Presentation is loading. Please wait.

Presentation is loading. Please wait.

Managing Third Party Updates with Microsoft’s System Center Configuration Manager Secunia Integration, MMS 2015 Kent AgerlundSherry Kissinger.

Published byChristopher Moore Modified over 8 years ago

Similar presentations

Presentation on theme: "Managing Third Party Updates with Microsoft’s System Center Configuration Manager Secunia Integration, MMS 2015 Kent AgerlundSherry Kissinger."— Presentation transcript:

1 Managing Third Party Updates with Microsoft’s System Center Configuration Manager Secunia Integration, MMS 2015 Kent AgerlundSherry Kissinger

2 #MMSMOA Owner, Coretech http://blog.coretech.dk/ author/kea/ Microsoft MVP Copenhagen, Denmark Kent Agerlund

3 #MMSMOA Systems Engineer http://www.mns cug.org/blogs/s herry-kissinger 14 years experience with SMS / ConfigMgr Microsoft MVP 2009-2015 Jackson, Wisconsin Sherry Kissinger

4 3 rd party Security Updates using SCCM and Secunia CSI integration

5 Secunia CSI What is it? Secunia CSI is a scanning tool with an intranet backend server. The scanning tool is deployed to randomly selected ConfigMgr Clients and is purely for getting a statistical random sample. What is it NOT? It does NOT deploy patches on it’s own. It does NOT make any decisions for you.

6 Secunia CSI: how does it work? After scanning the statistical random sample (this is a rotating sample—newly random machines will be targeted continuously), the Secunia server will compile the data to be presented to decision makers. Because of Secunia’s threat level logistics, the “most vulnerable” applications will be ranked highest. The group who will look at these reports will identify and inform Application owners that their application is a high security risk based on the Secunia server compiled results.

7 Decision Maker Reports (example)

8 Decision Maker Reports click-through (sample)

9 Secunia CSI: Decision Making The Application Owner will evaluate the data, and depending upon their own Service Level Agreements or other factors, will decide whether an Uninstall, Upgrade using traditional package, or if offering an update via ConfigMgr as a “Software Update” is possible and preferred to a traditional deployment

10 Sample (lab) ConfigMgr Console What a Deployment Admin would see in the Configmgr Console Note it looks just like any other patch in the console; the only thing making it appear different is the Vendor will be “Secunia”

11 Secunia to CM Integration Only if the Application Owner has confirmed that patching their application via something that looks like a Software Updates deployment would the application owner engage the ConfigMgr team to test leveraging a Secunia-synchronized package in the lab; and once confirmed that the patch performs as expected, then moved to production. The Application Owner will need to follow all defined processes for a deployment.

12 Vulnerability Reporting For those applications synchronized according to the Application Owner, reports will be available via standard ConfigMgr SRS reporting.

13 ConfigMgr Report Demo

14 Summary Secunia scanning of random sample workstations is to find the most insecure applications which may not already be known and addressed. Deployments to address those insecurities may or may not be utilizing Software Updates mechanism (Secunia)—only the application owners can make that decision.

15 …Now for the technical geeky stuff

16 Random Sampling Why are we just sampling? How is that being done?

17 Randomizing script On Error Resume Next '------------------ 'Purpose: Run a Secunia CSIA Vulnerability Scan, and log activity 'Author: Sherry Kissinger 'Created: 2015-03-10 '------------------ 'Steps: 'Pick a random number between 1 and 365, if = 1 then continue, else quit. 'Delete any existing SecuniaScan.log in %temp% '1- run csia.exe with parameters from same folder as this vbscript lives (usually a cm cache location) ' -cc using only command line options as given ' -d means to create a log file where indicated ' --ignore-crl is because we are intrAnet, not inTERnet ' --no-win-update means don't run a wua scan (no need, we have that already w/cm) ' --type 1 means look in the common areas of where software lives, not the entire hard drive (takes less time) ' NOTE: all available cmd line options are visible by running csia.exe -h '================== set sho = WScript.CreateObject("Wscript.Shell") set fso = CreateObject("Scripting.FileSystemObject") strCurrentDir = Left(Wscript.ScriptFullName, (InstrRev(Wscript.ScriptFullName, "\") -1)) & "\" '================= 'Pick a random number from 1 to 365. If 1 or less, then continue. else, exit. intMaxNumber = 365 intMinNumber = 1 Randomize intNumber = Int((intMaxNumber - intMinNumber + 1) * Rnd + intLowNumber) if intNumber > 1 then wscript.echo 0 wscript.quit end if '================= strTemp = sho.ExpandEnvironmentStrings("%Temp%") if fso.fileexists(strTemp & "\SecuniaScan.log") then fso.DeleteFile(strTemp & "\SecuniaScan.log") end if If fso.fileexists(strCurrentDir & "csia.exe") then sho.run strCurrentDir & "csia.exe -cc -d " & strTemp & "\SecuniaScan.log --ignore-crl --no-win-update --type 1 ",0,vbtrue Else wscript.echo 1612 '1612 is the msi code for 'Installation source not available’ End If end if if fso.fileexists(strTemp & "\SecuniaScan.log") then wscript.echo 0 end if wscript.quit

