These actions let you incorporate LANDesk Management Suite's
security management functionality with Asset Lifecycle Manager.
These LANDesk security management actions are described below.
NOTE: For all LDMS
actions, Core credential set is a required value, and should
be the first attribute you fill in. If you select a field to set up
the integration with an LDMS core, make sure the field is mapped to
a Listener value that matches the Display name you provided for the
LDMS core in the Asset Lifecycle Manager database utility.
Add vulnerabilities to a group
This action lets you add vulnerabilities to a security group.
When the action occurs in the course of a process, the designated
vulnerabilities are added to the specified security group. The
updated group with the added vulnerabilities can then be used from
the LANDesk Management Suite core server.
Core credential set: (Advanced) The display
name of the core server.
Name:
(Advanced) The name of the action.
Group name:
(Advanced) The security group to add the vulnerabilities to.
Vulnerability list:
(Advanced) The vulnerabilities to add to the group. The ID can be a
field (recommended) or a comma-delimited list of the
vulnerabilities.
Autofix vulnerabilities
This action lets you automatically fix vulnerabilities. When the
action occurs in the course of a process, it causes LANDesk
Management Suite to fix the vulnerability immediately.
Core credential set: (Advanced) The display
name of the core server.
Name: (Advanced) The name of the action.
Group name:
(Advanced) The name of the security group to fix.
Create custom security group
This action lets you create a security group. When the action
occurs in the course of a process, the custom security group is
created on the LANDesk Management Suite core server.
Core credential set: (Advanced) The display
name of the core server.
Name:
(Advanced) The name of the action.
Group name:
(Advanced) The name of the custom security group. In order to avoid
duplicate group names, we recommend that you use a variable as the
group name or part of the group name.
Results:
(Advanced) The field in which to place the new custom security
group name (see Inserting
fields).
Delete custom security group
This action lets you delete a custom security group. When the
action occurs in the course of a process, the designated custom
security group is deleted from LANDesk Management Suite.
Core credential set: (Advanced) The display
name of the core server.
Name:
(Advanced) The name of the action.
Group name:
(Advanced) The name of the custom security group to delete.
Download patches
This action downloads patches.
Core credential set: (Advanced) The display
name of the core server.
Name:
(Advanced) The name of the action.
Group name:
(Advanced) The name of the custom security group to download
patches to.
Get vulnerabilities
This action lets you get vulnerabilities. When the action occurs
in the course of a process, vulnerabilities are obtained from
LANDesk Management Suite.
Core credential set: (Advanced) The display
name of the core server.
Name:
(Advanced) The name of the action.
Custom filter SQL:
(Advanced) A filter that returns vulnerabilities based on the
provided SQL statement. This portion of the statement is the
"where" clause, and can be left blank if no filtering is needed.
(See Inserting SQL statements).
Severity:
(Advanced) A filter that returns vulnerabilities based on the given
severity level. For blocked applications (whether used alone or
when included with another type), do not specify a Severity filter,
as doing so will prevent either type's vulnerabilities from being
downloaded.
Vulnerability filter:
(Advanced) A filter that returns vulnerabilities based on whether
they are custom or downloaded vulnerabilities. If custom, "Filter
SQL" will be used.
Vulnerability status:
(Advanced) A filter that returns vulnerabilities based on the given
vulnerability status.
Vulnerability type:
(Advanced) A filter that returns vulnerabilities based on the given
vulnerability type.
Results:
(Advanced) The field in which to place the list of vulnerabilities
that are returned as a result of the applied filters (see Inserting fields). If no filter is
applied, all vulnerabilities are returned. The list is
comma-delimited.
Scan/repair vulnerabilities
This action lets you scan for vulnerabilities on a managed
LANDesk device and repair them. When the action occurs in the
course of a process, a scheduled task is created in LANDesk
Management Suite and run immediately in order to scan or repair the
designated devices.
Core credential set: (Advanced) The display
name of the core server.
Name:
(Advanced) The name of the action.
Delivery option:
(Advanced) The delivery method used for the task. You can select
either Push or Policy.
Distribution task name:
(Advanced) The name assigned to the distribution task in LDMS (see
Assigning a distribution
task).
Group name: (Advanced) The name of the
security group to scan for.
Repair option:
(Advanced) Specifies whether to stage or repair the device and
which method to use.
Scan and repair setting:
(Advanced) The scan and repair setting to use during the scan.
Device name: (Advanced) The device to be
scanned or repaired (see Inserting fields).
Query name:
(Advanced) The name of a LANDesk query that will resolve at least
one device, which is accessible by the LANDesk Management Suite
user (see Inserting
fields).
Success criteria:
(Advanced) The percentage of devices that need to have their
vulnerabilities scanned or repaired in order for the action to be
successful.
Target option:
(Advanced) Specifies whether to target a single device or a
query.