Cool Solutions

ZENworks Endpoint Security Management



June 27, 2007 2:20 pm





Another post from me today. Novell has just announced the immediate availability of a new offeringZENworks Endpoint Security Management.

There is a new webpage available at with more information; also we recorded a podcast which is up on Novell Open Audio –

For techs looking to check this out – head over to

Written at: Provo, UT

So what are we announcing?

This is a new strategic partnership with Senforce. Novell will offering a fully rebranded, fully supported product to customers starting from today.

So what does this new solution do?

Novell ZENworks Endpoint Security Management simplifies endpoint security by putting administrators in control, and combining ‘point’ security solutions under a single, easy-to-use management console:

Personal Firewall: The world’s strongest, yet easiest to use, firewall to protect against hackers, malware, protocol attacks, and more, keeping security invisible to the end-user.

Wireless Security: Centrally controls when, how, and where users are allowed to connect. Wi-Fi connectivity can be limited to authorized and known access points, minimum encryption strength, or can be disabled completely if necessary.

Data Encryption: Secures data stored on the endpoint and on removable media, encrypting files so they can only be read by authorized users. Protects sensitive information on lost or stolen mobile computers.

USB Security: Prevents intentional or inadvertent transmission of data to removable storage devices. Storage devices can be placed in read-only mode or fully disabled, while the endpoint hard drive and all network drives remain accessible and operational.

Application Control: Ensures only approved applications are run on corporate IT assets — create black lists, or enforce applications to run (i.e., VPN or Antivirus) prior to network connection.

Client Self Defense: Protects the endpoint by ensuring that the security client cannot be altered, hacked, or uninstalled.

Port Control: Controls connectivity via LAN, modem, Bluetooth™, Infrared, 1394 (Firewire™), and serial and parallel ports.

Alerts Monitoring: Provides a scalable and simple method for creating, distributing, enforcing, and monitoring security policies on endpoint devices, without forcing users to make security decisions or adjust settings.


Why is endpoint security important?

Because we all manage laptops and workstations that contain critical and confidential data.


0 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 5 (0 votes, average: 0.00 out of 5)
You need to be a registered member to rate this post.

Categories: Uncategorized


Disclaimer: This content is not supported by Micro Focus. It was contributed by a community member and is published "as is." It seems to have worked for at least one person, and might work for you. But please be sure to test it thoroughly before using it in a production environment.


  1. By:jark

    Of course, this is a product we waited for and it’s a great solution.

    Unfortunately, the prerequesits are very hard to solve from a Novell customer point of view, normally using NetWare or Linux and Oracle, DB/2, Sybase, MySQL or Postgres databases.

    Who the heck is using MS-W2K Adv. Server with MS-SQL DB in the Novell world?

    Novell should migrate the product to SLES 10.x and an open DB (one of the above is ok) as soon as possible.

  2. By:Ron van Herk

    I remember the comments we got when we started with ZENworks Patch Management, “why only a Windows Server”, “why do we need MS SQL”, etc. Now with ZENworks Configuration Management we’ve seen that ZPM is completely integrated, no separate server needed.
    ZESM is a new product that came out of the strategic relationship with Senforce, and it’s based on their existing product, let’s give it some time and see how it will evolve.

  3. By:jark

    Thanks for your comments.
    As i mentioned the product is exactly what i am looking for and it’s great.
    Please add further DBs and OSs as soon as possible.
    Keep on doing this good job.

  4. By:Mark Bodenham

    Hi Martin,

    Looks like a great product. Are there any plans to integrate the management of this into ZENworks configuration management at any point?


  5. Is this the end of Securewave’s Sanctuary for Novell? since this does the same and more?

    What should i tell customers when they want Sanctuary?

    grtnx Jeroen

  6. By:Jon Arbuckle

    Why is the new ZENworks v10 going to be devoid of any eDirectory integration? Is Novell getting ready to sell off ZENworks? Is Groupwise next?

