 |
|
DAILY NEWS AND INFORMATION
FOR THE GLOBAL GRID COMMUNITY /
|
Breaking News -
Security:
New Product Enables Management Of
Local Group Policy Objects
FullArmor Corp, a leading provider of Microsoft Windows management
solutions,
announced FullArmor GPAnywhere!, the first and only solution available to
centrally manage Local Group Policy objects.
Local Group Policy is an effective way to increase security by specifying
user
and computer configurations. Used with or without Active Directory, Local
Group Policy allows administrators to manage Windows 2000 and Windows XP
clients in Windows NT 4.0 and Novell environments.
FullArmor GPAnywhere! is an easy-to-use console that uniquely leverages
Microsoft Corp.'s Active Directory in Application Mode (ADAM) to store Policy
Templates. These templates can then be applied to local GPOs on remote
computers. The tool also helps during migration from Windows NT 4.0/Novell
domains to Active Directory by allowing the administrator to export the
templates to live Active Directory.
Web services, utility computing, .NET, CPU harvesting and distributed
computing are just a few of the technologies that fall under the Grid
computing umbrella. Gt04 -- a premiere enterprise Grid computing conference
targeting industrial and commercial users -- will gather experts, and outline
strategies and road maps for Grid deployment. For more information, visit
www.gt04.com.
Grid computing is here!
Each user and computer may be subject to several Group Policy objects
(GPOs)
when networked in an Active Directory environment. Using Local Group Policy,
administrators can ensure that even computers and users that are not connected
to an Active Directory domain are still subject to policies that conform to
organizational standards.
Local Group Policy can be used to lockdown desktops, enforce local
security,
control Internet Explorer, execute local scripts and configure applications.
However, use of Local Group Policy presents administrators with several
challenges, such as the need to individually configure local Group Policy
Objects (GPOs), the lack of centralized management and reporting and the need
to manage laptops and isolated servers.
Several features in GPAnywhere! enable administrators to overcome these
challenges. For example:
- Policy templates stored in an Active Directory Application Mode (ADAM)
environment ease the task of creating local GPOs.
- Executable policy files make it easy to establish and maintain approved
configurations and local GPO settings.
- The central console allows administrators to quickly and easily update
the
settings of the local GPO on remote computers.
- The reporting function enables administrators to view the local GPO
settings of remote computers.
Local Group Policy Objects are available on every Windows 2000-, Windows
XP-
and Windows Server 2003-based computer. However, there is no native solution
to centrally manage Local GPOs, which are especially important in managing
certain configurations, such as where computers are not networked, are remote
or require special security consideration.
For example, in a non-networked environment or in a networked environment
lacking Active Directory, local GPO settings are important because they are
the primary means of enforcing computer and user configurations. Using local
GPOs, Group Policy settings can be stored on individual machines.
Laptops, remote computers or occasionally connected desktops may not
receive
updates to policies in a timely fashion, posing a problem of compliance.
FullArmor GPAnywhere! can deliver manageability in this scenario, by providing
Executable Policies, settings that are contained in a single executable. They
can be scheduled to update the policy even when they are not connected to the
network maintaining compliance.
Securing demilitarized zones (DMZ) presents another challenge. For reasons
of
additional security, computers are often not part of a domain. In these
situations, FullArmor GPAnywhere! provides multiple methods to improve the
manageability and reduce costs.
GPOs play an important role in preparing to migrate to Microsoft
environments
that include Active Directory. FullArmor GPAnywhere! can be used to create
policies in Active Directory; customers can implement Group Policy today, and
obtain user feedback to fine tune their Active Directory and Group Policy
design, before the transition even takes place.
"FullArmor GPAnywhere! is another example of our innovation in leveraging
Microsoft's latest technologies to satisfy our customers' current needs," said
Rich Farrell, chief executive officer at FullArmor. "GPAnywhere! generates
clear returns for our customers by enhancing the manageability features of
Windows 2000, Windows XP and Windows Server 2003 desktops and servers in
heterogeneous domains."
"The dynamics of the workplace require flexible network administration
solutions that are also consistent with a company's security policies," said
Mark Young, general manager of the Platform Strategy and Partner Group at
Microsoft. "FullArmor's solutions are a great example of the value of the
Windows platform in enabling companies to expand their networks in a variety
of ways that meet their employee's needs without compromising network security
and manageability."
|