Weitere ähnliche Inhalte Ähnlich wie Improving System Upgrades and Patching using SolarWinds (20) Kürzlich hochgeladen (20) Improving System Upgrades and Patching using SolarWinds3. @solarwinds 3
Agenda
• SolarWinds Overview
• Vulnerability Management
Lifecycle and Best Practices
• SolarWinds Patching and
Configuration Management
Solutions
• Demonstrations
• Resources and Q&A
© 2020 SolarWinds Worldwide, LLC. All rights reserved.
4. @solarwinds
SolarWinds at a Glance
© 2020 SolarWinds Worldwide, LLC. All rights reserved.
1. Customers are defined as individuals or entities that have an active subscription for our subscription products or that have purchased one or more of our perpetual license products since our inception under a unique customer identification number. We may have multiple
purchasers of our products within a single organization, each of which may be assigned a unique customer identification number and deemed a separate customer.
2. IDC defined Network Management Software functional market, IDC’s Worldwide Semiannual Software Tracker, October 2019.
3. Gartner, Market Share Analysis: ITOM: Performance Analysis Software, Worldwide, 2018. June 11, 2019. (AIOps/ITIM/Other Monitoring Tools Software Market). SolarWinds term, Systems Management, refers to the AIOps/ITIM/Other Monitoring Tools Software Market
Taxonomy referenced in the Gartner report. All statements in this report attributable to Gartner represent SolarWinds interpretation of data, research opinion, or viewpoints published as part of a syndicated subscription service by Gartner, Inc., and have not been reviewed
by Gartner. Each Gartner publication speaks as of its original publication date (and not as of the date of this presentation). The opinions expressed in Gartner publications are not representations of fact and are subject to change without notice.
#1
in Network
Management2
320,000+
customers in 190
countries 1
60+
IT management
products
22,000+ MSPs serving
450,000+ organizations
Every branch of the DoD, and
nearly every civilian and
intelligence agency
150,000+ registered members of THWACK®, our global IT community
Founded in 1999
More than 3,200
employees globally
Austin, TX headquarters
Herndon, VA, government office
30+ offices globally
Leader
in Remote Monitoring
and Management
#3
in Systems
Management3
Growing Security
Portfolio
499 of
Fortune 500®
5. @solarwinds 5
Building Great Products That Simply Work Is at Our Core
© 2020 SolarWinds Worldwide, LLC. All rights reserved.
End User-Driven Product Strategy With a Constantly Growing OfferingFocused on Ease and Efficiency
Geekbuilt.®
Roadmap driven by end users and products developed by
IT professionals who understand today’s IT environment
Massive User Community
150K+ registered THWACK members
22K+ MSPs access the MSP Institute
and Customer Success Center
Solve clearly identified problems
Orion®
Platform
Hybrid IT
management
Application
Management
Affordable full-stack
monitoring for hybrid and
cloud-native IT
environments
SolarWinds
MSP
Remote monitoring
and management
platforms, backup,
and email security
Easy to try, find, and buy
Ready to use
Security
Security, simplified
6. @solarwinds 6
Our Approach to ProductOurCorePrinciplesNotableExamples
Simple and
powerful
Deliver complete
visibility for hybrid IT
Grow with our
customers
Enable application-
centric management
•Quick value after install
•Seamless UX across
product portfolio
•Native support of the major
on-premises and public clouds
•Unified, integrated experience
•Start small, solve the first
problem, and be ready for
the next
•Add new capabilities quickly
• AppStack™ – manage the entire
app, not just components
• PerfStack™ – real-time
troubleshooting across the
modern app and infrastructure
stack
• NetPath™ – manage the network, not
just elements
• Cloud infrastructure monitoring –
AWS® and Azure® infrastructure
monitoring
•Support management of
traditional and modern apps
• Network Insight™ – deep
visibility for the modern
network stack across
performance and
configuration
• AppInsight™ – deep visibility
for packaged application
performance
• Increased scale – support for
400,000 NPM elements in a
single instance
• Simplified multiproduct
installer – single installer to
automatically resolve upgrade
and install dependencies
© 2020 SolarWinds Worldwide, LLC. All rights reserved.