    And what happened to versions 8 or 9?

    Has Novell given up on eDirectory?

    An article from 2005 seems to be coming true:

    “Blum Capital says Novell could immediately trim $225 million from its 2006 expenses by cutting use of two company jets and jettisoning 400 engineers who develop systems for Novell’s Netware operating system, among other moves.”

    Result: Novell killed Netware.

    “Novell acquired Celerant in its purchase of Cambridge Technology Partners. Celerant is based in the United Kingdom and consults on organizational problems such as supply chains and technology optimization. Novell would realize at least $175 million from Celerant’s sale, Blum Capital theorized.”

    Result: Novell sold off Cambridge.

    “Blum Capital also advocates that Novell divest Cambridge Technology Partners, as well as its GroupWise, Tally Systems and ZenWorks products. The businesses are not core to Novell’s moves into Linux and user identity management software, Blum Capital opined, adding Novell could realize $325 million by selling off the businesses.”

    Result: Novell looks to be getting Groupwise and ZENworks ready for takeoff. (Tally Systems (TS Census) became ZENworks Asset Management 7.0.)

    Before we continue to invest in ZENworks, we’d like to know what the future holds for our investment.

  7. Jon

    Read the previous articles about ZENworks 10 Configuration Management. There is a whole theme on Cool Blogs.

    Specifically – to answer your questions; and shoot down some of the FUD:

    – ZENworks 10 Configuration Management absolutely supports Novell eDirectory. It’s the gold standard. We also happen to support Active Directory natively too.

    – ZENworks 10 Configuration Management integrates Asset Management and Patch Management into a single, unified architecture. Hardly the stuff of ‘cash cow’ and ‘divestment’.

    As for versioning and naming – we wanted to show that we had leapt forward with this release; and we wanted to have some consistency with the platform numbering.

    Hope this helps answer your question.

  8. By:Jon Arbuckle

    Taken directly from the Installation Guide, Page 15:

    “Please check off the following pre-requisites PRIOR to beginning the installation:

    – Enable/Install Microsoft Internet Information Services (IIS), ensure ASP.NET is enabled, and configure it to accept Secure Socket Layer (SSL) Certificates

    – If using your own SSL certificates, please validate the SSL from the MS server to the DS server: open a web browser on the Management Service and enter the following URL: https://DSNAME (where DSNAME is the server name of the DS). This should return valid data and NOT certificate warnings (valid data may be “Page under Construction”). ANY certificate warnings MUST be resolved before installation (unless you opt to use Novell Self Signed Certificates instead).

    – Ensure access to a supported RDBMS (Microsoft SQL Server 2000 SP4, SQL Server Standard, SQL Server Enterprise, SQL Server 2005). Set to DB to Mixed mode. This database should be either hosted on the Management Service server, or a shared server secured behind the enterprise firewall.”

    What a GREAT way to get customers to use Novell products instead of Microsoft’s by REQUIRING them to have MSSQL.

    Does Novell have the laziest developers or is this a part of the MicroLinux deal you signed?

    What’s going on here? Are you insane?

  9. Jon

    It’s a partnership – the product runs on Windows. We will work to influence partners to look to other platforms over time.

    Just like other products where we have had successful partnerships and aquisitions – look at ZENworks Patch Management (partnership) and ZENworks Asset Management (acquisition of Tally Systems).

    Both of those products are best of breed and run on Windows servers. Customers have seen our roadmap – we are integrating and providing cross platform delivery – that’s with ZENworks Configuration Management. Up to that point they have been widely deployed and are helping our customers manage their infrastructure.

  10. By:Ron van Herk

    The market share of ZENworks in environments that already use eDirectory is huge, but getting into new customer environments that just use Active Directory has shown to be very difficult. Telling customers that if they want to implement ZENworks they will need to put up eDirectory next to their existing directory seems to be a huge roadblock. This is what native AD support is all about.

    But, as Martin already mentioned, ZCM 10 is much more then just native AD support. It’s the framework that allowed us to integrate Patch Management and Asset Management and will allow us to integrate other ZENworks components moving forward. Take the time to have a detailed look at the product and then tell us what you like or not, that would be much more useful then having these conspiracy theories.

  11. By:Jon Arbuckle

    So what was the technical roadblock that kept Novell from using MySQL on either Netware or Linux? How did an MS server become a requirement for a Novell product?

  12. Jon

    We are using Sybase iAnywhere as the included database for Linux and Windows customers; we also support MS SQL and Oracle depending on customer.

    We do plan to add additional databases in the future – ZENworks Linux Management supports postgres today for example.

    Technical issues – there have been a few over the years; mainly around capabilities in stored procedures, queries etc – most of these are getting resolved with the latest versions of the open source rdbms. AS you must appreciate it does take time to add platforms/rdmbs to an enterprise product.

  13. By:Jon Arbuckle


    Thank you for somewhat clarifying the technical roadblocks that has made Microsoft SQL the ONLY SQL server you support for ZENworks 10.

    When do you believe it will be supported on other SQL servers so as NOT to require Microsoft to be installed?

    As you can appreciate, MS SQL is NOT an inexpensive product, especially when a company is looking to leverage existing / open source solutions.

  14. By:Ron van Herk

    Maybe it would be useful to read what Martin has mentioned!! “We are using Sybase iAnywhere as the included database for Linux and Windows customers“. We’ve got Sybase available on both Windows and Linux as our standard SQL database server. There is no requirement to have a Microsoft Windows server with MS SQL installed, it’s just an option some customers might prefer.

    And, as mentioned, we might add support for additional databases in the future.

  15. By:Ron van Herk

    Going off-topic though as the original post was about ZESM and not on ZCM 10…

  16. By:Jon Arbuckle

    Yet the documentation clearly states that MS SQL is required. The fact that someone is running it in an apparently unsupported way is meaningless.

    Or am I mis-understanding the Installation Documentation?

  17. Jon

    I’d like to take this offline – there does seem to be a deep misunderstanding of the products in the ZENworks portfolio.

    Please respond to me with a real email address and a ‘non aliased name’ – and I’d be happy to point you to the information you need.

    Obviously you have been very active on Cool Blogs in the last few days; I would like to address your comments and concerns in a more productive manner.

    For the record:

    – ZENworks 7 and the new ZENworks Configuration Management have zero requirement for a Microsoft server or a Microsoft SQL server to deliver desktop management.

    – Novell continues to offer choice and value to our customers in the platforms they use

    – technology solutions that are offered through partnership or acquisition are often Microsoft-centric intially; we have a proven track record in making them cross platform over time.

    I do consider this exchange via blog comment close now – and I encourage you to mail me directly.

    Also I would recommend that you read our blog editorial policy:

    As Cool Blogs grows and gets more readership it’s time to start publicly sharing our ideals for this blog – and especially the comments.

    * Our number one goal is open communication.Novell Cool Bloggers are encouraged to blog about any area of Novell or adjacent technology. The only caveat is that we need to safeguard our intellectual property and competitive edge – so release dates will be within a calendar quarter window, we will not discuss projects or plans that are not publicly announced, we will not discuss financial matters.
    * We encourage our readers and subscribers to join in. Comment. Make suggestions. Give feedback. Again – our aim is to make this a broadly acceptable community that is of interest to many people. Comments may be edited or rejected to remove offensive or profane commentary. Comments may also be removed if they are not generally ‘constructive’ and in keeping with the subject of the post.
    * We try to follow sensible guidelines – ’spam’, ‘trolling’, ‘astroturfing’ and ‘flaming’ are generally not acceptable and will lead to comments being edited or redacted.

  18. By:Jon Arbuckle

    I’d love to take this offline, but then that would defeat the purpose of having an “open” communication tool, such as this blog. IMO, “taking it offline” when nothing of NDA importance is being discussed gives the distinct impression of having something to hide. Quite frankly, if you can’t stand the heat….

