Page is loading ...
F-Secure Policy
Manager 7.0
Administrator’s Guide
"F-Secure" and the triangle symbol are registered trademarks of F-Secure Corporation and F-Secure
product names and symbols/logos are either trademarks or registered trademarks of F-Secure
Corporation. All product names referenced herein are trademarks or registered trademarks of their
respective companies. F-Secure Corporation disclaims proprietary interest in the marks and names of
others. Although F-Secure Corporation makes every effort to ensure that this information is accurate,
F-Secure Corporation will not be liable for any errors or omission of facts contained herein. F-Secure
Corporation reserves the right to modify specifications cited in this document without prior notice.
Companies, names and data used in examples herein are fictitious unless otherwise noted. No part of
this document may be reproduced or transmitted in any form or by any means, electronic or
mechanical, for any purpose, without the express written permission of F-Secure Corporation.
This product may be covered by one or more F-Secure patents, including the following:
Copyright © 2007 F-Secure Corporation. All rights reserved. 12000013-7A12
GB2353372 GB2366691 GB2366692 GB2366693 GB2367933 GB2368233
GB2374260
iii
Contents
About This Guide 9
Overview ............................................................................................................................ 10
How This Guide is Organized ............................................................................................ 11
Conventions Used in F-Secure Guides.............................................................................. 13
Symbols .................................................................................................................... 13
Chapter 1 Introduction 15
1.1 Overview ....................................................................................................................16
1.2 Installation Order........................................................................................................18
1.3 Features.....................................................................................................................19
1.4 Policy-Based Management........................................................................................20
1.4.1 Management Information Base ......................................................................22
Chapter 2 System Requirements 24
2.1 F-Secure Policy Manager Server...............................................................................25
2.2 F-Secure Policy Manager Console ............................................................................27
Chapter 3 Installing F-Secure Policy Manager Server 29
3.1 Overview ....................................................................................................................30
3.2 Security Issues...........................................................................................................31
3.2.1 Installing F-Secure Policy Manager in High Security Environments...............32
3.3 Installation Steps........................................................................................................37
iv
3.4 Configuring F-Secure Policy Manager Server............................................................51
3.4.1 Changing the Communication Directory Path ................................................51
3.4.2 Changing the Ports Where the Server Listens for Requests..........................52
3.4.3 F-Secure Policy Manager Server Configuration Settings...............................53
3.5 Uninstalling F-Secure Policy Manager Server ...........................................................58
Chapter 4 CommDir Migration 60
4.1 Introduction ................................................................................................................61
4.2 Instructions.................................................................................................................61
Chapter 5 Installing F-Secure Policy Manager Console 64
5.1 Overview ....................................................................................................................65
5.2 Installation Steps........................................................................................................65
5.3 Uninstalling F-Secure Policy Manager Console.........................................................83
Chapter 6 Using F-Secure Policy Manager Console 84
6.1 Overview ....................................................................................................................85
6.2 F-Secure Policy Manager Console Basics.................................................................86
6.2.1 Logging In.......................................................................................................87
6.2.2 The User Interface..........................................................................................90
6.2.3 Policy Domain Pane.......................................................................................91
6.2.4 Properties Pane..............................................................................................92
6.2.5 Product View Pane.........................................................................................93
6.2.6 Messages Pane..............................................................................................99
6.2.7 The Toolbar..................................................................................................100
6.2.8 Menu Commands.........................................................................................102
6.3 F-Secure Client Security Management ....................................................................104
6.4 Managing Domains and Hosts.................................................................................104
6.4.1 Adding Policy Domains.................................................................................106
6.4.2 Adding Hosts................................................................................................107
6.4.3 Host Properties.............................................................................................112
6.5 Software Distribution................................................................................................115
6.5.1 F-Secure Push Installations..........................................................................117
6.5.2 Policy-Based Installation ..............................................................................124
