106 Endpoint Security and Compliance Management Design Guide Using IBM Tivoli Endpoint Manager
Relevance
Relevance clauses are written into this part in sections to make the
Relevance easier to read. Statements are often separated, because each
statement must return the value of true for the next action to run.
Action
Based on the endpoint returning true for all Relevance clauses that it
evaluates, the Action script is then run, if needed, to implement the
remediation. An Action script is another proprietary language that is used to
execute the required Actions at the endpoint. The goal for the Action script is
to ensure that the next time that the Relevance evaluates the clauses, they all
return false.
Comments
Operators can insert comments for Fixlets.
Exporting a Fixlet and examining its content reveals additional metadata that
other components of the Tivoli Endpoint Manager system use.
3.3 Network communications and usage
Next, we identify the network flows between the various identified components,
and entities external to the components, such as users, identified in 3.1, “Logical
component overview” on page 64. Later sections help to provide suggestions
about security zones. This section enables architects and solution designers to
understand the implications of placing specific components in various network
segments. Figure 3-17 on page 107 illustrates the components and their network
interactions, and the limitations of the components managed by the organization.
Process: After the Action finishes processing, the Relevance clauses are
evaluated again. If they all return false, the action is successful and the Fixlet
completes what it intended to remediate.