Chapter 2: Using RealSecure Desktop Protector with ICEcap Manager

How ICEcap Manager Handles Information

Introduction

To help organize information, ICEcap Manager categorizes agents and the events they

 

report into accounts and groups. To report an event, a RealSecure agent must be assigned to

 

a group within an ICEcap account.

Accounts

Accounts represent significant divisions or organizational elements within the company.

 

For example:

 

A manufacturing company’s sales division might constitute one account while its

 

factory operations might constitute another.

 

A European corporation might establish one account for its facilities in France and

 

another for its British operations.

 

A financial services company might create one account for its trading floor and a

 

separate account for its back-office processing operations.

 

For more information about creating and using accounts, see the RealSecure ICEcap

 

Manager User Guide.

Groups

Groups are logical collections of systems (also known as hosts) organized for modular

 

reporting and configuration. Each account consists of one or more groups. For example, a

 

single account might include a group for all the servers on a network and a group for all

 

the end-user workstations. Each group belongs to only one account. An agent can report

 

into only one group.

Assigning an agent

ICEcap Manager is solely responsible for assigning agents to groups. Although agents can

to a group

report a group name, ICEcap Manager must authorize that name and make the

 

appropriate assignment.

 

The first time an agent reports an event, ICEcap Manager assigns the agent to a group by

 

IP address assignment or by group name assignment. For more information about this

 

authorization process, see the RealSecure ICEcap Manager User Guide.

Changing groups

Agents cannot alter their group assignment.You can change the group name on the

 

ICEcap tab in the BlackICE Settings, but the change takes effect only if ICEcap Manager

 

authorizes the change. This prevents intruders from reassigning an agent to a group with

 

less restrictive settings. Consult the RealSecure ICEcap Manager User Guide for more

 

information about change agent group assignments.

Working with VPN VPN and dial-up users present unique challenges for managing remote agent software. and dial-up users

Some VPN users cannot be reliably grouped by IP address because they have dynamic IP addresses. Desktop Protector may report the remote user’s ISP- assigned IP address and not the local network address.

Mobile computers that are connected to the internal network while in the office, but dial into the network while on the road, can have many different IP addresses.

To handle this situation, it is a good idea to create a group exclusively for dial-up or VPN users in the appropriate account, using group name precedence. For information on how to create a remote users’ group, see the RealSecure ICEcap Manager User Guide.

16

Page 23 Page 25
Page 24
Image 24
Internet Security Systems Desktop Protector, 3.5 manual How ICEcap Manager Handles Information
Page 23 Page 25

3.5, Desktop Protector specifications

Internet Security Systems Desktop Protector 3.5 is a robust cybersecurity solution designed to provide comprehensive protection for personal computers and workstations. As cyber threats continue to evolve, this software aims to protect users against malware, phishing, and other malicious attacks with its advanced feature set and technologies.

One of the main features of Desktop Protector 3.5 is its real-time scanning capability. It constantly monitors files and applications on the system for any signs of malicious activity. This proactive approach ensures that harmful software is detected and neutralized before it can execute, providing users with peace of mind as they navigate the internet or access sensitive information.

Another significant feature is the integrated firewall. This firewall effectively controls incoming and outgoing traffic, offering an additional layer of protection by blocking unauthorized access to the user's network. Users can configure the firewall settings to tailor their security level according to their specific needs, ensuring flexibility and adaptability.

Desktop Protector 3.5 also incorporates advanced heuristic analysis technology. Unlike traditional antivirus solutions that rely primarily on known malware signatures, heuristic analysis examines the behavior of files and applications. This allows the software to identify and block new or unknown threats based on their potential behavior, significantly enhancing its detection capabilities.

The software's user-friendly interface makes it accessible to users of all technical backgrounds. With straightforward navigation and intuitive controls, even those who are not tech-savvy can efficiently manage their security settings and monitor their system's health.

Moreover, Desktop Protector 3.5 offers automated updates, ensuring that the security software remains current with the latest threat definitions and security patches. This feature guarantees that users are always safeguarded against emerging threats without requiring manual intervention.

Another noteworthy characteristic is its low system impact; Desktop Protector 3.5 is designed to operate seamlessly in the background. Users can work, play, or browse the internet without experiencing noticeable lag or performance issues, making it an ideal security solution for both personal and professional environments.

With its combination of powerful features, advanced technologies, and user-centric design, Internet Security Systems Desktop Protector 3.5 stands out as a reliable choice for anyone seeking to enhance their cybersecurity posture in an increasingly digital world.
Top Page Image Contents