Patch Management: Ensuring Secure and Compliant Systems, Exams of Social Sciences

A comprehensive set of questions and answers related to patch management, a critical aspect of it security and compliance. It covers various scenarios and best practices for ensuring that windows workstations, servers, and sql servers have the necessary security updates and hotfixes installed, while also addressing how to handle unauthorized software installations, monitor software changes, and generate reports on patch management activities. The document delves into the use of argent guardian ultra, a patch management solution, and its features and capabilities to effectively manage and monitor the patch status of an organization's it infrastructure.

Typology: Exams

2023/2024

Available from 10/22/2024

ROCKY-B
ROCKY-B 🇰🇪

4.4

(16)

40K documents

1 / 3

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
PATCH MANAGEMENT QUESTIONS AND ANSWERS
Use 'Rule Is Broken If Hotfix Has Not Been Installed' and specify KB4457146 as the
Hotfix ID.
Run the Rule against Monitoring Group &MG_WINDOWS_WORKSTATION. - Answers-
How to ensure all Windows workstations have applied hotfix KB4457146, which
addresses important security issues in browser flash plug-in?
Use Rule options 'Rule Is Broken If New Hotfix Is Installed' and 'Ignore Hotfix and MSI
Installed Over 1 Day' - Answers-How to be notified when new hotfixes have been
applied to a lock-down server in the past 24 hours?
Use Rule option 'Rule Is Broken If New MSI Package Is Installed' and configure Relator
to run once every hour. When alert comes, check the detected software against
company white list. - Answers-How to ensure no unauthorized software is installed on
company-owned laptops that are connected to corporate network?
Use Rule option 'Rule Is Broken If New MSI Package Is Installed' and run against the
company server. - Answers-How to be alerted when new software is installed on
company file server?
Use Rule option 'Rule Is Broken If Hotfix Has Not Been Installed' and specify
KB4073225 as Hotfix ID.
Run the Rule against SQL Server Monitoring Group. - Answers-KB4073225 is the
critical SQL Server patch for Meltdown and Spectre.
How to ensure all company SQL servers have applied the hotfix?
Rule option 'Rule Is Broken If Windows Update Is Available'. - Answers-How to ensure
all Windows servers on the network have applied all available hotfixes?
Rule option 'Ignore Optional Windows Updates Including Driver'. - Answers-How to
avoid being alerted for pending hardware driver hotfixes?
Use Rule option 'Ignore Updates Containing Keywords'. - Answers-Customer is alerted
everyday about 'Definition Update for Windows Defender Antivirus', which is expected
daily. How to exclude this type of hotfixes from being notified?
Use Rule option 'Ignore Updates Containing Keywords' and specify keywords separated
by commas. - Answers-How to exclude several updates with keywords?
WMI connectivity is not available. Check with network administrator to adjust WMI
security on target machine. - Answers-Customer could not successfully run Windows
Update Service Rule to check newly installed hotfixes for a remote machine, what is the
most likely cause?
pf3

Partial preview of the text

Download Patch Management: Ensuring Secure and Compliant Systems and more Exams Social Sciences in PDF only on Docsity!

PATCH MANAGEMENT QUESTIONS AND ANSWERS

Use 'Rule Is Broken If Hotfix Has Not Been Installed' and specify KB4457146 as the Hotfix ID. Run the Rule against Monitoring Group &MG_WINDOWS_WORKSTATION. - Answers- How to ensure all Windows workstations have applied hotfix KB4457146, which addresses important security issues in browser flash plug-in? Use Rule options 'Rule Is Broken If New Hotfix Is Installed' and 'Ignore Hotfix and MSI Installed Over 1 Day' - Answers-How to be notified when new hotfixes have been applied to a lock-down server in the past 24 hours? Use Rule option 'Rule Is Broken If New MSI Package Is Installed' and configure Relator to run once every hour. When alert comes, check the detected software against company white list. - Answers-How to ensure no unauthorized software is installed on company-owned laptops that are connected to corporate network? Use Rule option 'Rule Is Broken If New MSI Package Is Installed' and run against the company server. - Answers-How to be alerted when new software is installed on company file server? Use Rule option 'Rule Is Broken If Hotfix Has Not Been Installed' and specify KB4073225 as Hotfix ID. Run the Rule against SQL Server Monitoring Group. - Answers-KB4073225 is the critical SQL Server patch for Meltdown and Spectre. How to ensure all company SQL servers have applied the hotfix? Rule option 'Rule Is Broken If Windows Update Is Available'. - Answers-How to ensure all Windows servers on the network have applied all available hotfixes? Rule option 'Ignore Optional Windows Updates Including Driver'. - Answers-How to avoid being alerted for pending hardware driver hotfixes? Use Rule option 'Ignore Updates Containing Keywords'. - Answers-Customer is alerted everyday about 'Definition Update for Windows Defender Antivirus', which is expected daily. How to exclude this type of hotfixes from being notified? Use Rule option 'Ignore Updates Containing Keywords' and specify keywords separated by commas. - Answers-How to exclude several updates with keywords? WMI connectivity is not available. Check with network administrator to adjust WMI security on target machine. - Answers-Customer could not successfully run Windows Update Service Rule to check newly installed hotfixes for a remote machine, what is the most likely cause?

Remote Registry service is not running on the remote machine. - Answers-Customer could not successfully run Windows Update Service Rule to check newly installed MSI packages for a remote machine, what is the most likely cause? PowerShell Remoting - Answers-Customer could not successfully run Windows Update Service for a remote machine, and network administrator is not willing to adjust WMI security. What is the other option for connectivity? Configure PowerShell Remoting on the machine, and monitor using Rule option 'Use PowerShell Remoting to Connect'. - Answers-How to monitor Windows Updates on AWS or Azure Cloud machine? Use Argent Reports and query on SQL table ARGSOFT_ARGENT_GUARDIAN_ULTRA_HOTFIX - Answers-How to report on all SQL Servers which have not had KB4457146 applied? Use Argent Reports and query on SQL table ARGSOFT_ARGENT_GUARDIAN_ULTRA_MSI - Answers-How to report on all Windows machines which have Office 2010 installed? Use Argent Reports and query on SQL table ARGSOFT_ARGENT_GUARDIAN_ULTRA_HOTFIX - Answers-How to report on all Windows servers that have hotfixes applied in last 24 hours? Use Argent Reports and query on SQL table ARGSOFT_ARGENT_GUARDIAN_ULTRA_MSI - Answers-How to report on all Windows machines that have new software installed in last 24 hours? Use Argent Reports and query on SQL table ARGSOFT_ARGENT_GUARDIAN_ULTRA_MSI against company white list. - Answers- How to report on all company workstations which have unauthorized software installed? Windows Updates (_Total)\Pending Updates - Answers-What is the performance metric for daily pending hotfixes? Use Argent Reports and query on SQL table ARGSOFT_ARGENT_GUARDIAN_ULTRA_HOTFIX - Answers-How to report on hotfixes for a business critical server installed in past 12 months? Use Argent Reports and query on SQL table ARGSOFT_ARGENT_GUARDIAN_ULTRA_HOTFIX - Answers-How to report on installed hotfix count of Exchange servers in past 12 months?