Welcome
The Extentrix EPA Scans for Citrix Access Gateway (Enterprise) provide an administrator with the means to ensure that client endpoints connecting to the corporate network are doing so in a safe and secure manner. The client is scanned based on rules created by the administrator according to business needs. Each rule is made up of one or more scans.
For example, the administrator can create a rule to check if the connected client is lacking the latest antivirus signature update (Smart Detectors Scan) and has a corporate SSL certificate on the device (Certificate Map Scan). The administrator can define the action to be taken if the rule conditions are not met. The scans and rule(s) are uploaded to the NS/CAG device and the rule(s) are applied to access policies.
When a client attempts to establish a connection to the NS/CAG device using either the Citrix Secure Access Client, or through a Web Browser, the client’s local environment is scanned for defined rule conditions; based on the results of the scan, the client can be allowed or denied access.
New Features
V5.0 of the Extentrix EPA Scans Enterprise Edition includes the following new features/upgrades:
• License Manager node within the Management Console
• The ability to create and upload Citrix EPA Scans in the same manner as
Extentrix EPA Scans
• User Customizable Smart Detector Scans
• Extentrix Windows Security Centre Scan
• Extentrix Domain SID Scan
• Support for a further 140+ AV/AS/FW products.
• Visual improvements to the management Console
• Minor Bug-Fixes
Introduction
The following steps define the processes required to install, configure and use the Extentrix EPA Scans Enterprise Edition Software.
1. Download and install Extentrix EPA Scans Enterprise Edition Software
2. Obtain a product license and import using the License Manager
3. Add a Citrix ® host device (Use Citrix hosts node)
4. Upload Extentrix EPA Scan Engine DLL (called EPAFactory.dll) to Host Device (Use Extentrix EPA Scan Engine Client node)
5. Create scans and upload them. (Use Scans node)
6. Create rules based on configured scans and upload them (Use Rules node)
7. Apply the rules to Access Policies (NS/CAG Management Console)
8. Test the functionality of the Scan/Rule
Installation
This chapter explains how to install Extentrix EPA Scans Enterprise Edition on Windows platforms.
The product has 2 main components:
• The Extentrix EPA Scans Management Console
• The Scan Engine Client
Before You Begin
Please read the following information before you install Extentrix EPA Scans Enterprise Edition.
1. The product must be installed on one of the following operating systems:
a. Microsoft® Windows Server™ 2000 SP4 or higher
b. Microsoft® Windows Server™ 2003 SP2 or higher
c. Microsoft® Windows Server™ 2008 SP1 or higher
2. The product is compatible with the following Citrix Netscaler ® Devices:
a. MPX 5500
b. Model 7000
c. Model 9010
d. MPX 9500
e. Model 10010
f. MPX VPX – Version 1000
3. The product requires 10MB of hard-disk space.
Installing Extentrix EPA Scans Enterprise Edition
Overview
Launch the EPAScansEnterpriseEdition.exe.
Follow the subsequent steps to install Extentrix EPA Scans Enterprise Edition:
1. Extentrix EPA Scans Enterprise Edition Setup wizard starts and the Welcome page opens. Click Next to install.
2. On the next screen, you are presented with the EULA. Select “I Agree to the terms of this license agreement” and click Next
3. On the next screen, you are presented with the Installation Folder dialog. Click Next unless you wish to install to a different folder path
4. On the next screen, you are shown the Ready to Install dialog, ensure that the installation details are correct, click Next
5. On successful completion of the installation routine, you are shown the Installation Successful dialog; click Finish to exit.
Launch the EPA Scans Enterprise Edition Management Console by selecting: Start Menu > All Programs > Extentrix > EPA Scans Enterprise Edition > EPA Scans Enterprise Edition Console
Using Extentrix EPA Scans Enterprise Edition
The Management Console
The Extentrix EPA Scans Enterprise Edition Management Console has two panes; Tree Pane on the left, and View Pane on the right. The root node of the Tree Pane displays the Citrix Hosts, Rules, Scans and Extentrix EPA Scan Engine Client child nodes.