v
6.5.3 Local Installation and Updates with Pre-Configured Packages....................129
6.5.4 Information Delivery......................................................................................133
6.6 Managing Policies....................................................................................................134
6.6.1 Settings.........................................................................................................134
6.6.2 Restrictions...................................................................................................135
6.6.3 Saving the Current Policy Data ....................................................................136
6.6.4 Distributing Policy Files ................................................................................136
6.6.5 Policy Inheritance.........................................................................................137
6.7 Managing Operations and Tasks .............................................................................140
6.8 Alerting.....................................................................................................................140
6.8.1 Viewing Alerts and Reports..........................................................................141
6.8.2 Configuring Alert Forwarding........................................................................142
6.9 Reporting Tool..........................................................................................................144
6.9.1 Policy Domain / Host Selector Pane.............................................................145
6.9.2 Report Type Selector Pane..........................................................................146
6.9.3 Report Pane .................................................................................................147
6.9.4 Bottom Pane.................................................................................................148
6.10 Preferences..............................................................................................................149
6.10.1 Connection-Specific Preferences.................................................................150
6.10.2 Shared Preferences......................................................................................153
Chapter 7 Maintaining F-Secure Policy Manager Server 155
7.1 Overview ..................................................................................................................156
7.2 Backing Up & Restoring F-Secure Policy Manager Console Data...........................156
7.3 Replicating Software Using Image Files ..................................................................159
Chapter 8 Updating F-Secure Virus Definition Databases 161
8.1 Automatic Updates with F-Secure Automatic Update Agent....................................162
8.2 Using the Automatic Update Agent..........................................................................164
8.2.1 Configuration................................................................................................164
8.2.2 How to Read the Log File.............................................................................165
8.3 Forcing the Update Agent to Check for New Updates Immediately.........................169
8.4 Updating the Databases Manually...........................................................................169
8.5 Troubleshooting .......................................................................................................170
vi
Chapter 9 F-Secure Policy Manager on Linux 171
9.1 Overview ..................................................................................................................172
9.1.1 Differences Between Windows and Linux....................................................172
9.1.2 Supported Distributions................................................................................172
9.2 Installation................................................................................................................172
9.2.1 Installing F-Secure Automatic Update Agent................................................173
9.2.2 Installing F-Secure Policy Manager Server..................................................174
9.2.3 Installing F-Secure Policy Manager Console................................................175
9.2.4 Installing F-Secure Policy Manager Web Reporting.....................................176
9.3 Configuration............................................................................................................177
9.4 Uninstallation............................................................................................................177
9.4.1 Uninstalling F-Secure Policy Manager Web Reporting ................................177
9.4.2 Uninstalling F-Secure Policy Manager Console...........................................178
9.4.3 Uninstalling F-Secure Policy Manager Server..............................................178
9.4.4 Uninstalling F-Secure Automatic Update Agent...........................................179
9.5 Frequently Asked Questions....................................................................................179
Chapter 10 Web Reporting 184
10.1 Overview ..................................................................................................................185
10.2 Introduction ..............................................................................................................185
10.3 Web Reporting Client System Requirements...........................................................186
10.4 Generating and Viewing Reports.............................................................................186
10.4.1 Required Browser Settings for Viewing Web Reports..................................186
10.4.2 Generating a Report.....................................................................................187
10.4.3 Creating a Printable Report..........................................................................189
10.4.4 Generating a Specific URL for Automated Report Generation.....................190
10.5 Maintaining Web Reporting......................................................................................190
10.5.1 Disabling Web Reporting..............................................................................191
10.5.2 Enabling Web Reporting...............................................................................191
10.5.3 Restricting or Allowing Wider Access to Web Reports.................................192
10.5.4 Changing the Web Reporting Port................................................................193
10.5.5 Creating a Backup Copy of the Web Reporting Database...........................194
10.5.6 Restoring the Web Reporting Database from a Backup Copy .....................194
10.5.7 Changing the Maximum Data Storage Time in the Web Reporting
Database......................................................................................................195
vii
10.6 Web Reporting Error Messages and Troubleshooting.............................................196
10.6.1 Error Messages............................................................................................196
10.6.2 Troubleshooting............................................................................................197
Chapter 11 F-Secure Policy Manager Proxy 199
11.1 Overview ..................................................................................................................200
11.2 Main Differences between Anti-Virus Proxy and Policy Manager Proxy..................200
Chapter 12 Troubleshooting 202
12.1 Overview ..................................................................................................................203
12.2 F-Secure Policy Manager Server and Console........................................................203
12.3 F-Secure Policy Manager Web Reporting................................................................208
12.4 Policy Distribution.....................................................................................................209
AppendixA SNMP Support 211
A.1 Overview................................................................................................................. 212
A.1.1 SNMP Support for F-Secure Management Agent........................................212
A.2 Installing F-Secure Management Agent with SNMP Support ..................................213
A.2.1 F-Secure SNMP Management Extension Installation ..................................213
A.3 Configuring The SNMP Master Agent......................................................................214
A.4 Management Information Base................................................................................215
AppendixB Ilaunchr Error Codes 216
B.1 Overview................................................................................................................. 217
B.2 Error Codes..............................................................................................................218
AppendixC FSII Remote Installation Error Codes 221
C.1 Overview ................................................................................................................. 222
C.2 Windows Error Codes..............................................................................................222
C.3 Error Messages........................................................................................................223
AppendixD Remote Installation Support for Windows 98/ME 225
D.1 Enabling Remote Administration............................................................................. 226
viii
AppendixE NSC Notation for Netmasks 228
E.1 Overview................................................................................................................. 229
Technical Support 231
Overview .......................................................................................................................... 232
Web Club .........................................................................................................................232
Virus Descriptions on the Web ................................................................................232
Advanced Technical Support ...........................................................................................232
F-Secure Technical Product Training ...............................................................................233
Training Program ....................................................................................................233
Contact Information .................................................................................................234
Glossary 235
About F-Secure Corporation
About This Guide 10
Overview
F-Secure Policy Manager provides tools for administering the following
F-Secure software products:
F-Secure Client Security
F-Secure Internet Gatekeeper
F-Secure VPN+
F-Secure Anti-Virus for
Workstations
Firewalls
File Servers
Microsoft Exchange
MIMEsweeper:
11
How This Guide is Organized
The F-Secure Policy Manager Administrator’s Guide is divided into the
following chapters.
Chapter 1. Introduction. Describes the architecture and components of
the policy-based management.
Chapter 2. System Requirements. Defines the software and hardware
requirement for F-Secure Policy Manager Console and F-Secure Policy
Manager Server.
Chapter 3. Installing F-Secure Policy Manager Server. Covers the
installation of F-Secure Policy Manager Server on the server machine.
Chapter 4. CommDir Migration. Contains instructions on how to do the
migration from CommDir to F-Secure Policy Manager Server based
system.
Chapter 5. Installing F-Secure Policy Manager Console. Covers the
installation of F-Secure Policy Manager Console applications on the
administrator’s workstation.
Chapter 6. Using F-Secure Policy Manager Console. Includes an
overview, setup procedures, the logon procedure, menu commands, and
basic tasks.
Chapter 7. Maintaining F-Secure Policy Manager Server. Covers backup
procedures and restoration routines.
Chapter 8. Updating F-Secure Virus Definition Databases. Describes the
various ways you can update your virus definition databases.
Chapter 9. F-Secure Policy Manager on Linux. Describes how to install
and manage F-Secure Policy Manager on Linux.
Chapter 10. Web Reporting. Describes how to use F-Secure Policy
Manager Web Reporting, a new enterprise-wide graphical reporting
system included in F-Secure Policy Manager Server.
Chapter 11. F-Secure Policy Manager Proxy. Contains a brief
introduction into F-Secure Policy Manager Proxy.
About This Guide 12
Chapter 12. Troubleshooting. Contains troubleshooting information and
frequently asked questions.
Appendix A. SNMP Support. Contains information about SNMP support.
Appendix B. Ilaunchr Error Codes. Contains a list of Ilaunchr error codes.
Appendix C. FSII Remote Installation Error Codes. Describes the most
common error codes and messages that can occur during the
Autodiscover Windows Hosts operation.
