<font size=2 face="sans-serif">Dear BESAdmin Community,</font>
<br>
<br>
<br><font size=2 face="sans-serif"><b><u>**NEW Release**<br>
</u></b></font>
<br><font size=2 face="sans-serif">IBM is pleased to announce the availability
of the new security configuration management checklists for Tivoli Endpoint
Manager for Security and Compliance. The new checklists based on guidance
provided by the Center for Internet Security (CIS) and Defense Information
Systems Agency (DISA – US DoD) are:</font>
<br><font size=2 face="sans-serif"><br>
<b><u>In-line parameterization, requires TEM 8.1+ :<br>
</u></b></font>
<br><font size=2 face="sans-serif">- CIS Checklist for AIX 5.3 and 6.1
v2</font>
<br><font size=2 face="sans-serif">- CIS Checklist for Mac OS X 10.6 v2
</font>
<br><font size=2 face="sans-serif">- CIS Checklist for RHEL 5 v2 </font>
<br><font size=2 face="sans-serif">- CIS Checklist for Solaris 10 v2 <br>
</font>
<br><font size=2 face="sans-serif">- DISA STIG Checklist for AIX 7.1 v1</font>
<br>
<br><font size=2 face="sans-serif"><br>
<b><u>Action Script based parameterization:</u></b><br>
</font>
<br><font size=2 face="sans-serif">- SCM Checklist for CIS on AIX 5.3 and
6.1 v2</font>
<br><font size=2 face="sans-serif">- SCM Checklist for CIS on Mac OS X
10.6 v2</font>
<br><font size=2 face="sans-serif">- SCM Checklist for CIS on RHEL 5 v2</font>
<br><font size=2 face="sans-serif">- SCM Checklist for CIS on Solaris 10
v2</font>
<br>
<br>
<br><font size=2 face="sans-serif">* <b>Please
note:</b></font>
<br>
<br><font size=2 face="sans-serif">For the “Action Script based” parameterization
model, each security control has a corresponding Fixlet Task that can be
used to alter the check’s parameters. <br>
For the “In-line” parameterization model, each security control contains
the parameterization settings in a form directly on the Fixlet Description
tab. The In-line model requires TEM 8.1 and later.</font>
<br>
<br><font size=2 face="sans-serif">This content contains security configuration
checks that evaluate and, if desired, remediate the security settings of
your endpoints according the DISA standards. As with most of the existing
SCM content in the Tivoli Endpoint Manager for Security and Compliance
library, most checks include a corresponding analysis property to report
actual values (not just pass/fail), and most checks have a parameterized
setting enabling simple customization for compliance evaluation and remediation.</font>
<br>
<br><font size=2 face="sans-serif">In addition to the new sites, the following
existing sites have been updated to be compatible with the new content
(<u>site versions included for air-gap customers</u>):<br>
</font>
<br><font size=2 face="sans-serif">- BES Support v956</font>
<br><font size=2 face="sans-serif">- SCM Reporting v39</font>
<br>
<br><font size=2 face="sans-serif"><b>For a complete list of SCM Checklists
included in the product, please see:</b></font>
<br><a href=http://ibmurl.hursley.ibm.com/2DD2><font size=2 color=blue face="Segoe UI"><u>http://ibmurl.hursley.ibm.com/2DD2</u></font></a><font size=2 face="Segoe UI"><br>
</font>
<br><font size=2 face="sans-serif"><b><u>ACTIONS TO TAKE</u></b></font>
<br><font size=2 face="sans-serif">All customers that currently license
the Tivoli Endpoint Manager for Security and Compliance product, the BigFix
SCMv3 solution module, the BigFix SCVM solution pack, or the BigFix SLM+SCVM
solution bundle are entitled to the new content. If you are using BES 8.0
or Tivoli Endpoint Manager 8.1 and you are entitled to the new content,
you may use the License Overview dashboard to enable and gather the sites.
If you are running BES 7.x and you are currently licensed for Tivoli Endpoint
Manager for Security and Compliance, BigFix SCVM, BigFix SLM+SCVM, or BigFix
SCM v3, please contact ibmtemlicensing@lotus.com for access to the new
mastheads.</font>
<br>
<br>
<br><font size=2 face="sans-serif">We hope you find this latest release
of SCM content useful and effective. Thank you!</font>
<br>
<br><font size=2 face="sans-serif"> -- The Tivoli Endpoint Manager
for Security and Compliance product team</font>