{"product_id":10106,"v_id":10106,"product_name":"LANDesk® Management Suite 8","certification_status":"Not Certified","certification_date":"2006-10-18T00:10:00Z","tech_type":"Enterprise Security Management","vendor_id":{"name":"LANDesk Software","website":"http://www.landesk.com/"},"vendor_poc":"Colleen Mammone","vendor_phone":"801.208.1345/801.369.2003 (Cell)","vendor_email":"Colleen.Mammone@landesk.com","assigned_lab":{"cctl_name":"CygnaCom Solutions, Inc"},"product_description":"<p>LANDesk&reg; Management Suite 8 (LDMS) is a remote desktop management solution which enables network administrators to view, configure, and manage the devices on a network. It includes a full range of remote administration tools that can manage complex, heterogeneous computing environments by supporting multiple OS platforms, directories, databases and hardware platforms. It provides an integrated systems and a security management solution that can be used to distribute software packages, monitor software usage, deploy OS images and migrate profiles, remote control devices, and complete many other management tasks.</p>\r\n<p>LANDesk Management Suite 8 contains two main components: the server and the client.</p>\r\n<p>The server component consists of:</p>\r\n<ul>\r\n    <li>Core server - all the key files and services for Management Suite are on the core server, </li>\r\n    <li>Main Console - the main LANDesk Management Suite interface, </li>\r\n    <li>Core database - LANDesk Management Suite requires one database for each core server (not included within the TOE) </li>\r\n    <li>Core rollup database - a database that is optimized for querying. Core rollup databases summarize data from multiple core servers. Only the Web console can access the core rollup database (not included within the TOE). </li>\r\n</ul>\r\n<p>The LANDesk client component is a small software program (sometimes referred to as &ldquo;agent&rdquo;) that runs on each LDMS device. This software program allows the LANDesk server to communicate directly with those devices that it will be managing. The device can be any desktop computer, server, or laptop in the network that have LANDesk agent installed.</p>\r\n<p>The client can run in any of the standard LANDesk Management Suite devices including Windows 98 SE, Windows NT (4.0 SP6a and higher), Windows 2000 SP4 / 2003 / XP SP2, Mac OS X 10.2.x and 10.3.x, Red Hat Linux, version 9 (scanning from the console), SUSE Linux (scanning from the console), and Sun Solaris (scanning from the console). </p>","evaluation_configuration":null,"security_evaluation_summary":"<p>The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) processes and procedures. LANDesk Management Suite 8 was evaluated against the criteria contained in the Common Criteria for Information Technology Security Evaluation, Version 2.3. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 2.3. CygnaCom Solutions has determined that the product meets the security criteria in the Security Target, which specifies an assurance level of EAL2. A validator, on behalf of the CCEVS Validation Body, monitored the evaluation. The evaluation was completed in September 2006. </p>","environmental_strengths":"<p>The TOE provides the following security functionality: </p>\r\n<ul>\r\n    <li>Scan managed devices - LANDesk Management Suite Patch Manager tool provides the ability to scan managed devices for known vulnerabilities. </li>\r\n    <li>LANDesk report generation - LANDesk Management Suite includes a reporting tool that can be used to generate a wide variety of specialized reports that provide critical information about the managed devices on a network. Security and Patch Manager can be used to update the most common types of security and patch content (such as vulnerabilities) from LANDesk Security services, download the required patches, and configure and run security scans on the LANDesk managed devices. </li>\r\n    <li>LDMS reporting tool allows LANDesk users to create their own custom definition reports, however this feature is not considered part of the TSF, and therefore custom reports are not included in this evaluation. </li>\r\n    <li>Security Management &acirc;&euro;&ldquo; LANDesk Management Suite provides security management function for the report generation, and of security attributes using role base administration. The TOE provides the ability to control what devices a user can manage and which tools they can access and utilize with those devices. </li>\r\n    <li>Identification and Authentication - The LDMS Role-base administration uses user ID, user rights, and group membership to control the access to all the tools and devices. </li>\r\n    <li>LANDesk users first must identify and authenticate themselves through the OS, and then LANDesk console requires each user to be successfully identified and authenticated before using the LDMS. </li>\r\n</ul>\r\n<!-- InstanceEndEditable -->","features":[]}