
Tivoli Endpoint Manager for Security and Compliance library, most checks
include a corresponding analysis property to report actual values (not
just pass/fail), and most checks have a parameterized setting enabling
simple customization for compliance evaluation and remediation.
In addition to the new sites, the following existing sites have been
updated to be compatible with the new content (site versions included for
air-gap customers):
- BES Support v824
- SCM Reporting v31
For a complete list of SCM Checklists included in the product, please see:
http://ibmurl.hursley.ibm.com/2DD2
ACTIONS TO TAKE
All customers that currently license the Tivoli Endpoint Manager for
Security and Compliance product, the BigFix SCMv3 solution module, the
BigFix SCVM solution pack, or the BigFix SLM+SCVM solution bundle are
entitled to the new content. If you are using BES 8.0 or Tivoli Endpoint
Manager 8.1 and you are entitled to the new content, you may use the
License Overview dashboard to enable and gather the sites. If you are
running BES 7.x and you are currently licensed for Tivoli Endpoint Manager
for Security and Compliance, BigFix SCVM, BigFix SLM+SCVM, or BigFix SCM
v3, please contact ibmtemlicensing at lotus.com for access to the new
mastheads.
We hope you find this latest release of SCM content useful and effective.
Thank you!
-- The Tivoli Endpoint Manager for Security and Compliance product team
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20111117/4bfda5a0/attachment.htm
More information about the Besadmin-announcements
mailing list