Configuring A Patch Assessment Custom Rule (Nsm Procedure) - Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01 Manual

Configuring infranet controllers guide

Hide thumbs Also See for NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01:

Manual (444 pages)

Administration manual (1026 pages)

Installation manual (244 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

Table of Contents

Documentation

Configuring a Patch Assessment Custom Rule (NSM Procedure)

Table 51: Custom Rules Configuration Details (continued)

Rule

MAC Address Rule

Machine Certificate Rule

Configuring New Client-Side Policies (NSM Procedure) on page 157

Remediating Infranet Controller Host Checker Policies on page 174

For Windows clients, you can use the system management server (SMS) remediation

feature to provide automatic updates to noncompliant software. By using a patch

assessment custom rule, you can force the client to initiate the software update

immediately after the patch assessment check.

To configure a patch assessment custom rule:

In the NSM navigation tree, select Device Manager > Devices.

Click the Device Tree tab, and then double-click the Infranet Controller for which you

want to configure a patch assessment custom rule.

Chapter 15: Configuring Host Checker Policies

Usage

Your Action

(Windows only)—Checks

the MAC addresses of the

2. Select the Required option to

client machine before the

user can access the

Infranet Controller.

3. Enter a comma-delimited list

4. Click OK.

(Windows only)— Checks

that the client machine is

2. From the Select Issuer Certificate

permitted access by

validating the machine

certificate stored on the

client machine.

3. Enter Certificate field and

4. Click OK.

Enter the rule name.

require that a MAC address of the

client machine matches or does

not match any of the addresses

you specify.

(without spaces) of MAC

addresses in the form

XX:XX:XX:XX:XX:XX where the X's

are hexadecimal numbers. For

example:

00:0e:1b:04:40:29.

Enter the rule name.

list, select the certificate that you

want to retrieve from the user's

machine and validate. Or, select

Any Certificate to skip the issuer

check and only validate the

machine certificate based on the

optional criteria that you specify

below.

Expected value to specify any

additional criteria that Host

Checker should use when verifying

the machine certificate.

165

Table of Contents

Configuring A Patch Assessment Custom Rule (Nsm Procedure) - Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01 Manual

Configuring a Patch Assessment Custom Rule (NSM Procedure)

Related Manuals for Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01

Related Content for Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01

Table of Contents