I will try to help you with some of your list items. It’s a long list so my answers will be brief. We can explore these in more depth as the conversation progresses.
Unmanaged Asset - I think you are referring to our Unmanaged Asset site that allows you to set up an NMAP scanner to detect devices on your network and imports those results into the BES Database. This allows you to see assets on your network that do not have BES Clients installed and take appropriate action.
All Local accounts - The relevance for this might look like this: unique values of (members of local groups as string). You could use that relevance in a retrieved property or analysis.
Postpone just makes the reboot message hide. The countdown until a forced reboot occurs continues to count independent of postponements.
I am not sure what you are referring to here. Can you elaborate?
I am not sure what you are referring to here. Can you elaborate?
I am not aware of any content for Trend Micro OfficeScan yet. You could develop some custom content on your own or you could contact Professional Services and contract us to build it for you.
You could lock down the permissions on the BESClient service. This would involve using the windows command
There are fixlets in the BES Support site to manipulate the Windows XP firewall to allow BES Client communication. Windows Firewall is Blocking BES Traffic - BES Relay/Server >= 5.1.1.50 for example. Review that fixlet for a sample of how to write your own content to manipulate the Windows XP Firewall.
We have a Fixlet site “BES Asset Discovery”, which allows you to scan your network for computers not running the BES Agent along with getting information about network devices (such as printers, routers, switches, etc.) Here is some more information: http://support.bigfix.com/bes/sites/assetdiscovery.html
In our “License and Inventory” site, we have an Application Tracking feature that allows you to track which computers are running an application and see info such as “How many computers ran Adobe Photoshop in the last month?” and other similar software licensing questions.
The “Client Manager for AntiVirus” site supports Trend Micro (along with Symantec, McAfee, eTrust, and Sophos). You can use this site to see which computers have Trend Micro installed (install if necessary), see if it is running (start it if necessary), update the engine, update the definitions, and more.
Thanks for the info, can you please give some samples on how to retrive User accounts and to manipulate Windows XP firewall. waiting for your earliest reply.
Can you give us some ideas on what you are looking for with the user accounts or the XP firewall questions? We can take your questions and convert them to relevance.
q: members of local groups whose (name of it = “Administrators” or name of it =“Users”)
That will give you the names of all the local users and administrators. If you need them separated out you can use something more like this.
q: (name of it , members of it) of local groups whose (name of it = “Administrators” or name of it =“Users”)
Drop any of those into an analysis or retrieved property. Note there is case sensitivity on the group names.
You need the commands for manipulating the XP firewall from the command line and drop them into an action script in a custom task. Check out the Fixlets
Windows Firewall is blocking BES Traffic
for examples of using the netsh command in XP for manipulating the Windows XP Firewall.
I have checked netsh command in Windows XP and successfully changed the Desktop Firewall options using netsh command, but the same command I tried in BES, it was unsuccessful.
For Eg: If I need to block port 80 (HTTP) on Windows XP Firewall then I use the following action: