GFI LANSSMCREN100-249-1Y User Manual
6
|
www.gfi.com/languard
IMPORTANT: To install the GFI ReportPack, use the following procedure
1.
Install GFI LANguard
2.
The default database will be Microsoft Access, (which is pre-configured). If you choose to use Microsoft
SQL as your database you will need to have SQL installed and then change your database settings to use
Microsoft SQL
Microsoft SQL
3.
Finally, install the ReportPack. (PLEASE NOTE: When you install the ReportPack, there is a component
called “GFI ReportCenter” that installs first, and then the GFI LANguard ReportPack will install. The GFI
ReportCenter is a common component that all GFI ReportPacks use.)
Full documentation on GFI LANguard ReportPack can be found
Keeping Your Computers Secure and Up to Date
So you have installed LANguard, configured the database and installed the ReportPack. You then performed a few scans
and may have found security issues. The purpose of this section is to provide guidelines on how we recommend
approaching some of the more common security issues. The three (3) main topics that we will discuss are: keeping
LANguard Up to Date, Detecting and Remediating Microsoft Patches/Service Packs and Detecting and Remediating
LANguard Up to Date, Detecting and Remediating Microsoft Patches/Service Packs and Detecting and Remediating
Other Network Vulnerabilities.
1.
Keeping LANguard Up To Date
•
Make sure the machine that LANguard is installed on has Internet access.* LANguard performs
daily checks for updated information on vulnerabilities and patches. Security vulnerabilities
are discovered every day, we suggest that you scan you network on a regular basis.
•
If a proxy server is used, it can be set in the GFI LANguard user interface > main menu >
Configure > Proxy Settings.
*If Internet access is not available on the machine where GFI LANguard is installed, the product
can be configured to get the updates from an alternative location. More details are available
2.
Detecting and Remediating Microsoft Patches/Service Packs
Many security vulnerabilities can be resolved by ensuring all security patches and service packs are up
to date on each machine. So the first thing that you need to do is scan your network for missing patches
(Please refer to Section 7 “Missing Patches” scanning profile of the GFI LANguard manual
to date on each machine. So the first thing that you need to do is scan your network for missing patches
(Please refer to Section 7 “Missing Patches” scanning profile of the GFI LANguard manual
). After
you have scanned your network for missing patches/service packs, using GFI LANguard you can then
simply deploy these missing patches/service packs to the target machines.
simply deploy these missing patches/service packs to the target machines.
It is recommended that you install service packs first
After the service packs are deployed, we recommend a rescan of the network (which will
give you an updated view of the patch status of your network)
After the rescan, if no service packs are available, then deploy any missing patches
If internet bandwidth or disk space is an issue
GFI LANguard is able to use the repository of a WSUS server in the network. This
makes use of the patches and service packs already downloaded by WSUS saving
you space and bandwidth. More details
If a WSUS server is not available, you can also schedule downloads of patches/service
packs by LANguard during low peak hours.
packs by LANguard during low peak hours.
LANguard can also auto remediate patches/service packs if pre-approved by the
administrator.
3.
Detecting and Remediating Other Network Vulnerabilities
Once your computers are up to date (patched), we suggest you run a scan to check for other
vulnerabilities or potential security issues.
•
From the results of the scan it is possible to get detailed information about particular
vulnerabilities.
•
LANguard comes with tools to help address vulnerabilities by remotely uninstalling
(unauthorized) software, or deploy custom software and scripts, or open remote desktop
connections to computers, etc.