ASRock Q77M vPro Quick Start Guide - Page 17

Adding New Devices, Updating Procedures to Include Intel AMT Features, Using Agent Presence AP,

Get ASRock Q77M vPro PDF manuals and user guides View all ASRock Q77M vPro manuals
Add to My Manuals
Save this manual to your list of manuals

Page 17 highlights

Intel® vPro™ and Intel® Centrino® Pro Processor Technology Quick Start Guide Step 7: Post Configuration Once you've deployed and configured your Intel vPro client machines, there are still some additional actions you should consider. Adding New Devices: As new Intel vPro clients are added to the network you will need to perform the deployment process described above to activate Intel AMT on the new devices, discover the new devices, and then add them to your management database. This procedure should be added to your standard maintenance procedures. Updating Procedures to Include Intel AMT Features: Work with your management console to determine how best to utilize the new capabilities available to you through your Intel vPro devices. Further, it is a good idea to update your procedures to utilize Intel vPro features, such as those procedures your help desk staff follow when helping users. For example, you will want to update the process to re-image a PC that has blue screened at a remote site using the new Intel AMT features now available in your management console. Using Agent Presence (AP): Agent Presence (AP) monitors for the existence of agents. The HP Software client agents must be installed on the client PC in order to use AP. The detailed procedures are described in the HP OOBM Console User Guide (OVCOutOfBandMgtConsoleGuide.pdf) Chapter 6 "Monitoring Security Software" section. System Defense (SD): System Defense (SD) does not require any agents to be installed on the Intel AMT client machine. System Defense policies may be configured on a per-machine basis. There are four pre-defined SD policies: • An FTP access policy which will trigger SD if an FTP access is made either to or from the Intel AMT client machine. • A UDP flood policy which will trigger SD if Intel AMT sees at least 20,000 UDP packets per second and will monitor for a Denial-of-service attack. • An SYN flood policy which will trigger SD if Intel AMT sees at least 20,000 IP packets per second and will monitor for a Denial-of-service attack. 17

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
Intel® vPro™ and Intel® Centrino® Pro Processor Technology Quick Start Guide
17
Step 7:
Post Configuration
Once you’ve deployed and configured your Intel vPro client machines, there are still some additional
actions you should consider.
Adding New Devices:
As new Intel vPro clients are added to the network you will need to perform the deployment process
described above to activate Intel AMT on the new devices, discover the new devices, and then add them
to your management database.
This procedure should be added to your standard maintenance
procedures.
Updating Procedures to Include Intel AMT Features:
Work with your management console to determine how best to utilize the new capabilities available to
you through your Intel vPro devices.
Further, it is a good idea to update your procedures to utilize Intel
vPro features, such as those procedures your help desk staff follow when helping users. For example,
you will want to update the process to re-image a PC that has blue screened at a remote site using the
new Intel AMT features now available in your management console.
Using Agent Presence (AP):
Agent Presence (AP) monitors for the existence of agents.
The HP Software client agents must be
installed on the client PC in order to use AP.
The detailed procedures are described in the HP OOBM
Console User Guide (OVCOutOfBandMgtConsoleGuide.pdf) Chapter 6 “Monitoring Security Software”
section.
System Defense (SD):
System Defense (SD) does not require any agents to be installed on the Intel AMT client machine.
System Defense policies may be configured on a per-machine basis.
There are four pre-defined SD policies:
An FTP access policy which will trigger SD if an FTP access is made either to or from the Intel
AMT client machine.
A UDP flood policy which will trigger SD if Intel AMT sees at least 20,000 UDP packets per second
and will monitor for a Denial-of-service attack.
An SYN flood policy which will trigger SD if Intel AMT sees at least 20,000 IP packets per second
and will monitor for a Denial-of-service attack.