Presentation is loading. Please wait.

Presentation is loading. Please wait.

Overview – SOE PatchTT November 2015.

Similar presentations


Presentation on theme: "Overview – SOE PatchTT November 2015."— Presentation transcript:

1 Overview – SOE PatchTT November 2015

2 So component have two parts as below:
Overview SOE PatchTT is a policy based tool that allows to proactively monitoring patches and software updates by analysis, and report required patch compliance across enterprise. It works on client server architecture, i.e. client side collects data and send it to the server for computation and representation. So component have two parts as below: PatchTT Server (Installed on TI Presentation Server). PatchTT Client (Installed on all Clients).

3 Features and Benefits Automated distribution and centralized management of monthly baseline and other (custom, cumulative etc.) policies in complete infrastructure. Automated distribution of baseline patches in complete infrastructure. Intelligence to report vulnerabilities as per patch dependency defined in policy. Compliance computation on the basis of applicable patch count or host count in the registered group. Report remediation requirement by tracking patches against policy activated on servers centrally. Multiple Policies applicable on single server. Feature to define custom patch security baseline policy, to benchmark system’s vulnerability and standards. Facilitate proactive management for complete infrastructure with secure, centralized and optimal method. Implement a single reporting framework for distributed, heterogeneous UNIX server’s i.e. same solution for AIX, Linux, HP-UX and Solaris. Compliance summary on the basis of various categories, i.e. patch severity and host operating system, etc. Pictorial flash graphs for management summary.

4 PatchTT v.2.0-2 Highlights Client Enhancements: Server Enhancements:
Enhancement to detect operating system and os version information of Ubuntu LTS and LTS servers. Enhancement to collect installed patch list information from Ubuntu LTS and 14.04 LTS servers. Enhancement to scan and track patch status from Ubuntu LTS and LTS servers. Added support to handle patch exclusion for Ubuntu LTS and LTS patches. Included Last Patch Applied Information Included check to Activate the latest policy on upgrade. Server Enhancements: Added support to process, upload and report installed patch information in presentation server. Enhancement to import Ubuntu patch policy into the database along with the .csv policy creation, to get distributed till the end clients for scanning and reporting. Enhancement to process and upload the Ubuntu patch scanning report in the presentation

5 PatchTT Architecture SOE Tools Installed on the Various Components
PatchTT Client PatchTT Data transfer via POLL /PUSH mode with SW Deploy enable TI PS TI SFS PatchTT Data transfer via POLL /PUSH mode with SW Deploy enable PatchTT Client Data Transfer via POLL/PUSH Mode with SW Deploy enable Data Transfer via POLL/PUSH Mode with SW Deploy enable Via POLL /PUSH mode with SW Deploy enable PatchTT Data transfer PatchTT Client SOE Tools Installed on the Various Components PatchTT Client : PatchTT Client and csc_ti client with SW Deploy Enable. TI SFS : csc_ti server. TI PS : csc_ti server, Perl PS, Auto_config server or higher and PatchTT Server.

6 PatchTT Architecture for Patch Distribution

7 Policy Creation and Publish
Below is the sequence for creation and publish of SOE Baseline and All patch policy : Every month release security patches and bug fixes has been collected from Vendor Sites, i.e. Oracle, Red Hat , etc. Policy has been created by UnixSOE team in required format and published at and Distribution servers. Sample Policy file:

8 Policy Import SOE Baseline and All Patch Policy could be imported via PatchTT server script named “import_patch.pl”. Usage of script have been shown below:

9 Available Reports Main categories of reports available on PatchTT server as below: Account Based: Summary Report Baseline Patch Compliance Compliance Progress 2D Report Custom Patch Compliance Monthly All Patch Compliance Patch Compliance Trend Baseline Patch Compliance Details Cumulative Patch Compliance Details Custom Patch Compliance Details Monthly All Patch Compliance Details Install Patch List Patch Scan Raw Report Missing Patch Status Summary Patch Compliance Detailed Report Host Based: Patch Status (Last Month) Report Network Services Report Packages Installed Report Patches Applied Report Active Policies Configuration Based: Exclude Servers from PatchTT Exclude Rules for Servers Manage PatchTT Policies NOTE: Few major reports shown below, please refer PatchTT User Guide for detailed information.

10 Summary Report This report provides applied and missing patch count summary as per SOE baseline patching policy for last month for the given servers.

11 Baseline Patch Compliance
This report provides applied and missing patch count summary along with patch compliance for a particular month.

12 Compliance Progress 2D Report
This report provides last six month compliance for all the registered accounts. It could be used for tracking the compliance progress for last six months in a particular account, to take corrective actions for making environment secure and robust.

13 Custom Patch Compliance
This report provides missing and applied patch count summary along with percentage compliance for the registered accounts, as per custom policy.

14 Monthly All Patch Compliance
This report provides missing and applied patch count summary along with percentage compliance for the registered accounts, on the basis of “All patch policy” release.

15 Patch Compliance Trend
This report provides account based patch scan historical view for available policies. It also shows, selected policy compliance line chart for an account.

16 Baseline Patch Compliance Details
This report used to generate host level percentage compliance on the basis of selected ‘Baseline’ policy for an account.

17 Cumulative Patch Compliance Details
This report used to generate host level percentage compliance on the basis of selected ‘Cumulative’ policy for an account.

18 Custom Patch Compliance Details
This report used to generate host level percentage compliance on the basis of selected ‘Custom’ policy for an account.

19 Monthly All Patch Compliance Details
This report used to generate host level percentage compliance on the basis of selected ‘All Patch’ policy for an account.

20 Installed Patch List This report provides installed patches count. On drill down complete list of Installed patches with some more details for the selected host would be available.

21 Patch Scan Raw Report This report used to show all the scan results of selected policy for an account in raw format ( without any processing or calculation at server end).

22 Missing Patch Status Summary
This report provides account based missing patch list with host count on which those patches are applicable and missing.

23 Patch Compliance Detailed Report
This report provides account based patch compliance detailed report, which consists total applicable patch list and missing patch list per host in a summarized format.

24 Patch Status Report This is a host-based report which provide last month SOE Baseline patch status in the selected host.

25 Network Details Report This is a Host Based report
Network Details Report This is a Host Based report. It shows list of open ports, protocol and their respective service name in the host.

26 Packages Installed Report This is a host-based report which provide installed packages list on a particular host.

27 Applied Patch Report This is a host-based report which provide applied patch list on a particular host.

28 Active Policies This report shows activated cumulative and custom policy status on the selected host, i.e. Reporting, Not Reported and Not Applicable.

29 Known Limitation “Patch Compliance Details (One Row Per Server)” report have know limitation of truncation while excel download. The truncation only affects the display - all of the patches are listed in the cell, but are not visible in excel. We could access the data by below ways : 1. “Copy" the cell in Excel then "paste" into MS Word (gives one patch per line - whereas notepad loses line feeds) 2. The online report lists everything

30 Solution Pack Unix SOE & TI Services
Questions & Feedback Product Support Helpline EMEA Platform Service Centre Unix & Linux Server Solutions Team


Download ppt "Overview – SOE PatchTT November 2015."

Similar presentations


Ads by Google