Manuals / Brands / Computer Equipment / Network Card / Symantec / Computer Equipment / Network Card

Symantec Critical System Introducing Symantec Critical System Protection

1 122

Download 122 pages, 1.3 Mb

Chapter 1

Introducing Symantec™ Critical System Protection

This chapter includes the following topics:

■About Symantec Critical System Protection

■Components of Symantec Critical System Protection

■How Symantec Critical System Protection works

■About the policy library

■Where to get more information

About Symantec Critical System Protection

Symantec™ Critical System Protection provides policy-based behavior control

and detection for desktop and server computers. Symantec Critical System

Protection provides a flexible computer security solution that is designed to

control application behavior, block port traffic, and provide host-based

intrusion protection and detection. Symantec Critical System Protection

provides this security by controlling and monitoring how processes and users

access resources.

Symantec Critical System Protection agents control behavior by allowing and

preventing specific actions that an application or user might take. For example,

a Symantec Critical System Protection prevention policy can specify that an

email application may not spawn other processes, including dangerous

processes like viruses, worms, and Trojan horses. However, the email

application can still read and write to the directories that it needs to access.

Contents

Main Symantec Critical System Protection Installation Guide Legal Notice Technical Support Contacting Technical Support Licensing and registration Customer service Maintenance agreement resources Additional enterprise services Page Contents Technical Support Chapter 1 Introducing Symantec Critical System Protection Chapter 2 Planning the installation Chapter 3 Installing Symantec Critical System Protection on Windows Chapter 4 Installing UNIX agents Chapter 5 Migrating to the latest version Index Chapter 1 Introducing Symantec Critical System Protection About Symantec Critical System Protection Components of Symantec Critical System Protection How Symantec Critical System Protection works About the policy library Where to get more information You can obtain additional information from the following Symantec Web sites: Chapter 2 Planning the installation About planning the installation About network architecture and policy distribution System requirements Operating system requirements Solaris packages Table 2-1 Operating system requirements Component Operating system Service pack Kernel version Linux kernel driver support Hardware requirements Table 2-2 lists the recommended hardware for Symantec Critical System Protection components. Table 2-2 Recommended hardware Component Hardware Specific OS (if applicable) Disabling Windows XP firewalls Disabling Internet Connection Firewall Disabling Windows Firewall About using firewalls with Symantec Critical System Protection About name resolution About IP routing About intrusion prevention About simple failover How simple failover works About the fail back interval Specifying the management server list for an agent About the Windows NT agent installation About log files What to do after installation Page Chapter 3 Installing Symantec Critical System Protection on Windows About installing Symantec Critical System Protection on Windows About port number mapping Bypassing prerequisite checks About installing a database to a SQL Server instance About SQL Server installation requirements About installing on computers that run Windows 2000 Configuring the temp environment variable Installing the management server About installation types and settings Page Management server installation settings and options Page Page Page Installing evaluation installation that runs MSDE on the local system Page Installing evaluation installation using existing MS SQL instance Installing production installation with Tomcat and database schema Page Installing Tomcat component only Installing and configuring the management console Installing the management console Configuring the management console Page Installing a Windows agent About the SSL certificate file About the installation settings and options Page Page Page Installing the Windows agent software Page Page Page Unattended agent installation Displaying InstallShield commands Microsoft Windows Installer commands Installation properties Table 3-6 describes the Windows agent installation settings and options. Page Page Installing the Windows NT policy Uninstalling Symantec Critical System Protection Uninstalling an agent using Add or Remove Programs Unattended uninstallation of an agent Uninstalling the management console Uninstalling the management server and database Temporarily disabling Windows agents Temporarily disabling Windows 2000, Windows Server 2003, or Windows XP Professional agents Resetting the prevention policy to the built-in Null policy Temporarily disabling Windows NT agents Page Reinstalling Windows agents Page Chapter 4 Installing UNIX agents About installing UNIX agents Page Page Page Bypassing prerequisite checks Installing an agent in verbose mode Installing an agent in silent mode Table 4-2 describes the settings that are used with the installation commands. Page Page Page Uninstalling agents using package commands Uninstalling agents manually Uninstalling Solaris agents manually Page Uninstalling Linux agents manually Uninstalling HP-UX agents manually Uninstalling AIX agents manually Uninstalling Tru64 agents manually Disabling and enabling UNIX agents Disabling and enabling Solaris agents Temporarily disabling the IPS driver Permanently disabling Solaris agents Enabling a disabled Solaris agent Disabling and enabling Linux agents Temporarily disabling the IPS driver Permanently disabling Linux agents Enabling a disabled Linux agent Disabling and enabling HP-UX agents Temporarily disabling HP-UX agents Permanently disabling HP-UX agents Enabling a disabled HP-UX agent Disabling and enabling AIX agents Temporarily disabling AIX agents Permanently disabling AIX agents Enabling a disabled AIX agent Disabling and enabling Tru64 agents Temporarily disabling Tru64 agents Permanently disabling Tru64 agents Enabling a disabled Tru64 agent Monitoring and restarting UNIX agents Troubleshooting agent issues Page Chapter 5 Migrating to the latest version Migrating legacy installations of Symantec Critical System Protection Providing scspdba password during management server upgrade Unattended Windows agent migration Specifying the management server list for an agent Page Migrating other legacy agent installations Checklist for migrating from Symantec Intruder Alert Page Checklist for migrating from Symantec Host IDS Migrating legacy agent software Preparing for detection policy migration Installing the authoring environment and policy conversion utility Copying files required for the policy conversion utility Migrating legacy detection policy files Converting legacy detection policy files Page Importing the zip file Creating a new policy Validating your rules Validating rule types and criteria Configuring an option group Compiling a policy Applying policies created and compiled in the authoring environment Page Index A D F H L M N P R T U W