Lumension® KnowledgeBase

Article Number:
833

Date Created:
07/16/2012

Last Updated:
01/25/2014

Article Type:
Release Notes

L.E.M.S.S. 7.2

Description

Product:

L.E.M.S.S.

Versions:

Lumension Endpoint Management and Security Suite (LEMSS) 7.x

Summary:

L.E.M.S.S. 7.2 contains numerous improvements which deliver greater platform stability, improved performance, expanded patch content and new Intelligent Whitelisting features.
This release also includes platform integration of Lumension® Endpoint Integrity Service (EIS). This means organizations may now explicitly identify and verify the authenticity of all applications found within their endpoint environment and utilize a Lumension application trust rating to  make informed decisions on their application whitelisting policies.

Details

INFORMATION

Name:

Lumension Endpoint Management and Security Suite version 7.2

Impact:

Critical

Supersedes:

Lumension Endpoint Management and Security Suite Version 7.1

Server Suite:

7.2.0.10

Pre-Requisites

  • New Installs: See system requirements and hardware sizing guide at KB 787
  • Upgrades: All previous versions of LEMSS 7.0 and 7.1.

New Features

Lumension Endpoint Management and Security Suite 7.2 includes the following new features.  For more information on new features, visit http://www.lumension.com/endpoint-management-security-suite/what-is-new.aspx#video.

  • Easier management of large lists with “Select All” options: on Manage Endpoints, Discovery Job Results and Application Library
  • Agent Management Job status messaging improvements including uninstall/overwrite jobs
  • Ability to move wizards: for "Schedule Agent Manage Jobs" and "Schedule adhoc discover scans“ to view data underneath
  • Performance improvements on group tree-view: on Endpoints, Inventory and Deployments
  • Patch and Remediation:  Expanded Windows non-Security Patch Content
  • Patch and Remediation:  Optimized Patch Assessment and Performance for Distributed Environments
  • AntiVirus:  New Administrator UI for AV Downloads provides visibility and control of the AntiVirus engine and signature downloads settings
  • AntiVirus:  Multiple policies per endpoint provide flexibility of light scans combined with deep scans on a single endpoint
  • AntiVirus:  CPU Throttling provides policy-based control of the maximum CPU utilization during AV scans
  • AntiVirus:  Windows Security Center integration so that Windows recognizes presence of Lumension AV
  • Application Control:  Integrated Cloud-Based Application Trust Ratings for files in Application Library
  • Application Control:  Local Authorization allows end users to authorize apps on the fly
  • Application Control:  Supplemental Easy Lockdown/Auditor Policy centrally authorizes new and updated applications
  • Application Control:  Support Self Updating Trusted Updaters, including Windows Update for reduced policy maintenance when the Trusted Updater gets upgraded
  • Application Control:  Scheduled Application Event Log Query can now run and notify via email when results are available
  • Application Control:  Application Library Enhancements include drag and drop, “Select All” across multiple pages and Authorize/Deny directly from App Library
  • Performance and stabilization improvements across the entire Lumension EMSS platform, including  Application Control, AntiVirus, Device Control, and Patch and Remediation.
  • Upgrades from L.E.M.S.S. 7.1 server should be completed using the integrated Installation Manager
  • Upgrades from L.E.M.S.S. 7.0 server should be completed using the 7.2 installer

FAQ

How to obtain version 7.2?

Version 7.2 was released on July 17, 2012 and will be published on the Global Subscriptions Servers (GSS) for automatic download for existing installations.

New installations will have to download the 7.2 installer from the Lumension Customer Portal.

How do deploy the version 7.2?

  • LEMSS 7.1 customers can upgrade their existing LEMSS Server by logging into the Management Console > select Tools > Installation Manager, navigating to the 'New/Update Components' tab and selecting Server Suite 7.2.0.10 which contains the new components for the platform and any installed feature modules. All new installs of LEMSS 7.2 will automatically apply the latest updates.
  • LEMSS 7.0 servers can upgrade directly to LEMSS 7.2 by running the installer on the existing server. LEMSS 7.0 servers must be upgraded to LEMSS 7.2 before the LEMSS 7.2 Agent (7.2.0.10) will be available.
  • LEMSS 7.1 customers can upgrade their existing LEMSS agents by selecting “Agent Versions…” from either the Manage > Endpoints page or the Manage > Groups > Endpoint Membership page. All new installs of LEMSS 7.2 will have the 7.2.0.10 Agent by default.

How to determine if version 7.2 was successfully applied?

  • Server: Following installation of the LEMSS 7.2 (suite 7.2.0.10), navigate to the Help > About page in the LEMSS console. The Server Suite Version will indicate '7.2.0.10'.
  • Agent: Upgraded agents are visibly on the console by navigating to the Manage > Endpoints page in the LEMSS console, the Agent version for the applicable Windows endpoint will read '7.2.0.10'.

