Symantec Security Expressions Server manual Click OK on the Default Web Site Properties window

Page 22

SecurityExpressions Server User Guide

If the system on which you installed the server software is not running Windows 2000 Server, skip this procedure.

1.On the Windows 2000 server, open Control Panel and double-click Administrative Tools and then Internet Information Services to open the IIS Administrative Panel.

2.In the Web Site folder, right-click Default Web Site and choose Properties.

3.On the Directory Security tab, in the Secure communications section, click Server Certificate.

4.Click Next in the Wizard. On the second page of the Wizard, select Assign an existing certificate.

5.In Available Certificates, select the SecurityExpressions Audit & Compliance Server Certificate.

6.Finish the Wizard.

7.Click OK on the Default Web Site Properties window.

Now you are ready to access the site using SSL.

Credential Store User

The Credential Store User settings on the Application Setup page let you create and log in to credential stores. Stored credentials are a way for a user with the proper credentials to give a user without them the access needed to audit the target systems without actually revealing the credentials. A credential store is a place in the database where you can save the credentials in encrypted form. Auditors can use the credentials without seeing what they are. Security is not compromised and the organization has the flexibility to assign auditing duties to someone without top security credentials.

When an audit begins, it obtains the credentials of each target computer from the credential store selected in the Credential Store User section of the Application Setup page. If it does not find these credentials, it looks for credentials delegated from the console application.

You must configure a credential store for the application to log in to every time someone uses the application. On the SecurityExpressions Audit & Compliance Server, you can create new Credential Stores on the Application Setup page or use Credential Stores previously created from the SecurityExpressions Console.

If you haven’t created any credential stores in the console application that you can log in to, you need to create a credential store first.

To log in to a credential store:

1.In the Credential Store Name box, select the credential store's user name.

2.In the Credential Store Password box, type the credential store's password.

3.Click Apply.

All servers connected to the same database must use the same credential store.

Creating Credential Stores

You must configure a credential store for the application to log in to every time someone uses the application. You can either create a credential store in the server application or use a credential store created in SecurityExpressions Console. Each group of SecurityExpressions Audit & Compliance Servers will have its own Credential Store.

14

Page 21 Page 23
Image 22
Page 21 Page 23
Contents SecurityExpressions Server User Guide Page Table Of Contents Page Table Of Contents Page Vii Page Contacting Us Page Technical Support Contacting Technical SupportPage Other Products SecurityExpressions ConsolePage Overview About SecurityExpressions Audit & Compliance ServerPage Self-Service Audit Agreement Self-Service AuditWhat is Self-Service Auditing? How to Audit your Local ComputerDisplays on the page. No detailed audit results appear Local Server Settings Configure ServersAbout Server Configuration Pages with Role SettingsViewing Audit Results SetupDatabase Connection Secure Connection Windows 2000 ServersCredential Store User Click OK on the Default Web Site Properties windowCreating Credential Stores Software Registration Enable Web ServicesSecurityExpressions Console Credential Stores Site PreferencesAccess Global Machine List Access User Roles Item RightsLibrary Synchronization Policy File LibraryCheck the Synchronize with a policy file library box About Policy Files How System Scores are CalculatedDefault method for remote execution on Windows Agent & Service ConfigurationTarget Options SSH Agent Authentication Database Cleanup Policies Update TaskCancel Add TaskSite Preferences Agent DownloadsClick Use the Following Agreement Allow Remediation Page Policies What is Audit-on-Connect?Audit-On-Connect Policies TablePage Adding Policies Editing Policies Configuring with Run-Time Policy Variables Deleting PoliciesPage Scopes ScopesAdd a New Scope Page Edit a Scope Scopes Table Expression Scopes Deleting ScopesDNS Domain Name Scopes Supported OperatorsOrg Unit Scopes Supported FunctionsDetection Method Scopes Notifications Click Add New Creating New Command NotificationsCreating New Email Notifications Editing NotificationsClick Add New Creating New Command Notifications Deleting Notifications Notification VariablesExceptions Table Column Description ExceptionsExceptions Adding ExceptionsDeleting Exceptions Specify Password and Encrypted PasswordConnection Monitors Connection MonitorsRemove Configuring Connection MonitorsEnabling Connection Monitors Connection Monitor Configuration File IP Range SectionDefault OptionsConfiguration File Syntax Processing the Configuration FileActive Directory Active Directory Connection Monitor only Network Slow LinksUnmanaged Systems Trace Route InformationNetwork Admissions Control Initial TokenReaudit if quarantined HealthyQuarantined/Unknown Redirection WebRedirection Web Page Behavior Audit on Connect TracingAudit on Connect Tracing Page Page What is Audit-on-Schedule? Audit-On-SchedulePage Adding Policies Editing Policies Deleting Policies Page Notifications Click Add New Click Add New Deleting Notifications My Machine Lists My Machine ListsAdding Machine Lists Editing Machine ListsEditing Global Machine Lists Scheduled TasksDeleting Machine Lists Scheduled TasksBasic Settings Adding Scheduled TasksSchedule Settings Hosts Not Connected Settings Other Options Settings Credentials SettingsWindows Group Access Editing Scheduled TasksSchedule Settings Notifications Other Options Settings Deleting Scheduled Tasks Page Audit-On-Connect Activity Table Column Description View Audit-On-Connect ActivityBrowse Audit-On-Connect Activity Adding a New Audit-On-Connect Report ProfileEditing Report Profiles Deleting Report ProfilesAudit-On-Connect Error Log Report Audit-On-Connect Exceptions ReportPage Browse Audit Results View Audit ResultsAdding a New Audit Results Report Profile Page Editing Audit Report Results Profiles Scheduled Audits Log ReportAdding Custom Reports to the Server Application Deleting Audit Report Results ProfilesPage Glossary Page Configure IndexIP address 33, 44, 45 Rule weights
Top Page Image Contents