If any child node in the left pane is selected, the corresponding information is displayed in list view in the right pane.
Add a Citrix Host Device
The procedure to define, add and validate a Citrix Host device is as follows:
1. Right click the Citrix Hosts child node and select “New Citrix Host”
2. Input the following Information into the “Add New Host” wizard:
• Host Name – the host name of the NS/CAG device
• Server IP Address – the NS/CAG device IP address
• Username – the root username of the NS/CAG Device
• Password – the root user password
• Description – any pertinent information to assist in managing the host device
3. Click Save to register the host device information
4. Select the newly added host, and click Validate Connection
5. To modify the host detail click Modify Host Credentials
Licensing Extentrix EPA Scans Enterprise Edition
To license the product, proceed as follows:
1. Open the License Manager within the Extentrix Management Console, click Add License
2. Click on the sales@extentrix.com link, a pre-populated email will open:
3. Extentrix will provide you with a trial license or full license as appropriate.
The license is in the format of a dll (called Ext-license.dll). Once received, this file should be uploaded using the License Manager within the console:
4. Select the License Manager node, Click Add License
5. Click Add License
6. Browse to and select the EXT-License.dll file, Click Open
7. The license details will be displayed in the License File Information pane
Note: If a license is not deployed, Scans, Rules and the Scan Client Engine WILL NOT upload to the NS/CAG device.
Upload the Client Scan Engine
To enable the EPA Scans to run when a user attempts to connect to the corporate resource, the user`s endpoint device requires a client component to be installed locally (EPAFactory.dll). This component is held centrally on the NS/CAG device, and is uploaded to the NS/CAG via the Extentrix EPA Scans Enterprise Edition management console.
1. Select the Extentrix EPA Scan Engine Client child node.
2. Click Select File
Note: The EPAFactory.dll is located at
3. Browse to and select the EPAFactory.dll and click Open.
4. Select the File Upload tab, ensure that the host details are correct and click Upload File
• It is now possible to upload the .dll to all imported hosts by selecting All in the Host dropdown dialog.
• The comments field can be used to add pertinent information to assist in identifying an uploaded dll file.
Create and Upload a Scan
A Scan is an expression that can be applied to an access policy – or combined with other Scans in a Rule.
1. Right-Click the child node of the Scan to be created – in this example the Client certificate Scan
2. Input the name of the scan
Note: Scan names must NOT contain SPACES. It is recommended to either use “_” between words, or to name scans as shown below:
3. To configure the scan, input the required attributes, and click Save
4. The scan has to be uploaded to the NS/CAG device before it can be applied to an access policy.
5. Select the Scan Upload tab, review the information and click Upload.
The Upload Process dialog will show the upload in progress and when it has completed.
Create and Upload a Rule
A Rule is a combination of one or more scans that is then uploaded to the NS/CAG device and applied to a policy. Rules require a Rules Folder, enabling an administrator to logically group rules for ease of administration.
1. Right-click the Rules child node in the tree view pane, and select New Folder.
2. Input the name of the rules folder and click Save.
3. Right-click the Rules folder and select New Rule.
4. Input the rule name, and an optional description.
Note: Rule names must NOT contain SPACES. It is recommended to either use “_” between words, or to name rules as shown below:
5. Select the new rule in the Tree view pane, and configure it in the View pane. A rule combines 2 or more scans, and can use a combination of AND, OR and NOT Boolean values as required to create the rule to the exact specifications of the administrator.
Example: Select root, Click AND (ensure AND is highlighted in the r/h pane), select a required Scan and click Add Scan.
6. Once the rule has been configured as required, click Save.
7. The rule has to be uploaded to the NS/CAG device before it can be applied to an Access Policy.
8. Select the Rule Upload, review the information and click Upload.
The Upload Process dialog will show the upload in progress and when it has completed.
Apply the Rule/Scan to a Policy
Once uploaded to the NS/CAG device, an Extentrix Rule or Scan is regarded as an Expression. The penultimate step in the process is to create an Access Policy and apply the uploaded Rule or Scan to it.