    If I am having difficulty understanding that ZEN 10’s documentation clearly states that MS SQL is required and you are telling me that it isn’t, then others may also have difficulty understanding that seeming contradiction as well.

    I *never* once referenced ZEN 7 – I referenced ZEN 10. Where did ZEN 7 ever enter this conversation?

    Anyway, when you state,

    “technology solutions that are offered through partnership or acquisition are often Microsoft-centric intially; we have a proven track record in making them cross platform over time.”

    I’d like to know why this is, especially for ZENworks version 10. Novell has a vested interest in making their products work on Linux (or even work on that now-dirty word, “Netware”), and has spent untold millions of dollars on products and development for the green lizard.

    Why is it Microsoft-centric first? Why have ANY dependencies on Microsoft when Novell owns everything they need to make it Microsoft-independent from Day One? Why does it take so long for it to become other than Microsoft-centric?

    My company is not the only company that would jump at Novell’s products if they weren’t designed to have an MS requirement. MS is expensive, unreliable, insecure, and once you get it in, it’s impossible to stop it from growing.

    You know how it works – Got more users or apps? Then get more MS servers! Don’t forget the extra licensing, maintenance, support, backup / anti-virus / security software, and extra hardware. Oh, need a site server, etc? It just grows and grows. After a while, you wonder why you have anything other than Microsoft in your environment and find ways to make it so.

    We would rather not have those weeds in our network if at all possible. (Yep, you guessed it – we’re a Netware shop with a controlled Windows environment and lots of Macs.) We don’t want to be forced to add an MS server (or two or three…) to run Novell’s software.

    It’s through our controlled environment that we can grow as we have without wasteful spending on identity management, security, hardware, software, etc. And it’s all thanks to Novell and the great products you produce.

    In its’ current incarnation, ZEN 10 will never see the light of day in our network (which crosses several continents). I’m but one admin who was excited about ZEN 10, until the details came out.

  19. Jon

    I offered to take this offline.

    Let me answer your misguided comments point by point.

    First – to have an “open communication” requires intellectual openness on both sides. You have my contact detail; yet you hide behind an alias and a false email address.

    So – to your points:

    ZCM10 runs on SLES 10 and does not require a Microsoft SQL Server. I have stated this many times; our beta customers and internal testers know this.

    If you look at the public documentation for the ZENworks 10 Configuration Management public beta you will see that we support SLES 10 and Open Enterprise Server 2 as a primary server platform:

    * SUSE® Linux Enterprise Server 10 (SLES 10) on the 32-bit (x86) and 64-bit (x86-64) architectures (Intel* and AMD* Opteron* processors)

    * Open Enterprise Server 2 (OES Linux) x86, x86-64

    Second we support Sybase iAnywhere on all platforms:

    * Database Version Sybase SQL Anywhere 10.0

    Clearly, publicly and widely shared information.

    So to your other comments:

    “My company is not the only company that would jump at Novell’s products if they weren’t designed to have an MS requirement. MS is expensive, unreliable, insecure, and once you get it in, it’s impossible to stop it from growing.”

    Have you tried the ZENworks 10 Configuration Management public beta? Did you try it on SLES 10?

    “In its’ current incarnation, ZEN 10 will never see the light of day in our network (which crosses several continents). I’m but one admin who was excited about ZEN 10, until the details came out.”

    You do seem to need to re-read the information that we are openly sharing about our products and plans.

    Again – my offer to talk about this offline is still open; you do seem angry about something – but ill-informed commentary on Cool Blogs is not the best forum.

  20. By:Jeroen Jansen

    I have ask this before, but no reply.

    Is this the end of Securewave’s Sanctuary for Novell?

    What should i tell customers when they want (or have) Sanctuary?


  21. Jeroen

    ZENworks Endpoint Security Management is the preferred solution.

