Trend Micro Deep Security 9.5 ( Event Based Tasks to activate New AD Computer Object) – Part 16

Posted on August 27, 2015 by

Pls check my previous blogs for the DSM , Relay Server , vShield End Point , Filter Driver,DSVA, DSA , SSP Server , Policies and Exclusions , Events and Monitoring , VMtools and VDI Environment with Agent Protection and Agentless Protection ,Trend DPM Service Pack and Relay Server Upgrdae and Trend Filter Driver and Deep Security Virtual Appliance .In this blog we can see the how to activate the agent using the Event-Based Tasks for the Active-Directory Computer Object.

In Agent-based environment for any newly created computer we have to activate the agent manually or using any thrid-party option like running SCCM or Script but if we have AD integration with DSM we can make the activation using the EVENT-BASED Tasks option in Trend DSM.

It will be very useful for the Non-VMware based VDI environment.

To address this issue, I suggest to upgrade to the below patch release and make sure to take the DB backup before upgrading the patch.

DS 9.5 SP1 Patch 1 Binaries:

Windows:
http://files.trendmicro.com/products/deepsecurity/en/9.5/Manager-Windows-9.5.6008.x64.exe

Linux:
RedHat 6
http://files.trendmicro.com/products/deepsecurity/en/9.5/Manager-Linux-9.5.6008.x64.sh

RedHat 5
http://files.trendmicro.com/products/deepsecurity/en/9.5/Manager-Linux-9.5.6008.x64.sh

Go to the Administration – Event-Based Tasks

w2

Click New- select Computer created ( System )

ledd

Give some time after the new system is created in the AD OU because it will take time to power-on .

245Untitled

Active-Directory OU structure.

nsored

 

Select the Folder Name and point the OU Name.

3tled

If you want to activate any specific computer name then create one more rule for the computerName.

Unftitled

Make Sure to enable the same.

 

Untitlted

Make sure to have the Scheduled Task for the Daily Synchronize Directory for one hr so that all the folders in the Trend DSM AD OU will SYNC with AD and update the same.

If we manually SYNC the AD then the Event-Based tasks will fail to activate the agent because as per the rule , new computer have to be updated using the system so wait to finish the AD Sync to finish as per the schedule.

Untled

This entry was posted in Trend Micro Deep Security and tagged , , , , , . Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s