Ports; Audit; Section 4.3, "Ports; Section 4.4, "Audit - Novell ZENWORKS 10 CONFIGURATION MANAGEMENT SP3 - REMOTE MANAGEMENT REFERENCE 10.3 Management Manual

Complexity: A secure password contains a mix of letters and numbers. It should contain both
uppercase and lowercase letters and at least one numeric character. Adding numbers to
passwords, especially when they are added to the middle and not just at the beginning or the
end, can enhance password strength. Special characters such as &, *, $, and > can greatly
improve the strength of a password. Do not use recognizable words such as proper names or
words from a dictionary, and do not use personal information such as phone numbers, birth
dates, anniversary dates, addresses, or ZIP codes.

4.3 Ports

By default, the Remote Management service runs on port 5950 and the Remote Management
Listener runs on port 5550. The firewall is configured to allow any port used by the Remote
Management service, but you need to configure the firewall to allow the port used by the Remote
Management Listener.
By default, the remote management proxy listens on port 5750.

4.4 Audit

ZENworks Configuration Management maintains a log of all the remote sessions performed on the
managed device. This log is maintained on the managed device and can be viewed by the user and
the administrator. The administrator can view the logs of all the remote sessions performed on the
device. The user can view the logs of all the remote sessions performed on the device when he or she
was logged in.
To view the audit log:
1 Double-click the ZENworks icon in the notification area of the managed device.
2 In the left pane, navigate to Remote Management, then click Security.
3 Click Display Audit Information to display the audit information of the remote operations
performed on the device.
Field
ZENworks User
Remote Operator
Console Machine
Console IP
Operation
Start Time
End Time
Description
Name of the ZENworks user logged in to the managed device at the start of
the remote session.
Name of the remote operator who performed the operation.
Host name of the device from which the remote operation was performed.
IP address of the device from which the remote operation was performed.
NOTE: If the remote management operation of the device is routed through
a Remote Management proxy, the IP address of the device that is running
the proxy is displayed.
The type of operation performed: Remote Control, Remote Execute,
Remote View, Remote Diagnostics, File Transfer.
The time when the remote operation started.
The time when the remote operation completed.
Security 65