    We are committed to support Securewave Sanctuary customers who have purchased from Novell.

  22. By:Jeff May

    Interesting. It supports Sybase iAnywhere, which supports, from their website, “SQL Anywhere Server can be deployed onto the platforms you desire, including Windows, Linux, Mac OS X, Netware, Solaris, and a range of other UNIX variants.”

    Yet Novell requires either Linux or Windows – “No Netware Allowed”.

    Or am I mis-reading this?

    Like Jon, we are a Netware shop and have used ZEN and IDM extensively. We have resisted both Windows and Linux in the server room. If our developers ask for a Windows server, they get turned down flat. We’ve had vendors tout their wares here, and we’ve turned away those who require Windows servers. And business is booming. We have a wide mixture of desktop OSes per department, but the server room is going to stay secure, as is our environment.

    For Novell to keep thumbing their noses at shops like ours while still claiming to support Netware is counter-productive for them. I would have thought that the huge backlash at killing Netware would have taught them *something*.

    When Novell makes new software that is supported on the Netware environment without requiring Linux or Windows and it fits our strategic direction, we’ll jump on it. Not until.

  23. Jeff

    We blogged before about the platforms supported for ZENworks Configuration Management.

    You are correct – no NetWare. For that we still offer and support ZENworks 7.

    For ZENworks 10 Configuration Management it’s Linux (SLES 10 or OES2) or Windows 2003.

  24. By:Jeff May


    Why was Netware deliberately omitted from a supported platform? Novell still claims to support Netware and say they will even include it in OES 2.

    So why not have your products support the OSes that you currently sell?

    Either go or get off the pot. Pick one. Either sell an OS that you will continue to develop products for or quit selling that OS.

  25. By:Ron van Herk

    Regarding ZESM (the original topic of this blogpost)
    As Martin mentioned in a previous comment, “technology solutions that are offered through partnership or acquisition are often Microsoft-centric initially; we have a proven track record in making them cross platform over time.”

    Regarding ZCM (as that somehow seems to be the one discussed here in the comments).
    Indeed, Novell still claims to support NetWare, there have been several statements about that. NetWare however isn’t the preferred operating system for new developments (on this subject it might be interesting to read this old blog post from Jason Williams).

  26. Jeff

    This is off topic for this post – but the strategic platform for our development is SLES and Open Enterprise Server 2 being a pattern of that platform.

  27. By:Jeff May


    Understood. Novell still claims that OES2 “includes Netware”.

    So you either support OES2 fully, or you do not. Which is it, and why is Novell waffling on Netware support?

    Sorry to be a stick in the mud here, and maybe Jon feels the same way, but Netware shops like us are just sick of being shafted by the manufacturer who state one thing and do another. (And that’s one reason we deny Windows servers.)

    Here’s a snippet from Novell’s OES2 “Sneak” –

    ” SUSE Linux Enterprise Server 10 provides the ability to run multiple self-contained virtual machines on a single physical server using Xen-based virtualization. Novell Open Enterprise Server 2 offers the ability to run NetWare® 6.5 as a paravirtualized guest operating system on SUSE Linux Enterprise Server. As a paravirtualized guest operating system, NetWare has been enhanced to recognize that it’s running as a virtual machine for optimal performance on the latest hardware.

    Virtualizing NetWare on Novell Open Enterprise Server opens up some very profitable server consolidation possibilities. On today’s high-end hardware, NetWare rarely comes close to reaching full CPU utilization. When Novell Open Enterprise Server 2 comes out, you’ll be able to take advantage of under-utilized hardware by having a single machine host two, three or more NetWare servers without affecting performance. This can deliver significant savings on hardware costs, rack space, cooling requirements and power requirements.”

    While I totally despise the idea of virtualization, at least it shows that Novell IS still developing Netware.

    Again, why doesn’t Novell release a formal statement saying that Netware is in a “freeze”, and no further development on Netware will be done, outside of a large customer demand?

    Then people like us will quit bothering you.