Integrated Endpoint Management Console
- Features Web-, role- and workflow-based navigation to simplify and optimize endpoint operations. Seamlessly integrates with other Lumension Endpoint Management and Security Suite product modules.
|
Simplifies Administration of Patch Management and Other Endpoint Management and Security Tasks
- Reduces administrative burden with a single, intuitive management console for easy patch and remediation administration across multiple platforms and many applications.
|
Automated Discovery and Assessment of IT Assets
- Provides comprehensive understanding of security posture for inventory and management of both physical and virtual environments via in-depth assessment of vulnerabilities, patch status, security configurations, installed software, and hardware inventory.
- Discovers both managed and unmanaged devices and provides swift agent deployment to any unmanaged assets.
|
Consolidates Visibility and Lower TCO
- Collects device, security and configuration information to provide consolidated visibility and lower TCO.
- Ensures visibility and control of both physical and virtual environments with effective management at a significantly reduced TCO.
|
Single Solution for Heterogeneous Environments
- Vulnerability audits and remediation with wide support across major OS platforms (Windows, including Windows 7 and Server 2008 R2; Linux; MacOS; Sun Solaris; HP; etc.), POSIX and infrastructure devices, as well as third party applications, including Adobe software — all from one single console.
- Vulnerability audits include security configurations, OS and application vulnerabilities, null passwords, patch-level related vulnerabilities, known hacking tools, malware, common worms, and P2P software checks.
|
Provides a Consolidated, Single Tool To Meet All Your Patching Needs
- Enforces corporate patch policies regardless of the endpoint platform or applications.
- Optimizes IT operations and provides an improved security posture and reduced TCO via a broad vulnerability assessment and remediation database.
- Eliminates software-defect vulnerabilities per policy on all platforms.
|
Continuous Policy Enforcement of Patches, Remediations and Configurations
- Automatically enforces patches, configurations, remediations and other custom and repetitive tasks.
- Baseline policies can be easily exported and applied across multiple groups and servers for consistency.
|
Enhances Security Posture and Lowers TCO
- Ensures that patches, configurations, remediations and other custom and repetitive tasks are continuously and automatically enforced.
- Simplifies the recreation of previous mandatory baseline policies and ensures consistency across the network.
|
Diverse, Flexible Reporting
- Provides detailed information across the patch and remediation management process, including agent policy status, vulnerability deployments, asset inventory and more.
|
Provides Comprehensive Visibility
- Delivers insight into the security status of the organization.
Ensures Audit Readiness
- Enables rapid response to internal or regulatory compliance requirements.
|
Highly Scalable for Distributed Environments
- Ensures complete coverage for the largest worldwide networks with high-availability topologies and n-tier distribution architecture. Packages are cached locally, minimizing network traffic and optimizing bandwidth utilization.
|
Adapts to Your Growing Business
- Leverages your current network infrastructure in order to reduce TCO from day one of implementation through the life of the subscription.
- Adapts to various organizational setups, so you can always integrate the scanner into new business structures.
- Ensures inventory and management of both physical and virtual environments from one consolidated console.
|
Role- and Policy-Based Administration
- Enables the Patch Management Administrator to delegate/ approve patch management activities/ information across multiple employees, based on the employee’s role or security level.
- Ensures that all systems meet a mandatory baseline policy – a key aspect of corporate security and regulatory compliance.
|
Enforces Compliance In Your Organization
- Enables you to set specific policy and enforcement for each group in the enterprise.
- Provides maximum policy flexibility with automated enforcement, saving both time and effort by IT staff.
Increases Productivity
- Significantly improves productivity while maintaining security.
|
Network Access Control (NAC) Integration Support
- Automatically assesses endpoints as they attempt to gain access to the network and remediate to a compliant state before access is allowed.
|
Improves Your Security Posture
- Assures that only compliant endpoints can gain access to the network and automatically remediates any non-compliant machines into an authorized state so network access can be granted.
|
Open Architecture
- Supporting open standards and multiple sources of content, Lumension Patch and Remediation delivers a customizable and diverse platform for operational security management.