18 Internal Server Why did we choose to have an internal server? Technical challenges, and advantages.

19 Secunia vs. Other Observed benefits of Secunia vs. other (used in the past) 3 rd party integration tools. Vendor Name Pre-packages-for-us content to deploy. Wizards

20 Presentation Just a placeholder slide. Please use the example slides in the “Template Example Slides” Section. Questions? mms@mnscug.orgmms@mnscug.org

21 Evaluations: Please provide session feedback by clicking the EVAL button in the scheduler app (also download slides). One lucky winner will receive a free ticket to the next MMS! Session Title: Managing Third Party Updates with Microsoft’s System Center Configuration Manager Discuss… Ask your questions-real world answers! SPONSORS

22 Section HeaderSection Header This is the next section

23 Title Line1 Line2 Line3 Line4 Line5 Line6 Bullet Level 1 Bullet Level 2 Bullet Level 3

24 Title Code

25 Text Only with Border Level 1 Level 2 Level 3

26 Text Only without Border Level 1 Level 2 Level 3

27 Title Text 1 Level 1 Level 2 Level 3 Text 2 Level 1 Level 2 Level 3

28 Section 1 Text Level 1 Level 2 Level 3 Section 2 Text Level 1 Level 2 Level 3 Title

29 Demo Demo Title

30

31

32

33

34

35

36

37

38

39

Download ppt "Managing Third Party Updates with Microsoft’s System Center Configuration Manager Secunia Integration, MMS 2015 Kent AgerlundSherry Kissinger."

Similar presentations

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 12: Managing and Implementing Backups and Disaster Recovery.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 12: Managing and Implementing Backups and Disaster Recovery.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 9: Implementing and Using Group Policy.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 9: Implementing and Using Group Policy.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.
Patching MIT SUS Services IS&T Network Infrastructure Services Team.

Patching MIT SUS Services IS&T Network Infrastructure Services Team.
Microsoft ® Application Virtualization 4.5 Infrastructure Planning and Design Series.

Microsoft ® Application Virtualization 4.5 Infrastructure Planning and Design Series.
Your CMDB and PowerShell DSC: DevOps Techniques

Your CMDB and PowerShell DSC: DevOps Techniques
Patch Deployment Patch Creation Vulnerability Scanning Vulnerability Intelligence.

Patch Deployment Patch Creation Vulnerability Scanning Vulnerability Intelligence.
Microsoft ® Application Virtualization 4.6 Infrastructure Planning and Design Published: September 2008 Updated: February 2010.

Microsoft ® Application Virtualization 4.6 Infrastructure Planning and Design Published: September 2008 Updated: February 2010.
Chapter 4 Application Software: Programs that Let You Work and Play

Chapter 4 Application Software: Programs that Let You Work and Play
Linux Operations and Administration

Linux Operations and Administration
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 12: Managing and Implementing Backups and Disaster Recovery.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 12: Managing and Implementing Backups and Disaster Recovery.
Section 10: Assigning and Publishing Software Packages Using MSI Packages to Distribute Software Using Group Policy as a Software Deployment Method Deploying.

Section 10: Assigning and Publishing Software Packages Using MSI Packages to Distribute Software Using Group Policy as a Software Deployment Method Deploying.
PowerShell DSC v. ConfigMgr Compliance Settings MMS Minnesota 2014 Greg Ramsey David O’Brien Sherry Kissinger #MMSMinnesota.

PowerShell DSC v. ConfigMgr Compliance Settings MMS Minnesota 2014 Greg Ramsey David O’Brien Sherry Kissinger #MMSMinnesota.
SCORCH – Fun Recipes for RunBooks MMS Minnesota 2014 Steve Jesok & Matthew #MMSSCOrch.

SCORCH – Fun Recipes for RunBooks MMS Minnesota 2014 Steve Jesok & Matthew #MMSSCOrch.
11 MANAGING AND DISTRIBUTING SOFTWARE BY USING GROUP POLICY Chapter 5.

11 MANAGING AND DISTRIBUTING SOFTWARE BY USING GROUP POLICY Chapter 5.
Advanced MP Authoring and Design Getting outside of the wizard and into the MP code with VSAE MMS Minnesota 2014 Nathan Foreman Jonathan Almquist #MMSSCOM.

Advanced MP Authoring and Design Getting outside of the wizard and into the MP code with VSAE MMS Minnesota 2014 Nathan Foreman Jonathan Almquist #MMSSCOM.
System Center Reporting Zero to Hero 15 minutes x 4 MMS Minnesota 2014 Samuel Erskine (Sam) Dieter Gasser (Didi) IT Driving Fellow Principal Consultant.

System Center Reporting Zero to Hero 15 minutes x 4 MMS Minnesota 2014 Samuel Erskine (Sam) Dieter Gasser (Didi) IT Driving Fellow Principal Consultant.
DEV325 Deploying Visual Studio.NET Applications Billy Hollis Author / Consultant.

DEV325 Deploying Visual Studio.NET Applications Billy Hollis Author / Consultant.

Similar presentations

Ads by Google