PROYA - Profesyonel Yazılım Çözümleri

Sektörde lider olan Lumension Patch and Remediation (Bilinen adıyla Patchlink Update), sistem açıkları ve yama çözümü arayan dünya çapında binlerce şirketin milyonlarca bilgisayarında kullanılmaktadır.

Sistem açıkları ve yamalar konusunda 1996 dan beri market lideri konumunda olan Lumension Patch and Remediation özelliklerinden bazıları:

Lumension Patch and Remediation, düzensiz yapıdaki ağınızdaki aygıt ve bileşenlere ait bilgilerin toplanması, analiz edilmesi ve gerekli yamaların aygıt ve bileşenlere ulaştırılmasını otomatize eder.

Lumension Patch and Remediation, yazılımının patentli dijital parmak izi teknolojisi ile, bütün yazılım, donanım , sürücü ve gerekli yamaları içeren bir parmak izi profili oluşturabilir ve karşıdaki bilgisayarın sürekli gözlenerek gerekli yamalarin bulunmasını sağlayabilirsiniz.

Bir sistem yöneticisi olarak yama seviyelerine uymayan bilgisayarlar için zorunlu olarak sahip olmaları gereken yamaları içeren bir temel oluşturabilirsiniz.

Lumension Patch and Remediation ile güvenli, abonelik bazlı dünyanın en büyük güvenlik yamaları havuzu ile yamalarınız her zaman yeni olur.

Lumension Patch and Remediation kapsamlı, ajan bazlı sistem açığı değerlendirmesi ve değer stoğu ile sisteminizdeki açıkları hemen fark ederek gerekli önlemleri kısa zaman içinde alabilirsiniz.

IDC tarafından ard arda 3 yıl boyunca 1 numaralı yama yönetimi çözümü seçilmiştir.

Overview

Lumension Patch and Remediation provides rapid, accurate and secure patch management, allowing you to proactively manage threats in the most complex environments by automating the collection, analysis and delivery of patches throughout your enterprise. As an essential part of Lumension Vulnerability Management™, Lumension Patch and Remediation significantly decreases the costs involved in securing your organization from worms, Trojans, viruses and other malicious threats and allows you to:

Inventory and manage both physical and virtual machines.

Reduce corporate risk and optimize IT operations through the timely, proactive elimination of operating system and application vulnerabilities across all systems and servers, including Windows, Unix, Linux and Apple Mac OS.

Decrease IT costs and improve productivity with a highly automated, subscription-based patch management solution.

Seamlessly manage and report on Lumension and third party licensed content and prerequisite patches – all from one consolidated console.

Manage system desktop configuration tasks, such as automating disk defragmentation and disk cleanup tasks, and enforcing policies for account, device control, domain, network, and system policy security settings.

Improve your security posture through integration with Network Access Control (NAC) solutions to remediate ‘non-compliant’ machines to a compliant state before gaining access to the network

Demonstrate compliance with security policies and government regulations through continuous patch monitoring and comprehensive reporting.

How it Works

   1. A comprehensive agent-based scan proactively assesses application, operating system and operational vulnerabilities on corporate endpoints.
   2. Remediation policies are defined and patches are rapidly deployed using the intelligent patch deployment wizard. Automated deployments are scheduled based upon patch criticalities and defined security policies and can be deployed individually or in phases.
   3. Lumension’s patented Digital Fingerprinting™ Technology creates a patch fingerprint profile that includes all software, hardware, drivers, and existing and missing patches for each machine. Patch drift is eliminated by ensuring that endpoints get patched and stay patched enabling you to show validation of policy compliance and enforcement.
   4. A graphical “dash board” and over 20 standard reports document vulnerabilities, patch deployments, patch status, trends and inventory, assisting you to address operational, management and compliance reporting.