For further explanation on the subject of the Access Gateway Device, Policies, Profiles and Expressions, see http://support.citrix.com/proddocs/index.jsp.
1. Open the NS/CAG Management Console, open the Access Gateway child node, and open the Policies sub-menu.
2. Select the type of policy to be created, and click New
3. Name the Policy
4. The Policy must be applied to a Request Profile
5. The Rule or Scan will be in “Named Expressions General”. Open the drop-down box and select the Scan or Rule you require.
6. Click Add Expression
7. Click Create and Close
8. Finally, test that the policy functions correctly against a connecting client.
Citrix EPA Scans Detail
Citrix Client File Scan
Scans the client end-point device and checks if one or more files are installed and located as defined within the scan.
CLIENT.FILE\\Path, Qualifier, Operator, Frequency, Error Weight, Freshness, Operand
Parameters
Path
Specifies the path of the file to be scanned for; click Select File to choose a particular file.
Qualifier
Specifies the file attributes to be scanned for:
• No Qualifier – Scan for the file name only
• Time Stamp – Scan for the file name and the time stamp
Operator
Specifies the status of the Qualifier:
• No Qualifier : Exists – The file must be present in the given path
• No Qualifier : NotExists – The file must not exist in the given path
• Time Stamp : != : YYYY/DD/MM – The file must not have the time stamp stated
• Time Stamp : == : YYYY/DD/MM – The file must have the time stamp stated
Frequency (min)
The time interval (in minutes) after which a client security check is carried out
Error Weight
Determines which expressions client security error message will be displayed when a compound expression that uses multiple client security expressions fails.
Freshness
Added to an antivirus, firewall, or anti-spam expression to configure the required number of days since the target was updated.
Operand
Specifies the relationship between expression sets:
• AND (&&) – All defined files will all be checked for the required status, and all must comply to pass the scan
• OR () – Any of the defined files that meet the required status will cause the scan to be successful
Sample
CLIENT.FILE(C:\\WINDOWS\\system32\\SafeToConnect.txt) EXISTS
Citrix Client OS Scan
Scans the client end-point device and checks if a particular OS version is installed as defined within the scan. The scan definition can include service packs and/or Windows Updates
CLIENT OS\\Name, Qualifier, Operator, Frequency, Error Weight, Freshness, Operand
Parameters
Name
Specifies the name of the OS to be scanned for:
• winnt
• win2000
• winxp
• win2003
• winvista
• win2008
• win7
Qualifier
Specifies the OS attributes to be scanned for:
• No Qualifier – Check for OS version only
• Service Pack – Check for the given Service Pack level
• Hotfix – Check for the given Hotfix number
Operator
Specifies the status of the Qualifier:
• No Qualifier : Exists – the OS version is required to be as given in the Name field
• No Qualifier : NotExists : the OS Version should not be as given in the Name field
• Service Pack : == : The service pack level should be as given in the Value field
• Service Pack : != : The service pack level should not be as given in the Value field
• Hotfix : == : The number, as given in the Value field, should exist
• Hotfix : != : The number, as given in the Value field, should not exist
Frequency (min)
The time interval (in minutes) after which a client security check is carried out
Error Weight
Determines which expressions client security error message will be displayed when a compound expression that uses multiple client security expressions fails.
Freshness
Added to an antivirus, firewall, or anti-spam expression to configure the required number of days since the target was updated.
Operand
• AND – All Qualifiers will be checked for the required status, and all must comply to pass the scan
• OR – Any of the Qualifiers that meet the required status will cause the scan to be successful
Sample
CLIENT.OS(win7) EXISTS CLIENT.OS(win2008) EXISTS
Citrix Client Process Scan
Scans the client end-point device and checks if one or more application processes are active as defined within the scan.
