 PoliVec Scanner uses agentless technology to reduce struggles with centralized security management of Windows NT/2000/XP systems. It provides a central location for audit data, quickly identifies configuration vulnerabilities, and allows administrators to take immediate corrective action based on "best practice " recommendations.
PoliVec Scanner includes a password-cracking utility to proactively identify insecure passwords. The password cracker has been designed to minimize performance impacts normally associated with password cracking systems.
PoliVec Scanner easily integrates with PoliVec Builder, a security policy development tool, and PoliVec Enforcer, which provides real-time monitoring and enforcement of corporate security policies.
Centralized Operation
From a centralized location, PoliVec Scanner quickly and easily retrieves and evaluates the security configuration of each Windows NT/2000/XP system on your network.
Remote Modification of System Configurations
Administrators can modify remote system settings for password management, user accounts, audit event logging, and account lockout features as well as remotely start or stop system services.
Password Management
Administrators can proactively identify insecure passwords and inform users of vulnerabilities. PoliVec Scanner allows administrators to display the actual cracked password or only that the password has been cracked. Administrators can add company or greographical-specific word combinations to the password directory.
Security Auditing and Event Logs
PoliVec Scanner evaluates security audit trail settings and all other system event logs to ensure they are turned on and properly configured. If audit trail settings are not optimal, administrators can review the "best practice" recommendations and reconfigure the audit trail settings.
System Services
PoliVec Scanner quickly evaluates the services on each system. Administrators can easily identify required services and needless services that can be disabled.
Registry Settings
Though critical to securing Windows NT/2000/XP systems, registry settings are not designed for ease of understanding. PoliVec Scanner extracts all security-relevant registry data and turns it into useful information, including the state of the operating system relevant to security patches and hot fixes. Links specific to patches and hot fixes are accessible from PoliVec Scanner. It also deciphers registry values and provides administrators with details on system configuration.
Reporting
PoliVec Scanner allows administrators to generate a variety of reports displaying audit results and up-to-date configurations for each system that was accessed. These reports can be exported to numerous file formats including MS Word (.doc), MS Excel (.xls), HTML and DHTML (.htm), Adobe Acrobat (.pdf), and text (.txt).
Scheduled Audits or "Fire and Forget"
A scheduled audit "task" can be run at regular intervals, providing network administrators with a convenient mechanism by which to monitor the security posture of one or more systems. In addition, audits can be scheduled to run at a later time when network traffic is low, and multiple audit tasks can be scheduled to run at different times with each task running on a different schedule. PoliVec Scanner also automatically generates and organizes the resulting data files and composite reports.
Simultaneous Audits of Multiple Systems
Administrators can perform multiple and simultaneous audits that take advantage of the Windows multi-threaded technology. They can select as many systems as necessary from any combination of domains or subnets, enhancing audit performance.
Security Policy Customization
Multiple security policies and custom policies can be created, saved, and implemented. Customized policies include settings for Audit Logging, Passwords, and Account Lockout. Administrators can also scan multiple systems at one time and check for policy compliance.
User Authentication
Account lockout parameters are evaluated and "best practice" recommendations are provided to ensure the parameters are correctly configured.
Active Directory Support
Users can make immediate modifications on remote machines and modify the ADS Group Policy Object (GPO) that caused the setting on the audited machines to be set to the displayed value.
NTFS Analysis and Management
PoliVec Scanner displays folder and file permissions on an NTFS drive and allows you to view and change these user and group permissions.
Hotfix Analysis
Administrators can check for patches that are not currently installed on a target system.
|
