LANDesk security management actions

These actions let you incorporate LANDesk Management Suite's security management functionality with Asset Lifecycle Manager. These LANDesk security management actions are described below.

For information on setting up and configuring the automated patch process, see http://community.landesk.com/support/docs/DOC-5098.

NOTE: For all LDMS actions, Core credential set is a required value, and should be the first attribute you fill in. If you select a field to set up the integration with an LDMS core, make sure the field is mapped to a Listener value that matches the Display name you provided for the LDMS core in the Asset Lifecycle Manager database utility.

Add vulnerabilities to a group

This action lets you add vulnerabilities to a security group. When the action occurs in the course of a process, the designated vulnerabilities are added to the specified security group. The updated group with the added vulnerabilities can then be used from the LANDesk Management Suite core server.

• Core credential set: (Advanced) The display name of the core server.
• Name: (Advanced) The name of the action.
• Group name: (Advanced) The security group to add the vulnerabilities to.
• Vulnerability list: (Advanced) The vulnerabilities to add to the group. The ID can be a field (recommended) or a comma-delimited list of the vulnerabilities.

Autofix vulnerabilities

This action lets you automatically fix vulnerabilities. When the action occurs in the course of a process, it causes LANDesk Management Suite to fix the vulnerability immediately.

• Core credential set: (Advanced) The display name of the core server.
• Name: (Advanced) The name of the action.
• Group name: (Advanced) The name of the security group to fix.

Create custom security group

This action lets you create a security group. When the action occurs in the course of a process, the custom security group is created on the LANDesk Management Suite core server.

• Core credential set: (Advanced) The display name of the core server.
• Name: (Advanced) The name of the action.
• Group name: (Advanced) The name of the custom security group. In order to avoid duplicate group names, we recommend that you use a variable as the group name or part of the group name.
• Results: (Advanced) The field in which to place the new custom security group name (see Inserting fields).

Delete custom security group

This action lets you delete a custom security group. When the action occurs in the course of a process, the designated custom security group is deleted from LANDesk Management Suite.

• Core credential set: (Advanced) The display name of the core server.
• Name: (Advanced) The name of the action.
• Group name: (Advanced) The name of the custom security group to delete.

Download patches

This action downloads patches.

• Core credential set: (Advanced) The display name of the core server.
• Name: (Advanced) The name of the action.
• Group name: (Advanced) The name of the custom security group to download patches to.

Get vulnerabilities

This action lets you get vulnerabilities. When the action occurs in the course of a process, vulnerabilities are obtained from LANDesk Management Suite.

• Core credential set: (Advanced) The display name of the core server.
• Name: (Advanced) The name of the action.
• Custom filter SQL: (Advanced) A filter that returns vulnerabilities based on the provided SQL statement. This portion of the statement is the "where" clause, and can be left blank if no filtering is needed. (See Inserting SQL statements).
• Severity: (Advanced) A filter that returns vulnerabilities based on the given severity level. For blocked applications (whether used alone or when included with another type), do not specify a Severity filter, as doing so will prevent either type's vulnerabilities from being downloaded.
• Vulnerability filter: (Advanced) A filter that returns vulnerabilities based on whether they are custom or downloaded vulnerabilities. If custom, "Filter SQL" will be used.
• Vulnerability status: (Advanced) A filter that returns vulnerabilities based on the given vulnerability status.
• Vulnerability type: (Advanced) A filter that returns vulnerabilities based on the given vulnerability type.
• Results: (Advanced) The field in which to place the list of vulnerabilities that are returned as a result of the applied filters (see Inserting fields). If no filter is applied, all vulnerabilities are returned. The list is comma-delimited.

Scan/repair vulnerabilities

This action lets you scan for vulnerabilities on a managed LANDesk device and repair them. When the action occurs in the course of a process, a scheduled task is created in LANDesk Management Suite and run immediately in order to scan or repair the designated devices.

• Core credential set: (Advanced) The display name of the core server.
• Name: (Advanced) The name of the action.
• Delivery option: (Advanced) The delivery method used for the task. You can select either Push or Policy.
• Distribution task name: (Advanced) The name assigned to the distribution task in LDMS (see Assigning a distribution task).
• Group name: (Advanced) The name of the security group to scan for.
• Repair option: (Advanced) Specifies whether to stage or repair the device and which method to use.
• Scan and repair setting: (Advanced) The scan and repair setting to use during the scan.
• Device name: (Advanced) The device to be scanned or repaired (see Inserting fields).
• Query name: (Advanced) The name of a LANDesk query that will resolve at least one device, which is accessible by the LANDesk Management Suite user (see Inserting fields).
• Success criteria: (Advanced) The percentage of devices that need to have their vulnerabilities scanned or repaired in order for the action to be successful.
• Target option: (Advanced) Specifies whether to target a single device or a query.