F-SECURE POLICY MANAGER 8.0 Administrator's Manual

F-Secure Policy

Manager 8.0

Administrator’s Guide

"F-Secure" and the triangle symbol are registered trademarks of F-Secure Corporation and F-

Secure product names and symbols/logos are either trademarks or registered trademarks of F-

Secure Corporation. All product names referenced herein are trademarks or registered

trademarks of their respective companies. F-Secure Corporation disclaims proprietary interest in

the marks and names of others. Although F-Secure Corporation makes every effort to ensure that

this information is accurate, F-Secure Corporation will not be liable for any errors or omission of

facts contained herein. F-Secure Corporation reserves the right to modify specifications cited in

this document without prior notice.

Companies, names and data used in examples herein are fictitious unless otherwise noted. No

part of this document may be reproduced or transmitted in any form or by any means, electronic or

mechanical, for any purpose, without the express written permission of F-Secure Corporation.

This product may be covered by one or more F-Secure patents, including the following:

GB2353372 GB2366691 GB2366692 GB2366693 GB2367933 GB2368233

GB2374260

iii

Contents

About This Guide 9

Overview ............................................................................................................................ 10

How This Guide is Organized ............................................................................................ 11

Conventions Used in F-Secure Guides.............................................................................. 13

Symbols .................................................................................................................... 13

Chapter 1 Introduction 15

1.1 Overview ....................................................................................................................16

1.2 Installation Order........................................................................................................ 17

1.3 Features .....................................................................................................................18

1.4 Policy-Based Management ........................................................................................ 19

1.4.1 Management Information Base ............................................................ 21

Chapter 2 System Requirements 23

2.1 F-Secure Policy Manager Server ...............................................................................24

2.2 F-Secure Policy Manager Console ............................................................................25

Chapter 3 Installing F-Secure Policy Manager Server 26

3.1 Overview ....................................................................................................................27

3.2 Security Issues...........................................................................................................28

3.2.1 Installing F-Secure Policy Manager in High Security Environments ...... 28

3.3 Installation Steps........................................................................................................ 34

3.4 Configuring F-Secure Policy Manager Server............................................................ 47

iv

3.4.1 Changing the Communication Directory Path ....................................... 47

3.4.2 Changing the Ports Where the Server Listens for Requests ................. 48

3.4.3 F-Secure Policy Manager Server Configuration Settings ...................... 49

3.5 Uninstalling F-Secure Policy Manager Server ........................................................... 54

Chapter 4 Installing F-Secure Policy Manager Console 56

4.1 Overview ....................................................................................................................57

4.2 Installation Steps........................................................................................................ 57

4.3 Uninstalling F-Secure Policy Manager Console.........................................................73

Chapter 5 Using F-Secure Policy Manager Console 74

5.1 Overview ....................................................................................................................75

5.2 F-Secure Policy Manager Console Basics.................................................................76

5.2.1 Logging In ........................................................................................... 77

5.2.2 F-Secure Client Security Management ................................................. 80

5.2.3 The Advanced Mode User Interface ..................................................... 81

5.2.4 Policy Domain Pane ............................................................................ 82

5.2.5 Properties Pane................................................................................... 82

5.2.6 Product View Pane .............................................................................. 83

5.2.7 Messages Pane................................................................................... 90

5.2.8 The Toolbar......................................................................................... 90

5.2.9 Menu Commands ................................................................................ 92

5.3 Managing Domains and Hosts ...................................................................................94

5.3.1 Adding Policy Domains ........................................................................ 96

5.3.2 Adding Hosts ....................................................................................... 97

5.3.3 Host Properties ................................................................................. 102

5.4 Software Distribution ................................................................................................104

5.4.1 F-Secure Push Installations ............................................................... 106

5.4.2 Policy-Based Installation ................................................................... 112

5.4.3 Local Installation and Updates with Pre-Configured Packages ........... 116

5.4.4 Information Delivery .......................................................................... 120

5.5 Managing Policies .................................................................................................... 120