Features & Benefits

Key Product Features	Benefit
Integrated Endpoint Management Console Features Web-, role- and workflow-based navigation to simplify and optimize endpoint operations. Seamlessly integrates with other Lumension Endpoint Management and Security Suite product modules.	Simplifies Administration of Patch Management and Other Endpoint Management and Security Tasks Reduces administrative burden with a single, intuitive management console for easy patch and remediation administration across multiple platforms and many applications.
Automated Discovery and Assessment of IT Assets Provides comprehensive understanding of security posture for inventory and management of both physical and virtual environments via in-depth assessment of vulnerabilities, patch status, security configurations, installed software, and hardware inventory. Discovers both managed and unmanaged devices and provides swift agent deployment to any unmanaged assets.	Consolidates Visibility and Lower TCO Collects device, security and configuration information to provide consolidated visibility and lower TCO. Ensures visibility and control of both physical and virtual environments with effective management at a significantly reduced TCO.
Single Solution for Heterogeneous Environments Vulnerability audits and remediation with wide support across major OS platforms (Windows, including Windows 7 and Server 2008 R2; Linux; MacOS; Sun Solaris; HP; etc.), POSIX and infrastructure devices — all from one single console.	Provides a Consolidated, Single Tool To Meet All Your Patching Needs Corporate patch policies are enforced regardless of endpoint platform. Software-defect vulnerabilities are eliminated per policy on all platforms.
Continuous Policy Enforcement of Patches, Remediations and Configurations Vulnerability audits and remediations with wide support across major OS platforms (Windows, Linux, MacOS, Sun Solaris, HP, etc.), POSIX and infrastructure devices. Vulnerability audits include security configurations, OS and application vulnerabilities, null passwords, patch-level related vulnerabilities, known hacking tools, malware, common worms, and P2P software checks.	Enhances Security Posture and Lowers TCO Broad vulnerability assessment and remediation database optimizes IT operations and provides better security posture and lower TCO. Ensures that patches, configurations, remediations and other custom and repetitive tasks are continuously and automatically enforced.
Diverse, Flexible Reporting Provides detailed information across the patch and remediation management process, including agent policy status, vulnerability deployments, asset inventory and more.	Provides Comprehensive Visibility Provides insight into the security status of the organization. Ensures Audit Readiness Rapidly respond to internal or regulatory compliance requirements.
Highly Scalable for Distributed Environments Ensures complete coverage for the largest worldwide networks with high-availability topologies and n-tier distribution architecture. Packages are cached locally, minimizing network traffic and optimizing bandwidth utilization.	Adapts to Your Growing Business Leverages your current network infrastructure in order to lower TCO from day one of implementation through the life of the subscription. Adapts to various organizational setups, so you can always integrate the scanner into new business structures. Ensures inventory and management of both physical and virtual environments from one consolidated console.
Role- and Policy-Based Administration Enables the Patch Management Administrator to delegate/ approve patch management activities/ information across multiple employees, based on the employee’s role or security level. Ensures that all systems meet a mandatory baseline policy – a key aspect of corporate security and regulatory compliance.	Enforces Compliance In Your Organization Set specific policy and enforcement for each group in the enterprise. Provide maximum policy flexibility with automated enforcement, saving both time and effort by IT staff. Increases Productivity Significantly improve productivity while maintaining security.
Network Access Control (NAC) Integration Support Automatically assesses endpoints as they attempt to gain access to the network and remediate to a compliant state before access is allowed.	Improves Your Security Posture Assures that only compliant endpoints can gain access to the network and automatically remediates any non-compliant machines into an authorized state so network access can be granted.
Open Architecture Supporting open standards and multiple sources of content, Lumension Patch and Remediation delivers a customizable and diverse platform for operational security management. Seamlessly manages third party vendor content and automatically detects and obtains prerequisite patches.	Provides a Consolidated, Single Tool To Meet All Your Patching Needs Single tool has extensibility to meet needs of customers as well as flexibility to easily accommodate new software and initiatives as they arise. Automates the management and reporting of Lumension and third party licensed content and prerequisite patches without complex or manual credentials management.
Extensible, Modular Agent Architecture Resilient, lower overhead agent with scalable architecture to secure on- and offline systems. Provides easy agent install and uninstall capabilities.	Provides Comprehensive On- and Offline Protection Protects laptops, servers, and desktops that are often disconnected from the network and reduces network bandwidth usage. Resilient agent offers self-monitoring and recovery capabilities for increased security.
Directory Services Integration Dynamic creation of groups based on existing Microsoft Active Directory environments with cascading inheritance for agent policy, mandatory baseline and user permissions.	Saves Time and Cost Through the integration with Active Directory there is no need to recreate the logical organization of systems, thereby saving time and delivering lower TCO.
Automated Agent Distribution Automated deployment of the Lumension remediation agent to unmanaged (rogue) computers.	Saves IT Operations Time and Effort Ensure maximum coverage and protection, with minimal time and effort required by IT operations.
Automatic Notifications E-mail alerts can be sent to administrators to notify them of a variety of issues, including subscription or remediation failures, upcoming license expiration and more.	Improves Security Improve security through the timely response to issues. Improves Productivity Improve administrative productivity through proactive, automated alerts.
Flexible Operating Hours Administrators can define specific days and intervals of time during which the agent can communicate with the server and perform operations, in granular half hour increments	Ensures No Downtime or Disruptions Minimize business disruptions and thus improve the productivity of the organization.
Flexible Group Management Creates custom computer groups based on the enterprise’s needs. Allows the administrator to represent multiple layers of geographical or organizational structure within the solution. Hierarchical "Nested" Grouping.	Increases Deployment Accuracy and IT Efficiency Employ an organized approach via custom groups allowing you to increase deployment accuracy and IT efficiency. Increases Productivity Reduce agent and group configuration efforts through more efficient creation and management of agents within groups. Improves Policy Management Facilitates the deployment of group-specific patches according to your corporate policy.
Key Indicator Dash Board Enables creation of a custom dash board for the most critical information in order to highlight the success of your organization's patch management process from a list of 8 key indicators.	Provides Visibility Into Real-Time Patch Status & Overall Security Posture Provide an informative snap shot of current patch status in order to report to executive management.
Multi-Patch Deployments Delivers multiple patches to multiple computers in one distribution.	Reduces IT Costs Multiple vulnerabilities are simultaneously eliminated while minimizing IT costs.
Subscription Service Automatic and secure identification and notification of the latest patch vulnerabilities across multiple platforms and applications.	Saves IT Operations Time and Effort Eliminate the cost of manually monitoring, acquiring and staging patches for multiple platforms and applications throughout the enterprise. Enhances Your Security Posture Stay patched and updated automatically Ensure no unauthorized packages enter your network.

