This page provides information about product lifecycle dates for IBM product versions and releases. (IBM Security SiteProtector System , IBM Security. To connect to SiteProtector for the first time, you must download, install, and start the SiteProtector Console on your computer. The SiteProtector System includes several components.

Author: Brajind Mecage
Country: Nicaragua
Language: English (Spanish)
Genre: Environment
Published (Last): 23 December 2011
Pages: 452
PDF File Size: 16.65 Mb
ePub File Size: 3.50 Mb
ISBN: 955-1-50256-701-4
Downloads: 48424
Price: Free* [*Free Regsitration Required]
Uploader: Arakasa

Installing and starting the SiteProtector Console

Notification categories were changed from severity levels to clearer descriptions: The Update Server eliminates the need to download updates for similar products more than once. To access the tool: The Event Archiver stores event data and improves system performance by reducing the number of events that the Site Database must store.

The content that they contained is integrated into the online help. Certificate changes and new Certificate Management tool. The “Manage Login and Sessions” permission now controls the following System Administration settings: The Event Collector manages events from sensors and vulnerability data from scanners in real time.

Dual Authorization and quarantine rules Dual authorization is now available for creating, promoting, enabling, and disabling quarantine rules. Siteproector the Console timeout settings in Session Management Configuring maximum concurrent Ssiteprotector sessions in Session Management Configuring login banner options in Login Settings Monitoring active sessions in Active Sessions By default, the “Manage Login ihm Sessions” permission is assigned to the Administrator user group.

SecureSync is an optional component and requires a separate license. Download and install the Certificate Management tool. Archive integrity is checked when you import archived events. The integrity of audit events is also protected and is now shown in audit reports. Due to the way event data is summarized, there can be a difference between summary event data and detailed event data.


SiteProtector System components

The SecurityFusion Module increases your ability to quickly identify and stieprotector to critical threats on your Site. The SecureSync component provides a structured method for implementing a failover and disaster recovery solution for the SiteProtector System. The SiteProtector Core includes these components: Sensor controller Manages the command and control activities of agents, such as the command to start or to stop collecting events.

Dual authorization, introduced in SiteProtector version 3. Health check alert for the Siteprofector Manager when certificates are close to expiring Health check alert for the X-Press Update Server when certificates are close to expiring Notifications about certificate expiration health checks can be set to repeat periodically.

Usage instructions are included with the Certificate Management tool. An Agent Manager is installed automatically with the Express and the Recommended installation options. If you run the Console without administrator rights, and you attempt an action that requires those rights, you must authenticate before you perform the action. The SiteProtector System is now supported on: You monitor events, schedule scans, generate reports, and configure agents from the Ubm. By default, the “Manage Email Settings” permission is assigned to the Administrator and Analyst user groups.

If your time zone has a minute offset, you can now specify that offset to improve the consistency of the reported summary and detailed event data. Dual authorization is now available for creating, promoting, enabling, and disabling quarantine rules. Agent Manager This topic describes the Agent Manager. The Agent Manager does the following things: Siteprotecfor can now run the SiteProtector Console without having administrator rights.


Installing and starting the SiteProtector Console

There is a new “Manage Email Settings” permission that controls whether you can specify an email server or configure email notifications. Archive integrity is now enforced for archived events and for the Event Archiver. Also, any communication session that fails due to a revoked certificate is now logged.

Single sign-on and two-factor authentication You can now configure SiteProtector to use your Windows credentials to log you in to SiteProtector.

Informational, Health warning, and Health failure. The existing, manually configured, two-factor authentication takes precedence over the new Windows authentication feature. The SecurityFusion Module uses advanced analysis techniques and escalates high-impact attacks to help you focus on the most important attack activity. The SiteProtector report options include graphical summary and compliance information that managers need to assess the state of their security. The Site Database SiteProtector database stores raw agent data, occurrence metrics statistics for security events that are triggered by agentsgroup information, command and control data, and the status of X-Press Updates XPUs.

The Console is the main user interface for the SiteProtector System.

SiteProtector System components

If you use two-factor authentication but want to use Windows authentication instead, archive and remove the existing authentication. You can now explicitly check for revoked certificates. New health checks The following health checks are new: The Welcome page for the online help now includes new links: