UC Santa Cruz - Information Technology Services - ITS Services - ITS


Home About ITS Services ITS News Policies Governance ITS Staff Site Jobs Find An Answer Feedback

Getting Started

New Employee Services

ITS Services

Quick Links

System Status

UCSC | Campus Safety

Web Statistics by Google Analytics

LANDesk

Home ITS Services ITS - LANDesk

About LANDesk
LANDesk is a tool used by ITS staff to provide remote computer assistance and management. The ITS Support Center is using this tool in support of the Help Desk and Standard Desktop Support services.

LANDesk Agent

The agent is installed on Windows and Mac OS X computers managed through the Standard Desktop Support service.

Where is LANDesk installed?
ITS is initially deploying LANDesk to 800 computers. As of November 2008, the agent is installed on or is planned to be installed on computers in:

Information Technology Services
Staff Human Resources
Student Affairs
Baskin School of Engineering
Physical & Biological Sciences (admin staff)

Agent Installation Instructions

Only install the agent software when directed by ITS.

How can I tell if the LANDesk agent is installed on my computer?
Windows - you will see a LANDesk antivirus icon in your system tray (see below).

Mac - You will have either a LANDesk preference pane in your System Preferences application, or a LANDesk Agent application in /Applications/Utilities/.

Desktop Security

Anti-Spyware
LANDesk provides protection against spyware and malware for both Windows and Mac computers. Spyware definitions are updated from a central server. Program launches are monitored and known spyware is prevented from running. LANDesk will also scan for known spyware that is actively running on a computer and remove it.

Antivirus (Windows Only)
LANDesk includes an antivirus component for Windows computers (there is no LANDesk antivirus for Mac at this time). Virus definitions are periodically updated from a central server. There are two types of scans it performs: real-time scans and full device scans.

Real-time scans check files for viruses when a file is opened. All file types are scanned. Incoming email messages and attachments are also scanned as they are downloaded.

Full device antivirus scans run once every seven days between 7pm - 7am. This scan checks for infectable file types. The full scan is set to use as little processor power as possible

Heuristic scanning is turned off for both full device scans and real-time scans.

Manual Virus Scans
You can manually start a full device scan at any time by clicking the "Scan Now" link on the LANDesk Antivirus window. Run full scans by opening the LANDesk antivirus panel in your system tray.

Trusted Items
You can exclude files and folders from being scanned for spyware and viruses. Add trusted items by opening the LANDesk antivirus panel in your system tray.

File Quarrantine
If a virus-infected file cannot be cleaned, it is put into a quarantine folder. You can restore, delete, and rescan quarantined files. Files in quarrantine are encrypted so they pose no threat to your computer.

How can I tell if LANDesk antivirus is installed and running on my computer?

You will have a LANDesk AV icon in your system tray that looks like the image on the left. Double-clicking on this icon will open the LANDesk Antivirus control window. Right-clicking on this icon will show various options.

Security Vulnerabilities
LANDesk also checks for insecure computer settings and application versions that need security udpates. Security scans take place every day between noon and 1pm.

Background Activity Summary

LANDesk is configured to be as unobtrusive as possible and to minimize activity during regular business hours.

Inventory scan	every day between 6pm - 6am and after patching
Antivirus full device scan	every 7 days between 7pm - 7am
Antivirus real-time scan	scans files when opened (Windows only)
Antivirus definition updates	every day
Security scan	every day between noon - 1pm

In addition to these scans, LANDesk logs application use as part of it's software license monitoring function. This does not have any impact on program use.

Remote Control

Agent Control
Support Center desktop support techs can provide remote control assistance for computers with the LANDesk agent software installed.

CruzControl
LANDesk allows the ITS Support Center staff to provide remote control assistance for Windows computers without the LANDesk software installed.

When instructed by a support technician, visit the CruzControl download page, download the remote control program and follow the instructions on the page. When the remote control session is over, you can delete the remote control application or keep it to use in the future.

Remote Control Policy
Remote control is configured to require user approval before any remote control session is started. IT staff are unable to remotely view or control desktop screens without user acknowledgement.

Hardware and Software Inventory

The LANDesk agent software collects comprehensive system and software information for reporting and planning purposes.

Inventory Scans
LANDesk scans computers with the agent installed every day sometime between 6pm and 6am to collect hardware and installed software information. This data is sent to the LANDesk server where it can be used for reports. A full inventory scan is also run after a computer has been patched.

Will the inventory scan slow down my computer?
You may hear some increased hard disk activity, but there shouldn't be a noticable impact of the scanning. You can always report computer slowdowns or odd behavior by submitting a ticket in IT Request.

Patching

Operating system and application patches are being installed with LANDesk during scheduled patching windows:

Unit	Patch Period
Staff HR ITS-Business Services ITS-IT Services ITS-PMG School of Engineering	Every Week Wednesday 7pm - Thursday 7am
Follow-up patching for systems that were not available during the normal patch period	Every Friday 8am - noon
Critical security updates for all systems with LANdesk Agent	Any time Monday-Friday

Some critical security patches may be installed as soon as possible to maintain security. These patches may be installed at any time Monday - Friday.

What patches are installed?
Patches installed using LANDesk include application patches for programs such as Office, Firefox, Thunderbird, and the various Adobe products in addition to Windows and Mac OS X system patches.

How are patches selected?
Patches are triaged by criticality and then again by number of systems affected. The aim is to always fix the most critical potential exploits first.

Will I notice patching?
Generally, the patching process is very unobtrusive. Most patches are rolled out at night when the system being patched is not in use. However, if the target system is off during the agreed upon patch window at night, the patch will be resent the following Friday morning. The client may notice some disk activity or be asked to reboot.

What if I take my laptop home during the patch period? Will I receive the patches later?
As stated in the previous answer, patching will occur the next Friday morning for systems not available during the regular patch window.

Are patches tested?
Patches are tested in two ways prior to being deployed:

First, LANDesk tests the patch in their labs to insure that it distributes and installs correctly using LANDesk as the patching mechanism.
Second, all patches are tested by an ITS Support Center representative prior to being rolled out.

Do I have to reboot my computer?
Some patches do require a reboot. If asked to reboot, you will have the option to defer rebooting for 24 hours. The reboot can be deferred up to three times, after which LANDesk will reboot the machine to ensure system stability.

If I apply patches myself will this cause a problem?
No, LANDesk identifies which computers need a patch. If you have already installed a patch, LANDesk will not include your machine is the list of computers that need that patch.

updated 11/21/08