Issues Resolved

For a complete list, download the 7.2 Release Notes by logging into the Lumension Customer Portal.

ID

Title

Module or Component

71492

Resolved issue with the expired CA Root RSA Certificate For update.patchlinksecure.net with a new certificate.  Fresh installs and upgrades to L.E.M.S.S. 7.2 must point to the new cdn.securegss.net address.  For more information see KB334 and KB820.

Core

148852

Resolved issue when the server is suddenly powered off and some endpoints fall offline and not recover until the LEMSS Agent service is restarted

Core

150662

Resolved issue when services sometimes stopped when upgrading from prior agent on Windows Server 2008 R2

Core

137896

Resolved issue with combination of agent and registry change when EPS.sys driver caused large outage across Exchange 2003 fleet on Win2k3 x86 w/ Microsoft Active Sync

 

Workaround:  Contact Support for instructions on complementary registry change.  Option is to turn off Agent Hardening when not using AntiVirus or Application Control modules

Core

134899

Resolved issue after upgrade when exception occurs due to duplicate Agent IDs being present in database. 

Core

129624

Resolved issue with excessive memory use when application scan is scanning an exceptionally large number of executable files (results greater than 100MB)

Application Control

139582

Resolved issue where error is received when attempting to expand OU during Application Control or Device Control policy assignment

Core

145583

Resolved issue when unable to remove agents from groups if GROUPLIST parameter was used during agent install

Core

133105

Resolved issue where users were sometimes unable to expand deployments on the Deployments and Tasks page

Core

141305

Resolved issue with large number of endpoints when Endpoint Deployments and Tasks page failed to return results

Core

136185

Added message "Loading Results ... Please Wait" when there is a delay in displaying individual endpoint deployments and task page

Core

149401

Resolved issue when deleting deployment header names which resulted in display of “no child records” message

Core

141772

Resolved issue where Install Manager would not install if password had spaces

Core

137944

Resolved issue that may occur when the message “an exception occurred while performing the requested operation” is received while viewing endpoints in custom groups

Core

140837

Resolved issue when a null object is encountered during AD sync, the system now properly handles the null object and continues the sync

Core

138979

Resolved issue which may result in an Application Scan crash when an unhandled exception occurred

Application Control

140274

Resolved file transfer rate performance issue when copying files with the Real Time Monitoring AV policy enabled

AntiVirus

146903

Resolved issue when date settings do not match HH:MM:SS TT the 'Assign Wake Times' function of Wake on LAN will not work and provide no errors

Core

123085

Resolved issue with Power Management Reports when the reporting period crosses over a calendar year

Power Management

Known Issues

The Lumension Endpoint Management and Security Suite (Lumension EMSS) 7.2 release contains the following known issues.  For a complete list, download the 7.2 Release Notes by logging into the Lumension Customer Portal.
 

ID

Title

Module or Component

144575

Core agent does not respect the Agent Logging maximum file size specified in the Agent Policy Sets, instead eps.log maximum file size follows system default settings.

Core

143733

On Windows XP and Windows Server 2003, the pre-requisite Microsoft .NET Framework 2.0 or higher must be installed to use the Remote System Management feature

Core

149909

LMAgent.exe appears to attempt to terminate McAfee processes during LPR module install.  There is no termination, but it fills the logs with non-critical information.

 

Workaround:  Add the LMAgent.exe process to appropriate McAfee exception rules to avoid the extraneous messages in the McAfee logs.

Core

148439

Agent does not support non-default install location on x64 machines, results in various Agent user interface issues

Core

150297

Agent does not support upgrades from previous agents when installed on a machine with no “C:\”

 

Workaround:  Uninstall prior Agent version and install 7.2 Agent

Core

149785

Windows Security Center(WSC): Virusscanner does not support Vista RTM OS in updating WSC status

AntiVirus

148826

Blocked notifications are only generated for .exe’s and are not generated for .dll’s

Application Control

150518

The Blocked notification dialog is displayed after the user selects “deny” on the Local Authorization dialog

Application Control

139594

When the Local Authorization dialog is dragged around the screen it may appear multiple times

Application Control

148608

Local Authorization is being triggered for when viewing a folder with non-authorized DLLs, if Local authorization is set to EXE + DLL

Application Control

144110

Some applications cannot be installed using Trusted Publisher, including Apple® iTunes®

 

Workaround:  Install using a Trusted Updater

Application Control

141413

Some applications that launch a new executable may not be authorized during the Easy Lockdown scan on x64 platforms.

 

Workaround:  Authorize using a trust policy

Application Control

149791

There are varying levels of impact to application launch times following system startup dependent upon the hardware.  The impact is most noticeable immediately following startup when the LEMSS Agent Control panel display is loading and the AntiVirus module status displays as “initializing”.

Application Control

AntiVirus

Device Control

12345678910
Current rating: 5.3