IBM Tivoli and Cisco Network Card User Manual

Open as PDF

of 516

154 Building a Network Access Control Solution with IBM Tivoli and Cisco Systems

The status of a posture element can be one of the following:

PASS The data collection was successful, and the security

posture of the selected item matches the required value.

FAIL The data collection was successful, but the detected

value indicates that the client is noncompliant and

remediation

must be performed.

ERROR The data collection failed or an internal error occurred.

WARN The data collection was successful, but the detected

value indicates that the client is not optimally compliant

and remediation

is recommended.

When the posture collector sends data to the Tivoli Security Compliance

Manager server, the contents of the posture item are stored in the posture status

table associated with the posture collector in the database.

Posture collector parameters

Posture collector parameters are generally required and indicate what data

values should be checked, and what remediation should occur if a

noncompliance is found. Parameters are of one of two types:

Operational Operational parameters are used to make a determination

regarding a client system’s security posture. For example,

an operational parameter might indicate the required

software version, or the required frequency of virus scans,

or the maximum password age. If an operational

parameter is not specified, the posture collector does not

check the security posture represented by that parameter

and indicates a warning in the corresponding posture

element.

Workflow Workflow parameters are used for remediation purposes,

and their names generally end with a _WF suffix. If a

specific security posture check fails, the information

provided by the workflow parameter is used to remedy the

problem identified.

6.2.2 Policy collector

The com.ibm.scm.nac.posture.PolicyCollector.jar collector (or policy collector, for

short) running on the client uses the information that is collected by the posture

collectors to make a security posture policy decision without contacting the Tivoli

Security Compliance Manager server. If a posture element returned by a posture

collector indicates a violation, the policy collector can communicate that

information, along with any associated remediation workflow information, to the

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

IBM Tivoli and Cisco Network Card User Manual