Article: 852  Working with the LES SK-NDIS component on an already installed client

This article provides information on the LES SK-NDIS (Sanctuary Kernel - Network Driver Interface Specification) driver. It is used to manage access to Wireless NIC’s, Bluetooth and IrDA devices.

Article: 849  Error message “No log found for encrypted Medium ID”

This article discusses how to resolve an error that can occur when attempting to do password recovery:

“No log found for encrypted Medium ID”

Article: 848  "Received Weird continue result during TLS connection" error when attempting to use TLS for encrypted client>server communication

This article describes an error you may encounter when using TLS for encrypted client to server communication.

Article: 582  Lumension Endpoint Security Version History since v 2.6

This article describes the history of the Endpoint Security (formerly Sanctuary) products since version 2.6

Article: 824  What endpoint log events are being logged and how to filter these.

This KB explains how to identify what are the most common Event types being logged in the LES database (and hence main reason your database will grow in size over time).

Based on this information we can provide some SQL scripts to exclude certain events from being logged at the client in the first place, e.g. Device-Attached events for LocalSystem account. The procedure for implementing this particular log filter is supplied in this KB article

Article: 823  Things to check when the Lumension Client Deployment tool fails

This article identifies some common reason why deployment of the Lumension Endpoint Security client may fail to kick-off via the Lumension Client Deployment Tool and common reason for a failed installation of the client.

Article: 797  Enforcing Delegation in LES Using ctrlacx.vbs

LES allows for limiting an Administrator's visibility and control over specified computers, users, and groups.  This is done by defining these delegation rights in Active Directory. Ctrlacx.vbs is used to add a controlAccessRight object in the Extended-Rights container of Active Directory which is specific to LES. Granting LES Administrators this right for a specific computer/user/group in AD allows them to view and manage that computer/user/group in LES.

You can find this tool in the installation folder, usually under the SCRIPTS directory. It is also included in the product download from the Customer Portal at portal.lumension.com.

Article: 779  SXS Server Crash due to unhandled exception error

This article documents a vulnerability that exists in Lumension Endpoint Security v4.4 SR6 and prior, including Lumension Application Control and Lumension Device Control, which may cause the SXS Server to crash due to an unhandled exception error.

Article: 740  Improve Log Explorer performance for versions 4.4 and higher

This article describes an enhancement to the Endpoint Security database for versions 4.4 and higher.  This enhancement can help to improve the performance of queries within Log Explorer in certain situations and is recommended for all customers.

Article: 596  How to block Media Transfer Protocol (MTP) devices with Sanctuary Device Control

This article describes how to prevent the new MTP devices (like the iPhone, modern mp3 players, mobile phones, cameras and portable video players, compatible with Windows Media Player 10 and/or 11) from being used as removable drives on machines equipped with Sanctuary Device Control.

Beginning with version 4.3, Sanctuary Device Control supports this class through normal console permissions.

Based on customer inquiries, Lumension has developed a solution to help customers block MTP devices if they have the desire or need to based on internal policies.  

Article: 742  Making LES Device Control work on Citrix XenDesktop images.

This article describes how to make Endpoint (Sanctuary) work with Citrix XenDesktop images. When you install LES 4.4 on XenDesktop (v5 and higher) there are 2 pre-requisites required to make this work.

Article: 739  Application control vs UAC in Vista behavior

This article describes why UAC enabled in Windows Vista interferes on the results set for Application Control. A file from an authorized file group is denied when UAC is enabled, if UAC is disabled, then the file is running properly.

Article: 760  How to enable QUALCOMM Gobi based Mobile Broadband 3G Modem devices

This article describes how to enable the QUALCOMM Gobi based Mobile Broadband 3G Modem device after Device Control 4.4 or later was installed. Applies To: Lumension Device Control

Article: 758  How to enable an IBM Thinkpad fingerprint reader with LDC

This article describes how to enable the IBM Thinkpad fingerprint reader (certain models, like X61 and T61) after Device Control 4.4 SR3 or later was installed.

Article: 751  Automating Database Maintenance for Lumension Endpoint Security

This article has been created in order to provide guidelines for customers wishing to automate their database maintenance using SQL 2005/2008 rather than manually running database maintenance using the Management Console.

Article: 716  Lumension Endpoint Security Client and Dynamic Disks

This article relates to the Lumension Endpoint Security client and machines with dynamic disks.

Article: 746  Known Issues/Recommendations with Lumension Application Control and Citrix XenApp/XenDesktop

This article describes known issues with Lumension Application Control and Citrix XenApp/XenDesktop. Applies To: Lumension Application Control v4.4 SR4+

Article: 728  Endpoint Security Basic Security Best Practices

This article describes lists a series of basic security rules that are highly recommended prior to deploying the Endpoint Security Client on a production network.

Article: 727  Java Virtual Machine fails to run with the Endpoint Security Client installed

This article describes a situation where the Java Virtual Machine fails to allocate large amounts of RAM with the Endpoint Security client installed.

Article: 722  Lumension® Application Control (formerly Sanctuary) Security Advisory

Specific steps could result in an enforcement deficiency when using Lumension Application Control in blocking mode.