CLIENT APPLICATION PROCESS\\Name, Qualifier, Operator, Frequency, Error Weight, Freshness, Operand
Parameters
Name
Specifies the name of the Process to be scanned for:
Qualifier
Specifies the Process attributes to be scanned for:
• No Qualifier – Check for Process status only
• MD5 – Check for the given MD5 Hash as given in the Value field
Operator
Specifies the status of the Qualifier:
• No Qualifier : Exists : the Process name, as given in the Name field, is required to be running
• No Qualifier : NotExists : the Process name, as given in the Name field, is required to be not
running
• MD5 : == : The MD5 Hash should be as given in the Value field
• MD5 : != : The MD5 Hash should not be as given in the Value field
Frequency (min)
The time interval (in minutes) after which a client security check is carried out
Error Weight
Determines which expressions client security error message will be displayed when a compound expression that uses multiple client security expressions fails.
Freshness
Added to an antivirus, firewall, or anti-spam expression to configure the required number of days since the target was updated.
Operand
• AND – All Qualifiers will be checked for the required status, and all must comply to pass the scan
• OR – Any of the Qualifiers that meet the required status will cause the scan to be successful
Sample
CLIENT.APPLICATION.PROCESS(ssonsvr.exe) EXISTS
Citrix Client Register Scan
Scans the client end-point device and checks if one or more registry keys and/or values are configured as defined within the scan.
CLIENT .REG\\Name, Qualifier, Operator, Frequency, Error Weight, Freshness, Operand
Parameters
Name
Specifies the name of the registry Key to be scanned for:
Qualifier
Specifies the Registry Key / Value attributes to be scanned for:
• No Qualifier – Check for the Registry Key status only
• Value– Check for the given Registry Key Value as given in the Value field
Operator
Specifies the status of the Qualifier:
• No Qualifier : Exists : the Registry Key name, as given in the Name field, is required exist
• No Qualifier : NotExists : the Registry Key name, as given in the Name field, is required to not exist
• Value : == : The Registry Key value should be as given in the Value field
• Value : != : The Registry Key value should not be as given in the Value field
Frequency (min)
The time interval (in minutes) after which a client security check is carried out
Error Weight
Determines which expressions client security error message will be displayed when a compound expression that uses multiple client security expressions fails.
Freshness
Added to an antivirus, firewall, or anti-spam expression to configure the required number of days since the target was updated.
Operand
• AND – All Qualifiers will be checked for the required status, and all must comply to pass the scan
• OR – Any of the Qualifiers that meet the required status will cause the scan to be successful
Sample
CLIENT.REG(HKEY_LOCAL_MACHINE\\Software\\Windows\\CurrentVersion\\Explorer\\MaxCachedIcons).VALUE == 1000
Citrix Client Service Scan
Scans the client end-point device and checks if one or more windows services are configured as defined within the scan.
CLIENT .SVC\\Name, Qualifier, Operator, Frequency, Error Weight, Freshness, Operand
Parameters
Name
Specifies the name of the Service to be scanned for:
Qualifier
Specifies the Service attributes to be scanned for:
• No Qualifier – Check for the Service presence only
• Version– Check for the Service Version as given in the Value field
Operator
• No Qualifier : Exists : the Service name, as given in the Name field, is required to exist
• No Qualifier : NotExists : the Service name, as given in the Name field, is required to not exist
• Version : == : The Service Version should be as given in the Value field
• Version : != : The Service Version should not be as given in the Value field
Frequency (min)
The time interval (in minutes) after which a client security check is carried out
Error Weight
Determines which expressions client security error message will be displayed when a compound expression that uses multiple client security expressions fails.
Freshness
Added to an antivirus, firewall, or anti-spam expression to configure the required number of days since the target was updated.
Operand
• AND – All Qualifiers will be checked for the required status, and all must comply to pass the scan
• OR – Any of the Qualifiers that meet the required status will cause the scan to be successful
Sample
CLIENT.SVC(wuauserv) EXISTS
Extentrix EPA Scans: Detail
Extentrix Client Certificate Scan
Scans the client end-point device and checks if one or more certificates are installed as defined within the scan.
