IT Briefing Agenda 1/20/05

Information Technology at Emory

Information Technology DivisionTechnical Services

IT Briefing Agenda 12005

bull iCommand amp Remedy Update

bull SESA Overview amp Demobull Win rsquo98 Supportbull OID Update amp Demo bull Security Scan Demobull NetCom (Wireless)

Update

bull Karen Jenkins

bull Craig Myersbull Stu Lipkin bull Mark Partenbull Andy Eftingbull Paul Petersen


Symantec Enterprise Security Architecture

Craig MyersITD Client Services Development




Presentation Outlinebull Desktop Antivirusbull Managed Antivirusbull SESA bull Event Manager for AVbull SESA and Event Managerbull Diagrams and Demobull Real-world Experiences by Derek

Spransy



AntiVirusSpring 2005Symantec Antivirus Corporate Editionversion 9021000

Norton Antivirus for Macintosh (with ldquononagrdquo)version 903 (6)



Managed AV

`` `

`

bullSupport thousands of PCsbullPCs get Virus Definitions from Server andor via LiveUpdatebullEvents are logged by the Parent ServerbullQuick display of current versions which definitions are in use last scan performed and virus alertsbullCan schedule scans without user being logged inbullCan configure client settings per machine or by groupbullWith Alert Management Service (AMS) can get email when a machine gets a virusbullLacks reporting hellip



Managed AVbull Managed AV

ndash Campus parent server available to departmental servers for updates

ndash Virus definitions updated hourly via Intelligent Updates

ndash Investigating installing a managed facultystaff server andor student server to provide management to campus entities without a local managed AV server hellip thoughts



SESAbull Scalable solution that integrates

multiple Symantec Security and third party products

bull Provides granular alerting of eventsbull Query filter and sort data for

charting and reportingbull Relatively new still growing



SESA Architecture



Event Manager for Antivirusbull SESA integration productbull Enables centralized cross-tier

logging alerting and reporting between the SESA event management system and Symantec Antivirus



SESA with Event Manager

SESA Datastor

e

AV Server AV ServerConsole

SESA Manager

Oracle

bullCollector on each parent AV server passes logged data to the SESA Manager via an Agent

bullThe Manager stores the event data into the Data store

bullThe Manager uses a directory to manage the devices users and permissions

bullAccess to the Manager is through a SESA console which is java based

bullAll SESA components are Java based except the Data store and Directory (Oracle and DB2)



SESA DEMO



SESA Requirementsbull Prerequisites

ndash Department must be running Symantec AV Server version 9 or better

ndash Must allow Java SDK 131_09 to be installed ndash Departmental server must be win32-based (ie

Win2K XP 2003) ndash Must have a designated contact

bull ITD Responsibilities ndash Create an OU and an access account ndash Provide on-site installation assistance ndash Provide on-site training at the time of installation

Install and training take about 1 hour and does not require a server reboot



SESA Procedurebull ESR Form Method

ndash Go to the Electronic Support Request (ESR) form httphelpemoryedu

ndash Login using your campus id and password ndash Select the General Emory Helpdesk ndash Select the Request Type of General Other ndash Use Please add my managed AV server to

SESA in the Additional Details box



SESA Procedure (cont)bull Magic Method

ndash Create a new incident using your name ndash Set Subject to Software ndash Enter Please add my managed AV server

to SESA in the incident description ndash Assign the call to

EU_ITD_CLIENT_SERVICES_TIER_2 queue bull Someone from CSD will respond to your

request within three business days bull We will verify the prerequisites and

setup an installation time



SESA

QuestionsQuestions


Client Services Update

Stu Lipkin



Discontinuing Support For Windows 98 and Mac OS 9

bull Mainstream support from MS ceased for these products June 30 2002 and December 31 2003 Fee-for-service extended support is available but no future development is planned for these products Microsoft will only provide critical security updates for above products posted on the Windows Update web site Hotfixes for non-critical updates will be available on request only

bull No further development and support for Mac OS 9x is indicated from Apple Mac OS 102 is the recommended platform for Apple computers



Windows 98 Support from Microsoft

OPERATING SYSTEM

bull Windows 98bull Windows 98 SEbull Windows ME

END OF SUPPORT

bull June 30 2002bull June 30 2002bull December 31

2003Only paid incident support is available until December 31 2006httpsupportmicrosoftcomdefaultaspxscid=fh[ln]LifeWinhttpsupportmicrosoftcomgplifean1



