Presentation is loading. Please wait.

Presentation is loading. Please wait.

IT:Network:Microsoft Applications

Published byErick Dickerson Modified over 9 years ago

Similar presentations

Presentation on theme: "IT:Network:Microsoft Applications"— Presentation transcript:

1 IT:Network:Microsoft Applications
Network Patch Management

2 Agenda Network Patch Management Microsoft Baseline Security Analyzer
Windows Software Update Services Third Party Products

3 Network Patch Management
What is it? The process of controlling the deployment and maintenance of interim software releases into production environments Patch management is a critical part of maintaining the security of your systems and network. The patch management system that you build and maintain is, among other things, the channel through which you deploy security updates from Microsoft and other vendors. The timely application of security updates is one of the most important and effective things you can do to protect your systems and network, therefore, your patch management system must be as efficient as possible.

4 Network Patch Management
Poor update management can result in: Downtime Remediation time Questionable data integrity Lost credibility Negative public relations Legal defenses Stolen intellectual property

5 Network Patch Management
Ten Principles of Microsoft Patch Management Service packs should form the foundation of your patch management strategy Make Product Support Lifecycle a key element in your strategy Perform risk assessment using the Severity Rating System as a starting point Use mitigating factors to determine applicability and priority Only use workarounds in conjunction with deployment Issues with Security Updates are documented in the Security Bulletin Master Knowledge Base Article Test updates before deployment Contact Microsoft Product Support Services if you encounter problems in testing or deployment Use only methods and information recommended for detection and deployment The Security Bulletin is always authoritative

6 Network Patch Management
Microsoft process for updating software after release Microsoft makes available periodic updates. Every Microsoft product group includes a sustaining engineering team which develops updates to resolve problems. The process is as follows: Microsoft is made aware of a security vulnerability. Issue is evaluated and verified by the Microsoft Security Response Center. The product groups sustaining team creates and tests update. Microsoft distributes the software update through the Microsoft Download Center and other services: Automatic Updates and User Initiated Updates

7 Network Patch Management
Microsoft Update Definitions Term Definition Security patch A broadly released fix for a specific product, addressing a security vulnerability Critical update A broadly released fix for a specific problem, addressing a critical, non-security–related bug Update A broadly released fix for a specific problem, addressing a non-critical, non-security–related bug Hotfix A single package composed of one or more files used to address a problem in a product. Service pack A cumulative set of hotfixes, security patches, critical updates, and updates since the release of the product, including many resolved problems that have not been made available through any other software updates. Service packs may also contain a limited number of customer-requested design changes or features.

8 Network Patch Management
Windows updates—additions to software that can help prevent or fix problems, improve how your computer works, or enhance your computing experience Windows updates can be managed through Control PanelSystem and SecurityWindows Update.

9 Microsoft Baseline Security Analyzer (MBSA)
A tool designed for the IT professional that helps determine their security state in accordance with Microsoft security recommendations and offers remediation guidance. You can use MBSA to detect common security misconfigurations and missing security updates on your computer systems. The MBSA can check computers running: Windows Server 2012, R2 Windows 8 Windows Server 2008 R2, Windows Server 2008 Windows 7 Windows Server 2003 Windows Vista

10 Microsoft Baseline Security Analyzer (MBSA)

11 Microsoft Baseline Security Analyzer (MBSA)

12 Microsoft Baseline Security Analyzer (MBSA)

13 Windows Software Update Services
Enables information technology administrators to deploy the latest Microsoft product updates to computers that are running the Windows operating system. By using WSUS, administrators can fully manage the distribution of updates that are released through Microsoft Update to computers in their network. Must be added as a Role for Windows Server 2008 R2 Requires Internet Information Services to be added as a Role Service

14 Windows Software Update Services

15 Windows Software Update Services
Enables information technology administrators to deploy the latest Microsoft product updates to computers that are running the Windows operating system. By using WSUS, administrators can fully manage the distribution of updates that are released through Microsoft Update to computers in their network. Must be added as a Role for Windows Server 2008 R2 Requires Internet Information Services to be added as a Role Service

16 Windows Software Update Services
What client platforms support WSUS? Windows XP Windows Vista Windows 7 Windows Server 2003 Windows Server 2008 Windows Server 2008 R2

17 Windows Software Update Services

18 Windows Software Update Services

19 References and other solutions
Ten Principles of Microsoft Patch Management Windows Software Update Services mspx Lumension Spiceworks Microsoft System Center Essentials 2010

Download ppt "IT:Network:Microsoft Applications"

Similar presentations

Patch Management Patch Management in a Windows based environment

Patch Management Patch Management in a Windows based environment
Optimizing Windows Vista Performance Lesson 10. Skills Matrix Technology SkillObjective DomainObjective # Introducing ReadyBoostTroubleshoot performance.

Optimizing Windows Vista Performance Lesson 10. Skills Matrix Technology SkillObjective DomainObjective # Introducing ReadyBoostTroubleshoot performance.
Www.lumension.com © Copyright 2008 - Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.

© Copyright Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.
Microsoft Baseline Security Analyzer INLS 187 Security Software Presentation by Hinár György Polczer

Microsoft Baseline Security Analyzer INLS 187 Security Software Presentation by Hinár György Polczer
Patching MIT SUS Services IS&T Network Infrastructure Services Team.

Patching MIT SUS Services IS&T Network Infrastructure Services Team.
Small Business Security By Donatas Sumyla. Content Introduction Tools Symantec Corp. Company Overview Symantec.com Microsoft Company Overview Small Business.

Small Business Security By Donatas Sumyla. Content Introduction Tools Symantec Corp. Company Overview Symantec.com Microsoft Company Overview Small Business.
Maintaining and Updating Windows Server 2008

Maintaining and Updating Windows Server 2008
How To Keep Up With Security Patches Eric Schultze Security Strategies Microsoft.

How To Keep Up With Security Patches Eric Schultze Security Strategies Microsoft.
Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.

Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.
Microsoft ® Application Virtualization 4.5 Infrastructure Planning and Design Series.

Microsoft ® Application Virtualization 4.5 Infrastructure Planning and Design Series.
11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW Understand the difference between service.

11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW Understand the difference between service.
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company www.jblearning.com All rights reserved. Security Strategies in Linux Platforms and.

© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company All rights reserved. Security Strategies in Linux Platforms and.
Patch Management Strategy

Patch Management Strategy
Module 16: Software Maintenance Using Windows Server Update Services.

Module 16: Software Maintenance Using Windows Server Update Services.
11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW  Understand the difference between service.

11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW  Understand the difference between service.
Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec

Security Risk Management Marcus Murray, CISSP, MVP (Security) Senior Security Advisor, Truesec
Wally Mead Senior Program Manager Microsoft Corporation.

Wally Mead Senior Program Manager Microsoft Corporation.
Avanade: 10 tips for å sikring av dine SQL Server databaser Bernt Lervik Infrastructure Architect Avanade.

Avanade: 10 tips for å sikring av dine SQL Server databaser Bernt Lervik Infrastructure Architect Avanade.
Resiliency Rules: 7 Steps for Critical Infrastructure Protection.

Resiliency Rules: 7 Steps for Critical Infrastructure Protection.
Virtual techdays INDIA │ 18-20 august 2010 Testing & Fixing Applications on Windows 7 Sudhir Rao │ Solution Specialist, Microsoft Corporation.

Virtual techdays INDIA │ august 2010 Testing & Fixing Applications on Windows 7 Sudhir Rao │ Solution Specialist, Microsoft Corporation.

Similar presentations

Ads by Google