EPAFACTORY\\CCER, SCAN1, Searching method, Search name / Store name [search name / store name]
Parameters
CCER
Specifies the name of the scan: (The value is constant)
SCAN1
Specifies the name of the scan API: (The value is constant)
Searching method
Defines the method used to check for the certificate, there are two methods:
• Issuer: Search by Issuer.
• Subject: Search by Subject.
Search name
Specifies the string to be searched for
Store name
Specifies the location of the certificate (path)
Sample
CLIENT.REG("EPAFACTORY\\\\CCER\,SCAN1\,Issuer\,Microsoft\,ROOT")EXISTS
CLIENT.REG("EPAFACTORY\\\\CCER\,SCAN1\,Subject\,CN=Generic Trust CA/ROOT")EXISTS
Extentrix Client Registration Scan
This scan is used to grant a user access to corporate resource(s) based upon agreement to, for example, a nondisclosure agreement. Upon agreement, the user will be allowed access for a pre-defined number of days; this period of time can be renewed as determined by the administrator. For example, the administrator can allow a user to try an application for 2 days, after which access will be denied.
EPAFACTORY\\CREG, SCAN1, Agreement message, Hidden value, Agreement maximum Allowed days, Allow renew, Renew times, Renew days, Expire warning message, Expire warning message allowed days, Expired message
Parameters
CREG
Specifies the name of the scan: (The value is constant)
SCAN1
Specifies the name of the scan API: (The value is constant)
Agreement message
A string value that defines the text of the agreement the administrator requires an end user to accept, prior to being granted access to corporate resources.
Hidden value
A string value which is specific to each user, it`s purpose is to save the acceptance status of the user. This value is hidden from the user and saved internally by the Extentrix scan to ensure that the user has accepted the agreement message.
Agreement maximum allowed days
An integer value defining the maximum numbers of days for which a user is allowed to access the corporate resource, starting from the acceptance date of the agreement.
Allow renew
A Boolean value which when true allows a user to re-register and use the corporate resource for a further period of time.
Renew times
An integer value that defines the number of times a user is allowed to re-register.
Renew days
An integer value that defines a value for the number of days the user will be granted access to the corporate resource upon re-registration.
Expiry warning message
A string value that defines the text of a warning message used to alert a user when their access period is about to expire.
Expiry warning message allowed days
An integer value that defines a value for the number of days prior to the end of the Agreement period, [Agreement maximum allowed days] at which time the user will be presented with the Expiry warning message.
Expired message
A String value that defines the message text that will be displayed after the user’s registration has expired.
Sample
CLIENT.REG("EPAFACTORY\\\\CREG\,SCAN1\,Do\\ you\\ agree\\ to\\ the\\ terms\\ of\\ the\\ license\?\,temp\,30\,TRUE\,3\,10\,Your\\ registration\\ is\\ about\\ to\\ expire\,5\,Your\\ registration\\ has\\ expired") EXISTS
EXTENTRIX COMPUTER MAP CHECK SCAN
This scan is used to check the user's machine, gets the hostname, and maps the result to one of the allowed groups –if any. If the scan result shows that the hostname belongs to the group specified by the IT administrator, the user will be allowed access to the corporate resource; if not, access will be denied. This type of scan will assist in protecting critical data and corporate resources from misuse by undesired users.
EPAFACTORY\\CMAP, SCAN1, Computer Name/Group Name[;Computer Name/Group Name]
Parameters
CMAP
Specifies the name of the scan: (The value is constant)
SCAN1
Specifies the name of the scan API: (The value is constant)
Computer name
A string value that defines the expected Hostname of the endpoint device
Group name
A string value that defines the expected name of the group (Workgroup/Domain) to which the client device should belong.
Remarks
Note: In computer name WILD CHARACTERS (?,*) are supported as well as the exact string.
Sample
CLIENT.REG("EPAFACTORY\\\\CMAP\,SCAN1\,OfficeLaptop/OfficeDomain\; */ADDomain") EXISTS
Extentrix Connection Type Scan
This scan determines the connection type and speed of the end point client device. Based on this information the administrator will determine the appropriate action to take. For example, an administrator may be required to grant clients who are connecting to the corporate resource via a wireless connection a restricted level of access.