Proposed End of Supportbull We propose to end support for

Mac OS 9x Windows 98 98 SE and Windows ME on May 31st 2005



Impact of discontinuation of stated OS support

bull No phone or desktop support from ITD would be provided for customers running Win 98 Win 98 2nd ed ME Mac OS 9x

bull No support provided for ITD applications running on stated OS

bull Development of installers would not be written for above OS

bull Enterprise applications and continuing development would not need to consider the above OSes as included in the technical specifications



Impactbull There should be no immediate effect on

users There is no immediate plan to change services so that they are incompatible with these Windows and Macintosh Operating Systems

bull Users should expect that newer applications introduced in the preceding months may not operate on older systems and may require Windows 2000 or Mac OS 102 or higher



Proposed Communication Plan

bull present at IT Briefing January 2005bull present at Desknet in January 2005bull prepare announcement to end users mid-Februarybull post announcement in ERWheel FebruaryMarchbull email to Local-l All-emory various Learnlink

conferences (LL Demigods SCC Technology and Emory Announcements) last business day of Jan Feb Mar Apr

bull post on defined page on itemoryeduDesktop Computing


Oracle Names to Oracle Internet DirectoryMark Parten


Self-Service Vulnerability Scanning

A new service from your ITD Security Team



Introductionbull Utilizes the Nessus Vulnerability Scanning

Toolbull Specifically for use by System Administrators

and Local Support Personnelbull Can scan both desktop and server machinesbull Reports vulnerabilities and gives possible

solutions fixes



Getting Startedbull For more information on requesting the

ability to do a Self-Service Scan go to the following URL

httpitemoryedushowdoccfmdocid=4248

bull The ITD Security Team will work with System Administrators and Local Support Personnel to get them set up and scanning once a request has been received



OverviewNetwork Vulnerability Scanning Self-Service

Overview FAQ

ITD Security offers Network Vulnerability Scanning Self-Service using Nessus from a centralized scanning server in the DMZ To request the ability to scan your network please send the following information to the security team at SecurityTeam-Llistservemoryedu 1 Name and organization you support2 The IP address range on your network that you would like to scan3 Phone number and e-mail address4 Your network ID

We will confirm this information send a link for the latest Nessus scanning client and provide a password to use when you connect to the system



How tobull Use GUI to connect to the Scanning

Serverbull Use network ID and Nessus

password to authenticatebull Create scan session (which nodes

options etc)bull Run scan view results create report



Documentation

Can be found at

httpwwwnessusorgdocumentation



Self-Service Scanning

QuestionsQuestions



NetCom

QuestionsQuestions



Symantec Enterprise Security Architecture Presentation Outline

AntiVirus Spring 2005

Managed AV

Slide 6

SESA

SESA Architecture

Event Manager for Antivirus


SESA DEMO

SESA Requirements

SESA Procedure

SESA Procedure (cont)