Appendix D. Remote Installation Support for Windows 98/ME. Offers
information on requirements for Windows 98/ME workstations to allow
FSII to work with them.
Appendix E. NSC Notation for Netmasks. Defines and offers information
on NSC notation for Netmasks.
Glossary — Explanation of terms
Technical Support — Web Club and contact information for assistance.
About F-Secure Corporation — Company background and products.
13
Conventions Used in F-Secure Guides
This section describes the symbols, fonts, and terminology used in this
manual.
Symbols
⇒ An arrow indicates a one-step procedure.
Fonts
Arial bold (blue) is used to refer to menu names and commands, to
buttons and other items in a dialog box.
Arial Italics (blue) is used to refer to other chapters in the manual, book
titles, and titles of other manuals.
Arial Italics (black) is used for file and folder names, for figure and table
captions, and for directory tree names.
Courier New is used for messages on your computer screen.
WARNING: The warning symbol indicates a situation with a
risk of irreversible destruction to data.
IMPORTANT: An exclamation mark provides important
information that you need to consider.
REFERENCE - A book refers you to related information on the
topic available in another document.
l
NOTE - A note provides additional information that you should
consider.
TIP - A tip provides information that can help you perform a task
more quickly or easily.
14
Courier New bold is used for information that you must type.
SMALL CAPS (BLACK) is used for a key or key combination on your
keyboard.
Arial underlined (blue)
is used for user interface links.
Arial italics is used for window and dialog box names.
PDF Document
This manual is provided in PDF (Portable Document Format). The PDF
document can be used for online viewing and printing using Adobe®
Acrobat® Reader. When printing the manual, please print the entire
manual, including the copyright and disclaimer statements.
For More Information
Visit F-Secure at http://www.f-secure.com for documentation, training
courses, downloads, and service and support contacts.
In our constant attempts to improve our documentation, we would
welcome your feedback. If you have any questions, comments, or
suggestions about this or any other F-Secure document, please contact
us at documentation@f-secure.com
.
15
1
INTRODUCTION
Overview..................................................................................... 16
Installation Order........................................................................ 18
Features..................................................................................... 19
Policy-Based Management......................................................... 20
CHAPTER 1 16
Introduction
1.1 Overview
F-Secure Policy Manager provides a scalable way to manage the security
of numerous applications on multiple operating systems, from one central
location. It can be used to keep security software up-to-date, manage
configurations, oversee enterprise compliance, and can be scaled to
handle even the largest, most mobile workforce. F-Secure Policy
Manager provides a tightly integrated infrastructure for defining security
policies, distributing policies and installing application software to local as
well as remote systems, and monitoring the activities of all systems in the
enterprise to ensure compliance with corporate policies and centralized
control.
The power of the F-Secure Policy Manager lays in the F-Secure
management architecture, which provides high scalability for a widely
distributed, mobile workforce. F-Secure Policy Manager is comprised of
F-Secure Policy Manager Console and F-Secure Policy Manager Server.
They are seamlessly integrated with the F-Secure Management Agent
that handles all management functions on local hosts.
Main Components of F-Secure Policy Manager
F-Secure Policy Manager Console provides a centralized management
console for the security of the managed hosts in the network. It enables
the administrator to organize the network into logical units for sharing
policies. These policies are defined in F-Secure Policy Manager Console
and then distributed to the workstations through the F-Secure Policy
Manager Server. F-Secure Policy Manager Console is a Java-based
application that can be run on several different platforms. It can be used
to remotely install the Management Agent on other workstations without
the need for local login scripts, restarting, or any intervention by the end
user.
F-Secure Automatic Update Agent can be installed as a part of
F-Secure Policy Manager Server.
17
F-Secure Policy Manager Server is the repository for policies and
software packages distributed by the administrator, and status information
and alerts sent by the managed hosts. It provides scalability by working
as an extension to the Apache web server. Communication between
F-Secure Policy Manager Server and the managed hosts is accomplished
through the standard HTTP protocol, which ensures trouble-free
performance on the LAN and WAN.
