University of Notre Dame > OIT

Office of Information Technologies

services banner

Email
Passwords & Accounts
Voice, Data, Video
Clusters/Classrooms
Calendaring
Training
Print/Scan/Copy
Center for Research Computing (CRC)
Presentation Technologies
WebEx
Security
Course Management
Shared File Space
Web Publishing
Software
Equipment
Support
Corporate Data
Policies

security banner

RSS Feed
Subscribe to the OIT Security Alerts RSS Feed

OIT Home > Crumb

Windows Team Meeting Notes

January 17, 2008

 

WSUS Service

One of the advantages of WSUS v3 is we can manage and report on computer groups. WSUS system administrator Greg Matz doesn’t want to do group management for everyone on campus, as this would be a monumental task.

Coming soon will be our ability to run reports (Citrix interface).

Major service packs are not being automatically passed through, but everything else is – except for IE7. Isaac Holmes is actively testing SP3. If it passes testing we will release it.

We were not setting laptops to the NDSUS server since we didn't know the behavior of Automatic Updates if the WSUS server was unavailable. We have since discovered that if you do point to the NDSUS server, it will fail over to Microsoft. The machine will remember if there were any exclusions on the NDSUS server. Knowing this, David Klawiter will change the NDCIS-Standard-Laptop GPO to set the laptops to NDSUS. Also, only Athletics has Automatic Updates set to download and install on laptops; everybody else gets the prompt to approve. Dave will also change the NDCIS-Standard-Laptop GPO to automatically install downloaded updates..

Office 2003 SP3 file format block

Gwen Hagey-Shirk will check out actual inclusion of file formats and report back to the group.  There are reports that Microsoft has changed the update to not exclude the file formats. If so, it will be a non-issue.

Malware Project

The Malware project team discovered that McAfee's ePO (e-Policy Orchestrator) is the best product for our needs since our McAfee presence on campus is so strong. A server has been purchased and arrived the second week of December. Mike Rowland has built the server and had it installed in the OIT server room. Networking has added the server to the net and the server has been turned over to Roger to build the ePO. Installation will occur the first week of February since that was the earliest we could schedule time with a DBA (Nagi Elia). A database will be configured within the Enterprise SQL system at that time and the database group will be responsible for maintaining the database. Roger will then install ePO. The goal is to have a service ready for testing by March 1. 

We are looking at purchasing McAfee's Total Protection Suite which will include an anti-spyware module. The quote we have requested From McAfee will also include a Mac and Linux client and the anti-spyware module for personally owned machines.  ePO will not cover management of personally owned computers. Because of this, the new license will include VirusScan Enterprise and the anti-spyware module to cover this need.

There is a small ePO client that will need to be installed. This client can be installed via domain, SMS or clickable link.   ePO will have the ability to be managed by departmental admins, following the AD OU admin model.  Admins will be able to report the number of clients that are installed for each platform, and if they are in compliance.

Where does Windows Defender fit in?  That has not been discussed.  Defender is included in Vista.  Security wants 2 packages for total defense.  Malware Project Team will be meeting Friday to discuss this.

OpenAFS

If you are running OpenAFS v 1.5.1.4 or earlier,  please upgrade.  Possible corrupt data and volumes unmounting could be to blame on earlier versions.

Keyaccess Client

If you still have anyone using KeyAccess client v6.0, please get them upgraded to v6.1.  The 6.0 client does not release Keyaccess license seats when they are not being used. When the available license pool reaches zero, clients are denied access to keyed applications.

 
 

Office of Information Technologies - University of Notre Dame
P.O. Box 539, Notre Dame, IN 46556    Phone: 574-631-5600   Email: oit@nd.edu