5.5.1 Settings............................................................................................. 121

5.5.2 Restrictions ....................................................................................... 121

5.5.3 Saving the Current Policy Data .......................................................... 123

5.5.4 Distributing Policy Files ..................................................................... 123

v

5.5.5 Policy Inheritance .............................................................................. 123

5.6 Managing Operations and Tasks .............................................................................126

5.7 Alerting .....................................................................................................................126

5.7.1 Viewing Alerts and Reports................................................................ 126

5.7.2 Configuring Alert Forwarding ............................................................. 128

5.8 Reporting Tool.......................................................................................................... 129

5.8.1 Policy Domain / Host Selector Pane................................................... 130

5.8.2 Report Type Selector Pane................................................................ 131

5.8.3 Report Pane ...................................................................................... 132

5.8.4 Bottom Pane ..................................................................................... 133

5.9 Preferences..............................................................................................................133

5.9.1 Connection-Specific Preferences ....................................................... 134

5.9.2 Shared Preferences........................................................................... 137

Chapter 6 Maintaining F-Secure Policy Manager Server 139

6.1 Overview ..................................................................................................................140

6.2 Backing Up & Restoring F-Secure Policy Manager Console Data...........................140

6.3 Replicating Software Using Image Files ..................................................................143

Chapter 7 Updating F-Secure Virus Definition Databases 145

7.1 Automatic Updates with F-Secure Automatic Update Agent....................................146

7.2 Using the Automatic Update Agent ..........................................................................148

7.2.1 Configuration..................................................................................... 148

7.2.2 How to Read the Log File .................................................................. 149

7.3 Forcing the Update Agent to Check for New Updates Immediately.........................153

7.4 Updating the Databases Manually ...........................................................................153

7.5 Troubleshooting .......................................................................................................154

Chapter 8 F-Secure Policy Manager on Linux 155

8.1 Overview ..................................................................................................................156

8.1.1 Differences Between Windows and Linux........................................... 156

8.1.2 Supported Distributions ..................................................................... 156

8.2 Installation ................................................................................................................157

8.2.1 Installing F-Secure Automatic Update Agent ...................................... 157

vi

8.2.2 Installing F-Secure Policy Manager Server ........................................ 158

8.2.3 Installing F-Secure Policy Manager Console ...................................... 159

8.2.4 Installing F-Secure Policy Manager Web Reporting............................ 160

8.3 Configuration............................................................................................................161

8.4 Uninstallation............................................................................................................ 161

8.4.1 Uninstalling F-Secure Policy Manager Web Reporting........................ 161

8.4.2 Uninstalling F-Secure Policy Manager Console .................................. 162

8.4.3 Uninstalling F-Secure Policy Manager Server .................................... 162

8.4.4 Uninstalling F-Secure Automatic Update Agent .................................. 163

8.5 Frequently Asked Questions ....................................................................................163

Chapter 9 Web Reporting 168

9.1 Overview ..................................................................................................................169

9.2 Introduction .............................................................................................................. 169

9.3 Web Reporting Client System Requirements........................................................... 170

9.4 Generating and Viewing Reports .............................................................................170

9.4.1 Required Browser Settings for Viewing Web Reports ......................... 170

9.4.2 Generating a Report .......................................................................... 171

9.4.3 Creating a Printable Report ............................................................... 173

9.4.4 Generating a Specific URL for Automated Report Generation ............ 173

9.5 Maintaining Web Reporting......................................................................................174

9.5.1 Disabling Web Reporting ................................................................... 174

9.5.2 Enabling Web Reporting .................................................................... 174

9.5.3 Restricting or Allowing Wider Access to Web Reports ........................ 175

9.5.4 Changing the Web Reporting Port...................................................... 176

9.5.5 Creating a Backup Copy of the Web Reporting Database................... 177

9.5.6 Restoring the Web Reporting Database from a Backup Copy ............. 177

9.5.7 Changing the Maximum Data Storage Time in the Web Reporting

Database .......................................................................................... 178

9.6 Web Reporting Error Messages and Troubleshooting .............................................179

9.6.1 Error Messages ................................................................................. 179

9.6.2 Troubleshooting................................................................................. 180

Chapter 10 F-Secure Policy Manager Proxy 182

10.1 Overview ..................................................................................................................183

vii

Chapter 11 Troubleshooting 184

11.1 Overview ..................................................................................................................185