Slide 15




Proposed End of Support


Impact


Oracle Names to Oracle Internet Directory


Introduction

Getting Started

Overview

How to

Documentation


NetCom



Craig MyersITD Client Services Development





Spransy







Managed AV

`` `

`
















SESA Architecture








SESA Datastor

e


SESA Manager

Oracle








SESA DEMO

























SESA

QuestionsQuestions



Stu Lipkin









OPERATING SYSTEM


END OF SUPPORT



































solutions fixes










Overview FAQ











Documentation

Can be found at





QuestionsQuestions



NetCom

QuestionsQuestions





Managed AV

Slide 6

SESA

SESA Architecture



SESA DEMO

SESA Requirements

SESA Procedure


Slide 15






Impact




Introduction

Getting Started

Overview

How to

Documentation


NetCom





Spransy







Managed AV

`` `

`
















SESA Architecture








SESA Datastor

e


SESA Manager

Oracle








SESA DEMO

























SESA

QuestionsQuestions



Stu Lipkin









OPERATING SYSTEM


END OF SUPPORT



































solutions fixes










Overview FAQ











Documentation

Can be found at





QuestionsQuestions



NetCom

QuestionsQuestions





Managed AV

Slide 6

SESA

SESA Architecture



SESA DEMO

SESA Requirements

SESA Procedure


Slide 15






Impact




Introduction

Getting Started

Overview

How to

Documentation


NetCom







Managed AV

`` `

`
















SESA Architecture








SESA Datastor

e


SESA Manager

Oracle








SESA DEMO

























SESA

QuestionsQuestions



Stu Lipkin









OPERATING SYSTEM


END OF SUPPORT



































solutions fixes










Overview FAQ











Documentation

Can be found at





QuestionsQuestions



NetCom

QuestionsQuestions





Managed AV

Slide 6

SESA

SESA Architecture



SESA DEMO

SESA Requirements

SESA Procedure


Slide 15






Impact




Introduction

Getting Started

Overview

How to

Documentation


NetCom















SESA Architecture








SESA Datastor

e


SESA Manager

Oracle








SESA DEMO

























SESA

QuestionsQuestions



Stu Lipkin









OPERATING SYSTEM


END OF SUPPORT



































solutions fixes










Overview FAQ











Documentation

Can be found at





QuestionsQuestions



NetCom

QuestionsQuestions





Managed AV

Slide 6

SESA

SESA Architecture



SESA DEMO

SESA Requirements

SESA Procedure


Slide 15






Impact




Introduction

Getting Started

Overview

How to

Documentation


NetCom








SESA Datastor

e


SESA Manager

Oracle








SESA DEMO

























SESA

QuestionsQuestions



Stu Lipkin









OPERATING SYSTEM


END OF SUPPORT



































solutions fixes










Overview FAQ











Documentation

Can be found at





QuestionsQuestions



NetCom

QuestionsQuestions





Managed AV

Slide 6

SESA

SESA Architecture



SESA DEMO

SESA Requirements

SESA Procedure


Slide 15






Impact




Introduction

Getting Started

Overview

How to

Documentation


NetCom



SESA DEMO

























SESA

QuestionsQuestions



Stu Lipkin









OPERATING SYSTEM


END OF SUPPORT



































solutions fixes










Overview FAQ











Documentation

Can be found at





QuestionsQuestions



NetCom

QuestionsQuestions





Managed AV

Slide 6

SESA

SESA Architecture



SESA DEMO

SESA Requirements

SESA Procedure


Slide 15






Impact




Introduction

Getting Started

Overview

How to

Documentation


NetCom

























SESA

QuestionsQuestions



Stu Lipkin









OPERATING SYSTEM


END OF SUPPORT



































solutions fixes










Overview FAQ











Documentation

Can be found at





QuestionsQuestions



NetCom

QuestionsQuestions





Managed AV

Slide 6

SESA

SESA Architecture



SESA DEMO

SESA Requirements

SESA Procedure


Slide 15






Impact




Introduction

Getting Started

Overview

How to

Documentation


NetCom



Stu Lipkin









OPERATING SYSTEM


END OF SUPPORT



































solutions fixes










Overview FAQ











Documentation

Can be found at





QuestionsQuestions



NetCom

QuestionsQuestions





Managed AV

Slide 6

SESA

SESA Architecture



SESA DEMO

SESA Requirements

SESA Procedure


Slide 15






Impact




Introduction

Getting Started

Overview

How to

Documentation


NetCom









OPERATING SYSTEM


END OF SUPPORT



































solutions fixes










Overview FAQ











Documentation

Can be found at





QuestionsQuestions



NetCom

QuestionsQuestions





Managed AV

Slide 6

SESA

SESA Architecture



SESA DEMO

SESA Requirements

SESA Procedure


Slide 15






Impact




Introduction

Getting Started

Overview

How to

Documentation


NetCom

































solutions fixes










Overview FAQ











Documentation

Can be found at





QuestionsQuestions



NetCom

QuestionsQuestions





Managed AV

Slide 6

SESA

SESA Architecture



SESA DEMO

SESA Requirements

SESA Procedure


Slide 15






Impact




Introduction

Getting Started

Overview

How to

Documentation


NetCom










Overview FAQ











Documentation

Can be found at





QuestionsQuestions



NetCom

QuestionsQuestions





Managed AV

Slide 6

SESA

SESA Architecture



SESA DEMO

SESA Requirements

SESA Procedure


Slide 15






Impact




Introduction

Getting Started

Overview

How to

Documentation


NetCom









Documentation

Can be found at





QuestionsQuestions



NetCom

QuestionsQuestions





Managed AV

Slide 6

SESA

SESA Architecture



SESA DEMO

SESA Requirements

SESA Procedure


Slide 15






Impact




Introduction

Getting Started

Overview

How to

Documentation


NetCom




QuestionsQuestions



NetCom

QuestionsQuestions





Managed AV

Slide 6

SESA

SESA Architecture



SESA DEMO

SESA Requirements

SESA Procedure


Slide 15






Impact




Introduction

Getting Started

Overview

How to

Documentation


NetCom



NetCom

QuestionsQuestions





Managed AV

Slide 6

SESA

SESA Architecture



SESA DEMO

SESA Requirements

SESA Procedure


Slide 15






Impact




Introduction

Getting Started

Overview

How to

Documentation


NetCom

IT Briefing Agenda 1/20/05

Documents

Transcript of IT Briefing Agenda 1/20/05