7. @solarwinds 7
What Is the Vulnerability Management Lifecycle?
• Identify: network devices and systems operating
versions for OS weaknesses; categorize into
groups and assign value based on how critical
• Protect: OS versions, Applications, User Access;
setup logging to cover all
• Detect: Scan for firmware versions against CVE
DB, OS updates, and zero day
• Respond: Tier responsiveness, timeline, and
schedule outages while addressing vulnerabilities
• Verify: reporting, logging, and alert notification
Identify
Protect
DetectRespond
Verify
© 2020 SolarWinds Worldwide, LLC. All rights reserved.
8. @solarwinds 8
System and Application Patching Best Practices
• Discover an updated inventory of servers and workstations
• Conduct a comprehensive audit of software in use
• Leverage automation to discover and uniformly deploy system and application patches
• Test and verify patches in your environment
• Unnecessary patching can run into untested patch stability issues
• Compliance reports help show the status of patched PCs, servers, and VMs
• Schedule patch jobs to help avoid errors and omissions
• Leverage configuration monitoring tools to verify system patches were completed as
expected
• Monitor application performance to ensure Patch isn’t the cause of stability issues
© 2020 SolarWinds Worldwide, LLC. All rights reserved.
9. @solarwinds 9
Configuration Management
• Configuration management applies to networks and servers
• Network configuration management can help save time by configuring
devices to policy, preventing unwanted changes, and identifying
configuration drift
• Server configuration management compares changes over time, monitors
performance impacts, and verifies that updates were completed
• Vulnerabilities are collected and shared by NIST in the National
Vulnerability Database
• The Department of Homeland Security provides another resource
called Common Vulnerabilities and Exposures (CVE)
© 2020 SolarWinds Worldwide, LLC. All rights reserved.
10. @solarwinds
SolarWinds Security Products Overview
Identify Protect Detect Respond Recover
Patch Manager
Windows and third-party patching, asset inventory, and reporting
Security Event Manager
SIEM tool for threat detection, incident response, and compliance reporting
Patch Manager
Patch compromised systems
Access Rights Manager
Manage and audit user access rights across your infrastructure
Identity Monitor
Automates account takeover prevention
Server Configuration Monitor
View previous configurations
Network Configuration Manager
Automates management of network configurations and helps ensure compliance and backup status
User Device Tracker
Detect and locate rogue users and devices on your network
NetFlow Traffic Analyzer
Find suspicious network activity
Serv-U MFT
Secure file transfer and sharing
Backup
Easy web-based backups
Backup
Restore data and systems
Threat Monitor
SaaS-based threat detection, incident response, and compliance reporting
© 2020 SolarWinds Worldwide, LLC. All rights reserved. 10
Server Configuration Monitor
HW and SW asset inventory
12. @solarwinds 12
Automated patching of Microsoft® and third-party applications
Patch Manager
• Utilizing WSUS or SCCM; improve and simplify patch management solutions
• Discover Patches needed for Microsoft Windows, and Third Party Patches
• Deploy Pre-built, tested patches from vendors such as Adobe®, Apple®, Google®,
Mozilla®, Oracle®, and others—upgrade or new install
• Set time limits and timeline on when patches are approved
• Decrease security risks and service performance degradation by controlling when
and where patches are applied
• View audits and demonstrate compliance with out-of-the-box reports and
dashboard views
• Agentless architecture, mass scale, and ease of use gives you the best ROI with no
scripting or professional services needed
• Links: Data – Demo – Resource
© 2020 SolarWinds Worldwide, LLC. All rights reserved.
13. @solarwinds 13
Detect, alert, and track configuration changes to Windows and Linux servers and applications
Server Configuration Monitor (SCM)
• Detect, alert, and report on changes
• Default Templates to monitor with hardware inventory, software inventory,
and IIS configuration files
• Customization to monitor registries, binary and text files, and script outputs
• Capture and track who made configuration changes
• Compare current configurations against a baseline or between any two
points in time
• Correlate configuration changes with network and application performance
• Automatically detect servers and applications eligible for monitoring
• Links: Data – Demo – Resource
© 2020 SolarWinds Worldwide, LLC. All rights reserved.
14. @solarwinds 14
Improve network reliability and security by managing configurations, changes, and compliance
Network Configuration Manager (NCM)
• Discover and automate network configuration backups
• View and easily rollback to the last-known good configurations
• Establish multi-device baselines to identify and resolve configuration drift
• Bulk deploy standardized device configs across your network
• Gain visibility to unauthorized or erroneous network changes
• Define compliance rules; detect and report on network policy violations
• Network inventory and asset service management
• Utilize NIST CVE; Cisco IOS®, ASA, Nexus, and Juniper device versions are matched to identify potential vulnerabilities;
workflow includes ability to investigate, remediate, or waiver based on applicability
• Audit device configs for NIST FISMA, DISA STIG, and DSS PCI compliance
• Get out-of-the-box support for major network device vendors, including Cisco®, Palo Alto Networks®, Juniper®, HP®,
Huawei®, F5®, Avaya®, Ruckus®, and more
• Links: Data – Demo – Resource
© 2020 SolarWinds Worldwide, LLC. All rights reserved.
16. @solarwinds 16
Resources for Systems Upgrades and Patching
• Review blog on patch management best practices:
https://orangematter.solarwinds.com/2019/08/05/patch-management-best-practices-why-does-patching-hurt-so-
much/
• Review blog on change management:
https://orangematter.solarwinds.com/2019/09/19/change-management-overview-itsm/
• Review blog on vulnerability management lifecycle:
https://www.solarwindsmsp.com/blog/vulnerability-management-best-practices
• Review video on five best practices for network configuration management:
https://thwack.solarwinds.com/docs/DOC-173764
• Review product pages for Patch, SCM, and NCM:
• https://www.solarwinds.com/patch-manager
• https://www.solarwinds.com/server-configuration-monitor
• https://www.solarwinds.com/network-configuration-manager
© 2020 SolarWinds Worldwide, LLC. All rights reserved.
17. @solarwinds
Q&A
17© 2020 SolarWinds Worldwide, LLC. All rights reserved.
Call government sales:
877.946.3751
Contact federal sales:
federalsales@solarwinds.com
Contact state and local
government sales:
governmentsales@solarwinds.com
Contact education sales:
educationsales@solarwinds.com
18. @solarwinds 18
Contact Us
Let us know how we can help you
© 2020 SolarWinds Worldwide, LLC. All rights reserved.
• Visit our THWACK® government group: http://thwack.com/government
• Watch a short demo video: http://demo.solarwinds.com/sedemo/
• Download a free trial: http://www.solarwinds.com/downloads/
• Visit our government website: http://www.solarwinds.com/government
• Call government sales: 877.946.3751
• Email SolarWinds federal government sales: federalsales@solarwinds.com
• Email SolarWinds state and local government sales: governmentsales@solarwinds.com
• Email SolarWinds education sales: educationsales@solarwinds.com
• Follow us on LinkedIn®: https://www.linkedin.com/company/solarwinds-government
19. @solarwinds
The SolarWinds, SolarWinds & Design, Orion, and THWACK trademarks are
the exclusive property of SolarWinds Worldwide, LLC or its affiliates, are
registered with the U.S. Patent and Trademark Office, and may be
registered or pending registration in other countries. All other SolarWinds
trademarks, service marks, and logos may be common law marks or are
registered or pending registration. All other trademarks mentioned herein
are used for identification purposes only and are trademarks of (and may be
registered trademarks) of their respective companies.
19
Hinweis der Redaktion Intro and slides 15
Demo 40
Q&A 5 https://www.solarwindsmsp.com/blog/vulnerability-management-best-practices