- Seamlessly manages third party vendor content and automatically detects and obtains prerequisite patches.
|
Provides a Consolidated, Single Tool To Meet All Your Patching Needs
- Single tool's extensibility addresses the needs of customers and provides flexibility to easily accommodate new software and initiatives as they arise.
- Automates the management and reporting of Lumension and third party licensed content and prerequisite patches without complex or manual credentials management.
|
Extensible, Modular Agent Architecture
- Resilient, lower overhead agent with scalable architecture to secure on- and offline systems.
- Provides easy agent install and uninstall capabilities.
|
Provides Comprehensive On- and Offline Protection
- Protects laptops, servers, and desktops that are often disconnected from the network and reduces network bandwidth usage.
- Resilient agent offers self-monitoring and recovery capabilities for increased security.
|
Enhanced Wake-on-LAN
- Enables "wake now" capability for specific devices at any given time to deploy highly critical patches or urgent software updates.
|
Improves Security Posture for Offline Machines While Reducing IT Power Consumption
- Eliminates blind spots in ongoing network maintenance and ensures that offline machines receive critical patches and software updates.
- Ensures the attainment of maximum energy efficiency when used with power policies via Lumension Content Wizard.
|
Directory Services Integration
- Dynamic creation of groups based on existing Microsoft Active Directory environments with cascading inheritance for agent policy, mandatory baseline and user permissions.
|
Saves Time and Cost
- Saves time and reduces TCO by integrating with Active Directory which eliminates the need to recreate the logical organization of systems.
|
Automated Agent Distribution
- Automated deployment of the Lumension remediation agent to unmanaged (rogue) computers.
|
Saves IT Operations Time and Effort
- Ensures maximum coverage and protection, with minimal time and effort required by IT operations.
|
Automatic Notifications
- E-mail alerts can be sent to administrators to notify them of a variety of issues, including subscription or remediation failures, upcoming license expiration and more.
|
Improves Security
- Improves security through the timely response to issues.
Improves Productivity
- Improves administrative productivity through proactive, automated alerts.
|
Flexible Operating Hours
- Administrators can define specific days and intervals of time during which the agent can communicate with the server and perform operations, in granular half hour increments
|
Ensures No Downtime or Disruptions
- Minimizes business disruptions and thus improves the productivity of the organization.
|
Flexible Group Management
- Creates custom computer groups based on the enterprise’s needs.
- Allows the administrator to represent multiple layers of geographical or organizational structure within the solution.
- Hierarchical "Nested" Grouping.
|
Increases Deployment Accuracy and IT Efficiency
- Enables you to increase deployment accuracy and IT efficiency by employing an organized approach via custom groups.
Increases Productivity
- Reduces agent and group configuration efforts through more efficient creation and management of agents within groups.
Improves Policy Management
- Facilitates the deployment of group-specific patches according to your corporate policy.
|
Key Indicator Dash Board
- Enables creation of a custom dash board for the most critical information in order to highlight the success of your organization's patch management process from a list of 8 key indicators.
|
Provides Visibility Into Real-Time Patch Status & Overall Security Posture
- Provides an informative snapshot of current patch status in order to report to executive management.
|
Multi-Patch Deployments
- Delivers multiple patches to multiple computers in one distribution.
|
Reduces IT Costs
- Simultaneously eliminates multiple vulnerabilities are simultaneously eliminated while minimizing IT costs.
|
Subscription Service
- Automatic and secure identification and notification of the latest patch vulnerabilities across multiple platforms and applications.
|
Saves IT Operations Time and Effort
- Eliminates the cost of manually monitoring, acquiring and staging patches for multiple platforms and applications throughout the enterprise.
Enhances Your Security Posture
- Ensures systems stay patched and are automatically updated.
- Ensures unauthorized packages are not able to enter your network.
|