Getting Started
The Getting Started tasks guide you through the basic setup, configuration, and use of Security Analysis Solution.
Prerequisites for Getting Started Tasks
Option 1: Launch the Arellia Security Manager (from the server)
- Start Menu > Arellia > Arellia Security Manager
Option 2: Browse to Arellia Security Manager (from a desktop)
- Visit http://server-name/Altiris/ArelliaConsoles/SecurityManager.aspx
- SSL connections via https also supported.
Note
You may be prompted to install the Microsoft Silverlight 4 plug-in. This is required for Arellia products.
Home page and First-Time Setup
You will see a list of recommendations appear in the First-Time Setup panel when you first launch the Security Manager console.
- Check the box next to the configuration recommendations you would like to apply to the system, depending on the environment choice on the left. These recommendations help remind you of the necessary steps required to ensure the product components are configured.
- Click Perform Selected Actions
- Click Skip this Step once you are finished with the First-Time Setup section.
Note:
You must enable the Security Analysis Agent Install policy to perform computer assessment tasks. We also recommend enabling the Local Security Agent which is used to perform many remediation tasks.
Importing SCAP Content
- Click on the Profiles tab at the top (below the title).
- Click Download Profiles... in the Actions section on lower left.
- Locate the system profiles and check the box to select them for import.
- Click the Import Profiles button to start the import process.
Completion Expectations
The importing of the SCAP profiles is a time-consuming process and could take anywhere from 5 to 90 minutes, depending on the load on the server and the number of profiles selected. For evaluation or demonstration purposes, we recommend you initially select only one or two profiles.
Note:
Some profiles have multiple versions listed, depending on which version of the OVAL specification you're interested in analyzing. If unsure, just select the newest version (typically, you don't need more than one version of each profile).
Where to Go from Here
- Once the profiles have been imported, the Common Platform Enumeration (CPE) Task must be run on the managed computers to determine which computers meet the requirements for the profiles imported. By default, this task is run on the Daily schedule (nightly at 2:00 AM). If you would like to hurry this process along, visit the Common Platform Enumeration (CPE) Task on the Policies tab under the Security Analyis folder and alter the schedule to suit your needs. This only needs to run once new profiles have been initially imported and whenever any new computers come in to be managed. For more information, see Targeting Managed Computers.
- After the CPE analysis task has completed and determined which computers fit the requirements of the profiles, you will then create a policy, where you will select the profile, verify the targets and set the schedule for performing an assessment and possibly remediation. For more information on this process, see Creating a Policy.