11.2 F-Secure Policy Manager Server and Console........................................................185

11.3 F-Secure Policy Manager Web Reporting................................................................190

11.4 Policy Distribution.....................................................................................................191

Appendix A SNMP Support 193

A.1 Overview ................................................................................................................. 194

A.1.1 SNMP Support for F-Secure Management Agent ........................................194

A.2 Installing F-Secure Management Agent with SNMP Support ..................................195

A.2.1 F-Secure SNMP Management Extension Installation ..................................195

A.3 Configuring The SNMP Master Agent......................................................................196

A.4 Management Information Base ................................................................................197

Appendix B Ilaunchr Error Codes 198

B.1 Overview ................................................................................................................. 199

B.2 Error Codes..............................................................................................................200

Appendix C FSII Remote Installation Error Codes 203

C.1 Overview ................................................................................................................. 204

C.2 Windows Error Codes ..............................................................................................204

C.3 Error Messages........................................................................................................ 205

Appendix D NSC Notation for Netmasks 207

D.1 Overview ................................................................................................................. 208

Technical Support 210

Overview .......................................................................................................................... 211

Web Club .........................................................................................................................211

Virus Descriptions on the Web................................................................................ 211

Advanced Technical Support ...........................................................................................211

F-Secure Technical Product Training ...............................................................................212

Training Program .................................................................................................... 212

viii

Contact Information................................................................................................. 213

Glossary 214

About F-Secure Corporation

9

ABOUT THIS GUIDE

Overview.................................................................................... 10

How This Guide is Organized..................................................... 11

10

Overview

F-Secure Policy Manager provides tools for administering the following

F-Secure software products:

 F-Secure Client Security

 F-Secure Internet Gatekeeper for Windows

 F-Secure Anti-Virus for

Windows Workstations

Windows Servers

Citrix Servers

Microsoft Exchange

MIMEsweeper

 F-Secure Linux Security

 F-Secure Linux Client Security

 F-Secure Linux Server Security

 F-Secure Policy Manager Proxy.

About This Guide 11

How This Guide is Organized

The F-Secure Policy Manager Administrator’s Guide is divided into the

following chapters.

Chapter 1. Introduction. Describes the architecture and components of

the policy-based management.

Chapter 2. System Requirements. Defines the software and hardware

requirement for F-Secure Policy Manager Console and F-Secure Policy

Manager Server.

Chapter 3. Installing F-Secure Policy Manager Server. Covers the

installation of F-Secure Policy Manager Server on the server machine.

Chapter 4. Installing F-Secure Policy Manager Console. Covers the

installation of F-Secure Policy Manager Console applications on the

administrator’s workstation.

Chapter 5. Using F-Secure Policy Manager Console. Includes an

overview, setup procedures, the logon procedure, menu commands, and

basic tasks.

Chapter 6. Maintaining F-Secure Policy Manager Server. Covers backup

procedures and restoration routines.

Chapter 7. Updating F-Secure Virus Definition Databases. Describes the

various ways you can update your virus definition databases.

Chapter 8. F-Secure Policy Manager on Linux. Describes how to install

and manage F-Secure Policy Manager on Linux.

Chapter 9. Web Reporting. Describes how to use F-Secure Policy

Manager Web Reporting, a new enterprise-wide graphical reporting

system included in F-Secure Policy Manager Server.

Chapter 10. F-Secure Policy Manager Proxy. Contains a brief

introduction into F-Secure Policy Manager Proxy.

Chapter 11. Troubleshooting. Contains troubleshooting information and

frequently asked questions.

Appendix A. SNMP Support. Contains information about SNMP support.

Appendix B. Ilaunchr Error Codes. Contains a list of Ilaunchr error codes.

12

Appendix C. FSII Remote Installation Error Codes. Describes the most

common error codes and messages that can occur during the

Autodiscover Windows Hosts operation.

Appendix D. NSC Notation for Netmasks. Defines and offers information

on NSC notation for Netmasks.

Glossary — Explanation of terms

Technical Support — Web Club and contact information for assistance.

About F-Secure Corporation — Company background and products.

13

Conventions Used in F-Secure Guides

This section describes the symbols, fonts, and terminology used in this

manual.

Symbols

⇒ An arrow indicates a one-step procedure.

Fonts

Arial bold (blue) is used to refer to menu names and commands, to

buttons and other items in a dialog box.

Arial Italics (blue) is used to refer to other chapters in the manual, book

titles, and titles of other manuals.

Arial Italics (black) is used for file and folder names, for figure and table

captions, and for directory tree names.

Courier New is used for messages on your computer screen.

WARNING: The warning symbol indicates a situation with a

risk of irreversible destruction to data.

IMPORTANT: An exclamation mark provides important information

that you need to consider.

REFERENCE - A book refers you to related information on the

topic available in another document.

l

NOTE - A note provides additional information that you should

consider.

TIP - A tip provides information that can help you perform a task

more quickly or easily.

14

Courier New bold is used for information that you must type.

SMALL CAPS (BLACK) is used for a key or key combination on your

keyboard.

Arial underlined (blue)

is used for user interface links.

Arial italics is used for window and dialog box names.

PDF Document

This manual is provided in PDF (Portable Document Format). The PDF

document can be used for online viewing and printing using Adobe®

Acrobat® Reader. When printing the manual, please print the entire

manual, including the copyright and disclaimer statements.

For More Information

Visit F-Secure at http://www.f-secure.com for documentation, training

courses, downloads, and service and support contacts.

In our constant attempts to improve our documentation, we would

welcome your feedback. If you have any questions, comments, or

suggestions about this or any other F-Secure document, please contact

us at documentation@f-secure.com

.

15

1

INTRODUCTION

Overview..................................................................................... 16

Installation Order ........................................................................ 17

Features ..................................................................................... 18

Policy-Based Management......................................................... 19

16

1.1 Overview

F-Secure Policy Manager provides a scalable way to manage the security

of numerous applications on multiple operating systems, from one central

location. It can be used to keep security software up-to-date, manage

configurations, oversee enterprise compliance, and can be scaled to

handle even the largest, most mobile workforce. F-Secure Policy

Manager provides a tightly integrated infrastructure for defining security

policies, distributing policies and installing application software to local as

well as remote systems, and monitoring the activities of all systems in the

enterprise to ensure compliance with corporate policies and centralized

control.

The power of the F-Secure Policy Manager lays in the F-Secure

management architecture, which provides high scalability for a widely

distributed, mobile workforce. F-Secure Policy Manager is comprised of

F-Secure Policy Manager Console and F-Secure Policy Manager Server.

They are seamlessly integrated with the F-Secure Management Agent

that handles all management functions on local hosts.

Main Components of F-Secure Policy Manager

F-Secure Policy Manager Console provides a centralized management

console for the security of the managed hosts in the network. It enables

the administrator to organize the network into logical units for sharing

policies. These policies are defined in F-Secure Policy Manager Console

and then distributed to the workstations through the F-Secure Policy

Manager Server. F-Secure Policy Manager Console is a Java-based

application that can be run on several different platforms. It can be used

to remotely install the Management Agent on other workstations without

the need for local login scripts, restarting, or any intervention by the end

user.

F-Secure Policy Manager Server is the repository for policies and

software packages distributed by the administrator, and status information

and alerts sent by the managed hosts. It provides scalability by working

as an extension to the Apache web server. Communication between

CHAPTER 1 17

Introduction

F-Secure Policy Manager Server and the managed hosts is accomplished

through the standard HTTP protocol, which ensures trouble-free

performance on the LAN and WAN.

F-Secure Policy Manager Web Reporting is an enterprise-wide web

based graphical reporting system included in F-Secure Policy Manager

Server. With F-Secure Policy Manager Web Reporting you can quickly

create graphical reports based on historical trend data, identify computers

that are unprotected or vulnerable to virus outbreaks.

F-Secure Policy Manager Update Server & Agent are used for

updating virus and spyware definitions on the managed hosts. F-Secure

Automatic Update Agent allows users to receive automatic updates and

informational content without interrupting their work to wait for files to

download from the Web. F-Secure Automatic Update Agent downloads

files automatically in the background using bandwidth not being used by

other Internet applications, so the users can always be sure they will have

the latest updates without having to search the Web. If F-Secure

Automatic Update Agent is always connected to the Internet, it will

automatically receive new virus definition updates within about two hours

after they have been published by F-Secure.

