Product:
BigFix Compliance
Title:
Updated BigFix Client Compliance Configuration and BigFix Client Compliance (IPSec Framework) which helps in maintaining the compliance status of the computers.
Published Sites:
BigFix Client Compliance Configuration, site version 59.
BigFix Client Compliance (IPSec Framework), site version 37.
(The site version is provided for air-gap customers.)
Details
- BigFix Client Compliance Configuration
BigFix Client Compliance Configuration allows you to deploy client compliance documents to a set of computers. You can also create a new policy document using BigFix Client Compliance Configuration Wizard. - BigFix Client Compliance Policy wizard
- Removed Windows versions who had reached End of Support (EOS).
- Latest Windows versions are added such as Windows 11, Windows 2012 R2, Windows 2016, Windows 2019, and Windows 2022.
- Service pack level checks are removed from Set Basic Quarantine Settings tab and only basic level settings are available such as “Maximum number of relevant critical patches”, “Maximum age of any relevant critical patch” and “Name of a process required to be running”.
- In the Set Anti-Virus Quarantine Settings tab, Anti-virus application versions are updated, and you can choose the latest update from the list.
- BigFix Client Compliance Windows (IPSec Framework)
The BigFix Client Compliance Windows (IPSec Framework) Fixlet site provides self-quarantine capabilities using the BigFix Client Compliance extension. In this solution, the BES Client restricts or enables inbound and outbound network connectivity based on the compliance status of the computer (but still passing BES network traffic to allow management of the computer through BES).
The following Fixlets are removed whose windows versions has reached End of Support (EOS):
- ID: 2003 Title: Quarantine - Automatically Quarantine New Clients - Windows XP / Server 2003
- ID: 2004 Title: Quarantine - Automatically Quarantine New Clients - Windows 2000
- ID: 2005 Title: Quarantine - Quarantine No Longer Needed - Windows XP / Server 2003
- ID: 2006 Title: Quarantine - Quarantine No Longer Needed - Windows 2000
- ID: 2007 Title: Quarantine - Quarantine Needed - Windows XP / Server 2003
- ID: 2008 Title: Quarantine - Quarantine Needed - Windows 2000
- ID: 2009 Title: Quarantine - Quarantine Override - Windows XP / Server 2003
- ID: 2011 Title: Quarantine - Quarantine Override - Windows 2000
The following Fixlets are updated to support latest versions of windows:
- ID: 2002 Title: Quarantine - Determine Compliance
- ID: 2012 Title: Quarantine - Automatically Quarantine New Clients - Windows 8.1 / Server 2012 / Server 2012 R2 / Server 2016/ Server 2019/ Server 2022/ 10/ 11
- ID: 2016 Title: Quarantine - Quarantine No Longer Needed - Windows 8.1 / Server 2012 / Server 2012 R2 / Server 2016/ Server 2019/ Server 2022/ 10/ 11
- ID: 2017 Title: Quarantine - Quarantine Needed - Windows 8.1 / Server 2012 / Server 2012 R2 / Server 2016/ Server 2019/ Server 2022/ 10/ 11
- ID: 2018 Title: Quarantine - Quarantine Override - Windows 8.1 / Server 2012 / Server 2012 R2 / Server 2016/ Server 2019/ Server 2022/ 10/ 11
Actions to take:
- To subscribe to the above sites, you can use the License Overview Dashboard to enable and gather the site. Note that you must be entitled to the BigFix Compliance product and you must be using BigFix version 9.5 and later.
More Information:
- BigFix Forum:
https://forum.bigfix.com/c/release-announcements/compliance - BigFix Client Compliance User’s Guide:
BigFix Compliance (hcltechsw.com)
BigFix Compliance team