How to add Windows 8 and Windows 2012 support to shipping modules manually

Document ID:7012171
Creation Date:19-Apr-2013
Modified Date:06-Aug-2015
- Micro Focus Products:
  Security Manager

Environment

NetIQ Security Manager 6.5.4

Situation

Multiple modules that are available to Security Manager via the autosync server do not have support for Windows 8, Windows 2012, or IIS 8 by default

Resolution

This article assumes familiarity with how to create Processing Rule Groups (PRG), Attributes and Computer Groups. To become more familiar with these concepts, please read the programming guide that comes with Security Manager. All of these steps are performed in the Security Monitor Development Console.

The solution to this is to create manual computer rule groups and attach them to the proper processing rule groups. To do so, perform the following steps:

Create Computer Group for Windows 8 Any Computer:

1) Open the Development Console.
2) Right-click on Computer Groups.
3) Select Create Computer Group.
4) Uncheck the following:

Primary Domain Controllers
Backup Domain Controllers
Windows Member Servers

5) Click Next on the Computer Types screen.
6) Click All Computers.
7) Click Next on the Computers screen.
8) Add this formula:

AttributeValue(Windows Current Version)="6.2"

9) Click Next on the Formula screen.
10) Click Next on the Excluded Computers screen.
11) Click Next on the Included Computers screen.
12) Fill in the Name field with: Windows 8 Any Computer
13) Give it an appropriate description.
14) Click Finish on the General screen.
15) At this point it will ask if you want to deploy the computer group to Processing Rules, click Yes.
16) Click Add.
17) Add the following:

Support for Windows\Event Log Management
Support for Windows\General Windows Security\Windows Server 2008, Windows Vista, Windows 7
Support for Windows\Local Account Management\Built-in Account Changes\Windows Server 2008, Windows Vista, Windows 7
Support for Windows\Local Account Management\Local Group Changes\Windows Server 2008, Windows Vista, Windows 7
Support for Windows\Local Account Management\Local User Changes\Windows Server 2008, Windows Vista, Windows 7
Support for Windows\Logon/Logoff\Windows Server 2008, windows Vista, Windows 7
Support for Windows\Windows Log Archival\Windows Server 2008, windows Vista, Windows 7
Support for Windows\Windows Port Monitoring

18) Click Ok.

Create Computer Group for Windows 2012 Any Computer:

1) Open the Development Console.
2) Right-click on Computer Groups.
3) Select Create Computer Group.
4) Uncheck the following:

Windows Workstations/Professional

5) click Next on the Computer Types screen.
6) Click All Computers.
7) Click Next on the Computers screen.
8) Add this formula:

AttributeValue(Windows Current Version)="6.2"

9) Click Next on the Formula screen.
10) Click Next on the Excluded Computers screen.
11) Click Next on the Included Computers screen.
12) Fill in the Name field with: Windows 2012 Any Computer
13) Give it an appropriate description.
14) Click Finish on the General screen.
15) At this point it will ask if you want to deploy the computer group to Processing Rules, click Yes.
16) Click Add.
17) Add the following:

Support for Windows\Event Log Management
Support for Windows\General Windows Security\Windows Server 2008, Windows Vista, Windows 7
Support for Windows\Local Account Management\Built-in Account Changes\Windows Server 2008, Windows Vista, Windows 7
Support for Windows\Local Account Management\Local Group Changes\Windows Server 2008, Windows Vista, Windows 7
Support for Windows\Local Account Management\Local User Changes\Windows Server 2008, Windows Vista, Windows 7
Support for Windows\Logon/Logoff\Windows Server 2008, windows Vista, Windows 7
Support for Windows\Windows Log Archival\Windows Server 2008, windows Vista, Windows 7
Support for Windows\Windows Port Monitoring

18) Click Ok.

Create Computer Group for IIS 8 Web Server:

1) Open the Development Console.
2) Right-click on Computer Groups.
3) Select Create Computer Group.
4) Make sure that all are checked.
5) click Next on the Computer Types screen.
6) Click All Computers.
7) Click Next on the Computers screen.
8) Add this formula:

(AttributeValue(IIS MajorVer) = 8) AND (AttributeValue(IIS Web service start type) = 2)

9) Click Next on the Formula screen.
10) Click Next on the Excluded Computers screen.
11) Click Next on the Included Computers screen.
12) Fill in the Name field with: IIS 8 web Server
13) Give it an appropriate description.
14) Click Finish on the General screen.
15) At this point it will ask if you want to deploy the computer group to Processing Rules, click Yes.
16) Click Add.
17) Add the following:

Support for Web Servers\IIS Event Management\IIS - Web Servers
Support for Web Servers\IIS Log Archival\IIS - Web Servers

18) Click Ok.

Create Computer Group for IIS 8 FTPb Server:

(AttributeValue(IIS MajorVer) = 8) AND (AttributeValue(IIS FTP service start type) = 2)

9) Click Next on the Formula screen.
10) Click Next on the Excluded Computers screen.
11) Click Next on the Included Computers screen.
12) Fill in the Name field with: IIS 8 FTP Server
13) Give it an appropriate description.
14) Click Finish on the General screen.
15) At this point it will ask if you want to deploy the computer group to Processing Rules, click Yes.
16) Click Add.
17) Add the following:

Support for Web Servers\IIS Event Management\IIS - FTP Servers
Support for Web Servers\IIS Log Archival\IIS - FTP Servers

18) Click Ok.

After all this is done, the updates Computer Groups will start populating, and the PRG's will be applied to the appropriate computers.

Additional Information

1) Additional items are not required for functionality.

2) Update Computer Attribute Definitions to include IIS 8 for:

IIS MajorVer

3) For Windows 2012 R2, use the instructions for the Windows 2012, but name the comptuer group to Windows 2012 Any Computer, and change the attribute value from 6.2 to 6.3.