F-Secure Management Agent enforces the security policies set by the

administrator on the managed hosts, and provides the end user with a

user interface and other services. It handles all management functions on

the local workstations and provides a common interface for all F-Secure

applications, and operates within the policy-based management

infrastructure.

1.2 Installation Order

To install F-Secure Policy Manager, please follow this installation order

(unless you are installing F-Secure Policy Manager Server and F-Secure

Policy Manager Console on the same machine, in which case setup

installs all components during the same installation process):

1. F-Secure Policy Manager Server and F-Secure Policy Manager

Update Server & Agent,

2. F-Secure Policy Manager Console,

18

3. Managed point applications.

1.3 Features

Software Distribution

 First-time installation on Windows domains with F-Secure Push

Installation.

 Updating of executable files and data files, including virus

definition databases.

 Support for policy-based updates. Policies force the F-Secure

Management Agent to perform updates on a host. Both policies

and software packages are signed, making the entire update

process strongly authenticated and secure.

 Updates can be provided in several ways:

 From the F-Secure CD.

 From the F-Secure Web site to the customer. These can be

automatically ‘pushed’ by F-Secure Automatic Update Agent,

or voluntarily ‘pulled’ from the F-Secure website.

 F-Secure Policy Manager Console can be used to export

pre-configured installation packages, which can also be delivered

using third-party software, such as SMS, and similar tools.

Configuration and Policy Management

 Centralized configuration of security policies. The policies are

distributed from F-Secure Policy Manager Server by the

administrator to the user’s workstation. Integrity of the policies is

ensured through the use of digital signatures.

CHAPTER 1 19

Introduction

Event Management

 Reporting through the Management API to the Event Viewer

(local and remote logs), SNMP agent, e-mail, report files, etc.

 Event redirection through policies.

 Event statistics.

Performance Management

 Statistics and performance data handling and reporting.

Task Management

 Management of virus scanning tasks and other operations.

1.4 Policy-Based Management

A security policy is a set of well-defined rules that regulate how sensitive

information and other resources are managed, protected, and distributed.

The management architecture of F-Secure software uses policies that are

centrally configured by the administrator for optimum control of security in

a corporate environment. Policy-based management implements many

functions:

 Remotely controlling and monitoring the behavior of the products

 Monitoring statistics provided by the products and the

Management Agent

 Remotely starting predefined operations

 Transmission of alerts and notifications from the products to the

system administrator

20

The information flow between F-Secure Policy Manager Console and the

hosts is accomplished by transferring policy files. There are three kinds of

policy files:

 Default Policy files (.dpf)

 Base Policy files (.bpf)

 Incremental Policy files (.ipf)

The current settings of a product consist of all three policy file types:

Default Policy Files

The Default Policy file contains the default values (the factory settings) for

a single product that are installed by the setup. Default policies are used

only on the host. If neither the Base Policy file nor the Incremental Policy

file contains an entry for a variable, then the value is taken from the

Default Policy file. New product versions get new versions of the Default

Policy file.

Base Policy Files

Base Policy files contain the administrative settings and restrictions for all

the variables for all F-Secure products on a specific host (With domain

level policies, a group of hosts may share the same file). A Base Policy

file is signed by F-Secure Policy Manager Console, protecting the file

against changes while it is passing through the network and while it is

stored in the host’s file system. These files are sent from F-Secure Policy

Manager Console to the F-Secure Policy Manager Server. The host

periodically polls for new policies created by F-Secure Policy Manager

Console.

Incremental Policy Files

Incremental Policy files are used to store local changes to the Base

Policy. Only changes that fall within the limits specified in the Base Policy

are allowed. The Incremental Policy files are then periodically sent to

F-Secure Policy Manager Console so that current settings and statistics

can be viewed by the administrator.

Page is loading ...

F-SECURE POLICY MANAGER 8.0 Administrator's Manual

F-SECURE POLICY MANAGER 8.0 Administrator's Manual

Related papers

Other documents