EPAFACTORY\\CONN, SCAN1, Ethernet Flag, LAN Wireless Flag, Dial Up Flag, Others Flag
Parameters
CONN
Specifies the name of the scan: (The value is constant)
SCAN1
Specifies the name of the scan API: (The value is constant)
Dial up flag
True value indicates scan for this connection type.
Ethernet flag
True value indicates scan for this connection type.
LAN wireless flag
True value indicates scan for this connection type.
Others flag
True value indicates scan for this connection type.
Sample
CLIENT.REG("EPAFACTORY\\\\CONN\,SCAN1\,True\,True\,True\,True") EXISTS
Extentrix Console Detection Scan
This scan determines if the end user is connecting remotely to the Endpoint PC. The scan will indicate if the user is using the actual physical Endpoint PC or has connected to it by common remote control software (RDP, ICA, and RealVNC).
EPAFACTORY\\COND, SCAN1, Console Flag, RDP Flag, ICA Flag, ConsoleAndVNC Flag
Parameters
COND
Specifies the Name of the scan: (The value is constant)
SCAN1
Specifies the name of the scan API: (The value is constant)
Console flag
User is using the actual physical Endpoint PC, or VNC.
RDP
User is using the Remote Desktop Connection.
ICA
User is using the ICA (Citrix Program Neighborhood) connection.
ConsoleAndVNC
User is using the actual physical Endpoint PC or VNC, and Real VNC installed.
Sample
CLIENT.REG("EPAFACTORY\\\\COND\,SCAN1\,True\,True\,True\,True") EXISTS
Extentrix MAC Address Scan
This scan detects the media access control (MAC) address for each network interface card (NIC) or network adapter on the client device and compares the address against the valid MAC addresses. This scan requires you to add valid MAC addresses.
The Add MAC List button allows you to import a list of MAC addresses from a .csv file.
EPAFACTORY\\MACA, SCAN1, MAC Address[;MAC Address n]
Parameters
MACA
Specifies the name of the scan: (The value is constant)
SCAN1
Specifies the name of the scan API: (The value is constant)
MAC address
A string value that defines a valid MAC address (or list of addresses) that are allowed access.
Remarks
The MAC address should be in the format NN-NN-NN-NN-NN-NN, such as 00-0F-A1-06-B3-E9
Sample
CLIENT.REG("EPAFACTORY\\\\MACA\,SCAN1\,00-0C-29-76-CC-2A") EXISTS
Extentrix Prompt User Scan
This scan provides an administrator with the ability to ask an end user a direct question. Depending on the answer, the user can be denied or allowed access to the corporate resource. The administrator can determine the required answer type, either Yes/No or Ok/Cancel buttons.
EPAFACTORY\\PUSR, SCAN1, Question, Type of Buttons, Caption String
Parameters
PUSR
Specifies the name of the scan: (The value is constant)
SCAN1
Specifies the name of the scan API: (The value is constant)
Question
A string value that defines the message/question displayed to the user.
Type of button
A string value that defines the type of response button: (OK/Cancel), (Yes/No).
Caption string
A string value that defines the scan dialog box title.
Sample
CLIENT.REG("EPAFACTORY\\\\PUSR\,SCAN1\,Is\\ this\\ Scan\\ Working\?\,Yes/No\,Working\\ Scan") EXISTS
EXTENTRIX SCREEN SAVER SCAN
This scan allows an administrator to scan the end-users device and check for the presence of a Screen Saver and whether or not it is password protected.
EPAFACTORY\\SSD, SCAN1, Password Protection Flag
Parameters
SSD
Specifies the Name of the scan: (The value is constant)
SCAN1
Specifies the name of the scan API: (The value is constant)
Password protection flag
True: Detect the presence of the screen saver and if it is password protected
False: Detect the presence of the screen saver only.