Requirements

Minimum Requirements - Server

Requirements	Version
Hardware	A dual-core processor (any speed) 1 GB RAM 32 GB of available disk space
Operating System	Windows Server® 2003, Web Edition with SP2 or later (x86) Windows Server 2003, Standard Edition with SP2 or later (x86) Windows Server 2003, Enterprise Edition with SP2 or later (x86) Windows Server 2003 R2, Standard Edition with SP2 or later (x86) Windows Server 2003 R2, Enterprise Edition with SP2 or later (x86) Windows Server 2008, Web Edition (x86/x64) Windows Server 2008, Standard Edition (x86/x64) Windows Server 2008, Enterprise Edition (x86/x64) Note: Lumension Endpoint Management and Security Suite must be installed on an English operating system using any English locale (en-US, en-UK, en-CA, and so on) in its default configuration.
Web server	Microsoft® Internet Information Services (IIS) 6.0 or later.
.NET Framework	Microsoft .NET Framework version 3.5 Note: If not present, Microsoft .NET Framework 3.5 is installed with Lumension Endpoint Management and Security Suite.
Web browsers	Microsoft Internet Explorer 7.0 or greater Mozilla®Firefox® 3.0 or greater.
DB Server	SQL Server 2005, Express Edition with SP3 (x86) SQL Server 2005, Standard Edition with SP3 (x86) SQL Server 2005, Enterprise Edition with SP3 (x86) SQL Server 2008, Express Edition (x86) SQL Server 2008, Standard Edition (x86/x64) SQL Server 2008, Enterprise Edition (x86/x64) Supported database servers can be installed in the following locations relative to the Lumension Endpoint Management and Security Suite server: Locally in named instances installed by Lumension Endpoint Management and Security Suite. Locally in named or default instances that are preexisting. Remotely in named or default instances that are preexisting. Note: If an instance of SQL Server is not present on your target server, SQL Server 2008, Express Edition with SP1 is installed with Lumension Endpoint Management and Security Suite (if you are not using a remote instance of SQL Server)

Agent Coverage - Supported Client Operating Systems

Operating System	Version/Edition	Architecture
Apple Mac OS X	10.3 - 10.5	x86 (Intel)/PowerPC
CentOS	4-5	X86 X86_64
HP-UX	11.11 - 11.31	64 bit PA-RISC
IBM AIX	5.1 - 5.3	PowerPC
Microsoft Windows 2000	All (excluding Datacenter editions)	x86
Microsoft Windows Server 2003	All (excluding Datacenter editions)	x86 X86_64
Microsoft Windows XP	Professional (excluding Home, Media Center and Tablet PC editions)	x86 X86_64
Microsoft Windows Vista	All (excluding Home and Starter editions)	x86 X86_64
Microsoft Windows 7	Professional Enterprise Ultimate	X86 X86_64
Microsoft Windows Server 2008	All (excluding Core and Datacenter editions)	x86 x86_64
Microsoft Windows Server 2008 R2	Web Standard Enterprise	X86 X86_64
Novell SUSE Linux	9 - 11	x86 x86_64
Oracle Enterprise Linux	4-5	X86 X86_64
Red Hat Enterprise Linux	3.0 – 5.x (Enterprise AS, ES, WS)	x86 x86_64
Red Hat Enterprise Linux	9 - 10	SPARC x86 X86_64