概述
McAfee Configuration Control 可以自动为关键服务器实施合规配置,通过拦截未经授权变更,节省审计活动的时间和成本。Configuration Control 带有灵活而易用的界面,可以根据配置和策略实施提供变更警报,并帮助您快速解决或创建自己的 IT 合规标准,不需要专业人员的协助。
审计、控制和实施 — 借助我们系统化的三步法可以轻松确保持续合规。改进并自动化 IT 审计流程,通过监控系统完整性来控制环境变更,并通过实施策略来防止未经授权的变更和确保企业的合规。
全面的变更防止措施 — 拦截恶意或未经授权的变更。 迈克菲独有的变更策略实施方法允许进行符合预先确定的时间窗、受信任来源或经批准工作单的变更。受信任的变更将自动获得准许,而那些不符合授权变更配置文件的变更将被拦截。
实时监控和警报变更事件 — 如果环境中发生了变更,您将收到警报。借助配置文件,您可以使用 McAfee Configuration Control 定义服务器中您要监控的最关键组件、文件或目标。
降低审计成本 — McAfee Configuration Control 可以大大缩短审计准备时间,同时消除特殊和恶意变更导致的隐性成本。
特点和优势
实现审计和配置评估的自动化
通过最新的数据、强大的信息显示板和报告功能以及内置的豁免管理,简化每一步审核与配置流程。
控制完整性
使用即时警报实时跟踪变更,降低可能破坏完整性与合规性的风险。
实施变更策略和流程
在服务器上实施 IT 控制,仅允许对系统进行授权变更,避免特殊变更、漂移或恶意配置。
着重关注严重问题
定义新的配置文件,并通过在几分钟内实施新的基准标准来着重关注要重点监控的问题。McAfee Configuration Control 能提高监控能力,降低合规性要求管理方面不断上升的成本和隐性成本。
记录无可辩驳的持续合规性证明
通过创建并调度报告,利用您所投资的 McAfee ePolicy Orchestrator (ePO) 平台显示评估、警报、变更事件详情和策略实施情况。
集成行业基准
根据不断变化的合规标准和行业要求进行调整。从权威渠道(例如,美国国家标准和技术研究所 (NIST))下载和轻松更新基准信息,并在几分钟之内了解详细的安全指南。
融合其他变更管理解决方案
McAfee Change Control 可与 HP、BMC、IBM 和其他厂商的变更管理、数据中心自动化以及配置管理数据库 (CMDB) 解决方案兼容使用。您还可以将它与 McAfee Change Reconciliation 配合使用,后者将允许变更根据故障单工作流的创建和执行自动发生。McAfee Change Reconciliation 将根据 McAfee Configuration Control 的记录封存该工作流中发生的系统变更详情,并将这些详情集成到该故障单历史和报告中。
系统要求
有关系统要求的完整列表,请参阅平台支持矩阵。
演示/教程
McAfee Continuous Compliance (English)
Use a single solution and achieve continuous compliance with McAfee Configuration Control.
McAfee Risk & Compliance (English)
Learn how McAfee Risk and Compliance products scan your entire network, providing complete visibility and ensuring proper protection.
新闻/活动
新闻
未找到结果活动
未找到结果资源
McAfee Configuration Control (English)
For a technical summary on the McAfee product listed above, please view the product data sheet.
解决方案简介
白皮书
社区
论坛
未找到结果博客
- RDP+RCE=Bad News (MS12-020)
Jim Walter - 三月 14, 2012
See March 15 and 16 updates at the end of this blog. —————————————————- The March Security Bulletin release from Microsoft was relatively light in volume. Out of the six bulletins released, only one was rated as Critical. And for good reason. MS12-020 includes CVE-2012-0002. This flaw is specific to the Remote Desktop Protocol (RDP) present on Read more... - An Update on DNSChanger and Rogue DNS Servers
Jim Walter - 三月 06, 2012
In late 2011, the FBI released documents and data focusing on “Operation Ghost Click.” This malicious operation, leveraging a variety of DNSChanger-type malware, was defined by the FBI as an “international cyber ring that infected millions of computers.” Associated malware samples and events can be traced back several years, and multiple platforms were targeted. To this day many remain Read more... - McAfee Q4 Threats Report Shows Malware Surpassed 75 Million Samples in 2011
David Marcus - 二月 21, 2012
Today we released our Fourth Quarter 2011 Threat Report, revealing that malware surpassed the our estimate of 75 million unique malware samples last year. Although the release of new malware slowed a bit in Q4, mobile malware continued to increase and recorded its busiest year to date. Malware The overall growth of PC-based malware actually Read more... - Cultural Security: Promoting Security Policies Using Organizational Culture
Steven Fox - 九月 06, 2011
Most of us refer to security policies in much the same way as we refer to our car manuals – when something unexpected happens. We know these documents have useful information. However, their utility is tied to situations where answers do not present themselves readily. According to Chris Noel, SVP of Product Management at ANXeBusiness, Read more... - Building an Arsenal of Best-in-Breed Database Security Solutions
Eric Schou - 八月 19, 2011
Visit any news site on the Web, and undoubtedly you’ll come across a barrage of articles publicizing the details of yet another data breach. With the prominence of SQL injection attacks, and malicious insiders and hackers exploiting sensitive data stored on unpatched and vulnerable databases, enterprise organizations have found themselves reevaluating their security strategies. Following Read more...