F-Secure Policy Manager Web Reporting is an enterprise-wide web
based graphical reporting system included in F-Secure Policy Manager
Server. With F-Secure Policy Manager Web Reporting you can quickly
create graphical reports based on historical trend data, identify computers
that are unprotected or vulnerable to virus outbreaks.
F-Secure Policy Manager Reporting Option is a stand-alone command
line program that, with an existing Communication Directory (CommDir) in
F-Secure Policy Manager Server, collects alert, status and property data
from the managed security domain or host of choice. F-Secure Policy
Manager Reporting Option allows users to generate reports concerning
the data from the Communication Directory in F-Secure Policy Manager
Server by using XSL templates (which are like predefined queries). These
reports can then be exported as files in HTML, XML, CSV or TXT file
format.
F-Secure Policy Manager Update Server & Agent are used for
updating virus and spyware definitions on the managed hosts. F-Secure
Automatic Update Agent allows users to receive automatic updates and
informational content without interrupting their work to wait for files to
download from the Web. F-Secure Automatic Update Agent downloads
files automatically in the background using bandwidth not being used by
other Internet applications, so the users can always be sure they will have
the latest updates without having to search the Web. If F-Secure
Automatic Update Agent is always connected to the Internet, it will
automatically receive new virus definition updates within about two hours
after they have been published by F-Secure.
F-Secure Management Agent enforces the security policies set by the
administrator on the managed hosts, and provides the end user with a
user interface and other services. It handles all management functions on
CHAPTER 1 18
Introduction
the local workstations and provides a common interface for all F-Secure
applications, and operates within the policy-based management
infrastructure.
VPN+ Certificate Wizard is an application for creating certificates for
F-Secure VPN+.
1.2 Installation Order
To install F-Secure Policy Manager, please follow this installation order
(unless you are installing F-Secure Policy Manager Server and F-Secure
Policy Manager Console on the same machine, in which case setup
installs all components during the same installation process):
1. F-Secure Policy Manager Server and F-Secure Policy Manager
Update Server & Agent,
2. F-Secure Policy Manager Console,
3. Managed point applications.
19
1.3 Features
Software Distribution
First-time installation on Windows domains with F-Secure Push
Installation.
Updating of executable files and data files, including virus
definition databases.
Support for policy-based updates. Policies force the F-Secure
Management Agent to perform updates on a host. Both policies
and software packages are signed, making the entire update
process strongly authenticated and secure.
Updates can be provided in several ways:
From the F-Secure CD.
From the F-Secure Web site to the customer. These can be
automatically ‘pushed’ by F-Secure Automatic Update Agent,
or voluntarily ‘pulled’ from the F-Secure website.
F-Secure Policy Manager Console can be used to export
pre-configured installation packages, which can also be delivered
using third-party software, such as SMS, and similar tools.
Configuration and Policy Management
Centralized configuration of security policies. The policies are
distributed from F-Secure Policy Manager Server by the
administrator to the user’s workstation. Integrity of the policies is
ensured through the use of digital signatures.
Event Management
Reporting through the Management API to the Event Viewer
(local and remote logs), SNMP agent, e-mail, report files, etc.
Event redirection through policies.
Event statistics.
CHAPTER 1 20
Introduction
Performance Management
Statistics and performance data handling and reporting.
Task Management
Management of virus scanning tasks and other operations.
1.4 Policy-Based Management
A security policy is a set of well-defined rules that regulate how sensitive
information and other resources are managed, protected, and distributed.
The management architecture of F-Secure software uses policies that are
centrally configured by the administrator for optimum control of security in
a corporate environment. Policy-based management implements many
functions:
Remotely controlling and monitoring the behavior of the products
Monitoring statistics provided by the products and the
Management Agent
Remotely starting predefined operations
Transmission of alerts and notifications from the products to the
system administrator
The information flow between F-Secure Policy Manager Console and the
hosts is accomplished by transferring policy files. There are three kinds of
policy files:
Default Policy files (.dpf)
Base Policy files (.bpf)
Incremental Policy files (.ipf)
The current settings of a product consist of all three policy file types:
/
