SUSE Manager applies SCAP format to Linux compliance
The newly released SUSE Manager implements a version of OpenSCAP
IDG News Service - Organizations using the Security Content Automation Protocol (SCAP) to manage their SUSE and Red Hat Linux servers can streamline their reporting operations, thanks to an update of the SUSE Manager that now generates metrics and reports in the SCAP format.
The newly released SUSE manager also includes complete support for IPv6. SUSE is announcing the release of this software during its SUSECon conference, being held this week in Orlando, Florida.
"We are trying to be very conservative but at the same time innovative. We are not trying to reinvent systems management software," said Joachim Werner, SUSE senior product manager, about the new release.
Developed by the National Institute of Standards and Technology (NIST), SCAP is a framework for reporting software vulnerabilities and configuration settings in a standardized format. A range of industries, such as government agencies and automobile manufacturers, use SCAP (pronounced "S-Cap) for systems monitoring.
By supporting SCAP, the new SUSE Manager could help streamline the process of reporting how secure computers are across an organization. SUSE Manager is SUSE's in-house systems management software for the patching, provisioning and configuration of multiple SUSE servers. The software can also work with servers running Red Hat Enterprise Linux (RHEL) as well.
SUSE Manager is based on the open-source system management software Spacewalk, maintained by Red Hat. Both Spacewalk and SUSE Manager use OpenSCAP, an open source library and set of tools for implementing SCAP. Run as a virtual appliance, SUSE Manager comes with additional installation help, as well as support from SUSE.
With the SCAP support, an organization can produce reports detailing how many servers across an organization have been patched with a critical security update. It can also produce metrics on how many servers meet the organization's standardized configuration settings. "Profiles you run can check if your password settings are OK. and if the right updates are installed," Werner said.
SUSE Manager, the first update in over a year, comes with a number of other new features as well. With this version, organizations can now use the open source Postgres as the software's database, rather than the more costly Oracle 10g or 11g. "It is now a fully open source stack," Werner said, adding that this may make the SUSE Manager more appealing to small organizations with a limited budget.
Other new features include full support for IPv6 as well as the ability to notify administrators when a server, or multiple servers, need to be rebooted after a patch is installed.
Linux vendors seeking larger enterprise deployments have been taking more effort of late to upgrade their system management tools. Last week, Canonical released a significantly updated version of its own Ubuntu system management software, Landscape.
Such tools "are especially important for our customers," said Sabine Soellheim, SUSE solution marketing manager. "Linux has a very specific management space," she said. Traditional system management software, such as Hewlett-Packard's OpenView, aren't specifically designed to handle Linux in as much detail, and are more expensive as well than dedicated Linux tools, Soellheim said.
The price for SUSE Manager starts at $10,000.
- Improving IT Efficiencies: Four Advantages of Multi-Tenant Data Centers Increasing demands on IT are forcing organizations to rethink their data center options. For many organizations, that means turning to the flexibility afforded...
- Accelerating Cloud Deployment and Operations with Managed Services Companies that do not have sufficient in-house expertise to either deploy or maintain an IaaS cloud should turn to Managed Service Providers .
- Rethinking IT Operations in the Cloud This paper breaks down the challenges that often prevent the cloud from delivering the fast, flexible and affordable infrastructure companies seek - and...
- Gartner Magic Quadrant for Cloud-Enabled Managed Hosting, North America Cloud-enabled managed hosting brings cloudlike consumption and provisioning attributes to the traditional managed hosting market
- NSS Labs & Cisco Present: Evaluating Leading Breach Detection Systems Today's constantly evolving advanced malware and APTs can evade point-in-time defenses to penetrate networks. Security professionals must evolve their strategy in lockstep to...
- Will the Real Endpoint Threat Detection and Response Please Stand Up? This webinar explores new technologies & process for protecting endpoints from advanced attackers as well as the innovations that are pushing the envelope... All Linux and Unix White Papers | Webcasts