Sample
CLIENT.REG("EPAFACTORY\\\\SSD\,SCAN1\,TRUE") EXISTS
EXTENTRIX SID SCAN
This scan allows an administrator to scan the end-users device and check the Domain SID against a defined list. The SID should be in the format (S.1.5.21.xxxxxxxxxx.xxxxxxxxxx.xxxxxxxxxx)
EPAFACTORY\\SID, SCAN1, Identifier
Parameters
SID
Specifies the Name of the scan: (The value is constant)
SCAN1
Specifies the name of the scan API: (The value is constant)
Identifier (35 Characters)
Specifies the Security Identifier in the form:
S-X-X-XX-XXXXXXXXX- XXXXXXXXX - XXXXXXXXX
Sample
CLIENT.REG(EPAFACTORY\\\\SID\,SCAN1\,S-1-5-21-7656492016-9763452009-0124564477) EXISTS
Extentrix Smart Detectors Scan
This scan allows an administrator to check if the client machine has Antivirus, Antispyware or Firewall installed and supported by Extentrix, and ensures that the installed Antivirus, Antispyware or Firewall is up to date and enabled.
EPAFACTORY\\SMRT, SCAN1, AVFWAS, AV Uptodate Period in Days , AV Show Dialog, FW Show Dialog, FW Check Enabled Flag, AS Uptodate Period in Days, AS Show Dialog
Parameters
SMRT
Specifies the name of the scan: (The value is constant)
SCAN1
Specifies the name of the scan API: (The value is constant)
AVFWAS
Specifies what to scan for:
Value Meaning
AV Check for Antivirus
FW Check for Firewalls
AS Check for Antispyware
AVFWAS Check for All
AV up-to-date period in days
A whole positive integer value that defines the period, within which, the signature of the Antivirus must have been updated.
AV show dialog
If true the progress bar will be shown while scanning.
FW show dialog
If true the progress bar will be shown while scanning.
FW check enabled flag
If true the Enable status will be checked for Firewalls
AS up-to-date period in days
A whole positive integer value that defines the period, within which, the signature of the Antispyware must have been updated.
AS show dialog
If true the progress bar will be shown while scanning.
Remarks
Combinations of product types can be defined within the scan: e.g. AVFW, FWAS, AVAS, etc
Sample
CLIENT.REG("EPAFACTORY\\\\SMRT\,SCAN1\,AVFW\,15\,True\,False\,True") EXISTS
Scan 2
This scan allows an administrator to check if the endpoint device has Vendor-Specific Antivirus, Antispyware or Firewall installed, and ensures that the installed Antivirus, Antispyware or Firewall is up to date and enabled.
EPAFACTORY\\SMRT, SCAN2, AVFWAS, AV Show Dialog, AS Show Dialog, FW Show Dialog, AV Uptodate Period in Days, AS Uptodate Period in Days, FW Check Enabled Flag, Vendors
Parameters
SMRT
Specifies the name of the scan: (The value is constant)
SCAN2
Specifies the name of the scan API: (The value is constant)
AVFWAS
Specifies what to scan for:
Value Meaning
AV Check for Antivirus
FW Check for Firewalls
AS Check for Antispyware
AV show dialog
If true the progress bar will be shown while scanning.
AS show dialog
If true the progress bar will be shown while scanning.
FW show dialog
If true the progress bar will be shown while scanning.
AV up-to-date period in days
A whole positive integer value that defines the period, within which, the signature of the Antivirus must have been updated.
AS up-to-date period in days
A whole positive integer value that defines the period, within which, the signature of the Antispyware must have been updated.
FW check enabled flag
If true the Enable status will be checked for Firewalls
Vendor
Specifies the Vendor or Vendors to be scanned for
Remarks
Only one type of product can be defined within the scan: e.g. AV, FW, AS
Multiple Vendors can be chosen per scan
Sample
CLIENT.REG(EPAFACTORY\\\\SMRT\,SCAN2\,AV\,True\,5\,1\,2\,3\,4\,5) EXISTS
More Coming Soon
No comments:
Post a Comment