ENFORCE ADMINISTRATOR – ​Continuous system hardening of your clients and servers

pum-2035

ENFORCE ADMINISTRATOR – ​Continuous system hardening of your clients and servers

Your start with the

Enforce Administrator

The Enforce Administrator centralizes the management of the hardening settings of your IT systems. Preconfigured baselines are used to define settings tailored to the system. Using integrated rollout and rollback procedures, the baselines can be safely distributed to individual systems and tested.

Accidental changes to your system hardening settings are a thing of the past thanks to the integrated self-monitoring function. The integrated reporting engine also provides a detailed overview of the curing applied to each system.

The Enforce Administrator helps all small, medium-sized and large companies that want centralized management and reporting of the hardening settings on their clients and servers. The hardening product runs with all supported Microsoft operating systems.

 

Deviations from curing settings are centrally visible within minutes. This enables a rapid response to any weak points. Regular updates to the standards supplied guarantee that new vulnerabilities are taken into account. 

System hardening is particularly important for critical companies such as energy suppliers, healthcare providers, financial institutions, telecommunications companies and many others that rely on a secure and stable IT infrastructure. These companies require centralized management of their system hardening in order toprotect their systems from cyberattacks and threats.

TEAL supports you with the integration of the Enforce Suite and an adequate level of security for your clients and servers. Talk to us - we will be happy to advise you!

Added value & advantages Admins no longer need to read CIS or BSI documents anymore. Previous backup of the set settings and rollback procedure. Regular
Updates Backup Central management &
control Central control of settings enables system-specific hardening. Built-in hardening settings for operating systems and software
Customization and extension of settings through UI
Creation of specially generated templates
Self-monitoring of the systems
Compliance at a glance of the Enforce Administrator

Added value & advantages Admins no longer need to read CIS or BSI documents anymore. Previous backup of the set settings and rollback procedure. Regelmäßige Updates Backup Zentrale Verwaltung & Kontrolle Central control of settings enables system-specific hardening. of the Enforce Administrator

Our

As-a-service approach

You want Hardening as a Service? As an option, our experts provide services for the Enforce administrator as part of managed services. The main focus here is on ensuring that the Enforce Suite operates properly. 

Our experts have extensive know-how in the area of hardening Microsoft systems, mainly due to their project experience in the areas of Secure Administration Environment (SAE) and Secure Core Infrastructure (SCI).

Ihre Vorteile durch unseren Service:

Preconfigured baselines

Fall back on widely used standards (e.g. CIS benchmarks, Microsoft Baselines, BSI recommendations)

Rollout and Rollback

Rollout control according to freely definable system groups. Restoration of the original status at the touch of a button in the event of problems.

Centralization

Separation of configuration of the setting and control through integrated RBAC.

Self-monitoring and self-healing

Defined settings are regularly checked using PowerShell DSC and corrected directly depending on the configuration.

Our offered service package:

Enforce Suite Operations The service relates to the required Enforce Suite infrastructure. Enforce Suite Compliance Enforce Suite Response OPERATIONS COMPLIANCE addTicket processing on the basis of SLA (see II.) addCompleteness check of the integrated IT systems hard disk space, etc.) addCompliance with and use of the ITIL processes of the Customers (especially Incident, Problem, Change) addCorrection of errors in the product (e.g. via addAlarm system hotfixes) as part of the application updates addProactive reporting of compliance statuses connected IT systems are not running correctly from an Enforce perspective RESPONSE deviations from the predefined status addMonitoring of the operating system via the addLifecycle management of the operating system, addSupport for hardening configurations addOpening & assigning tickets for compliance customer-side monitoring (especially CPU, RAM, addChecking the compliance status of the addChecking the functionality of the checks on connected IT systems connected IT systems addProactive implementation of workarounds addTracking of incidents and escalation in the to carry out updates or upgrades addCreating and assigning incidents if or hotfixes event of violation of customer requirements addInstalling security updates on the Enforce Suite infrastructure runtimes addMaintenance & operation of the application

Our offered service package:

Enforce Suite Operations The service relates to the required Enforce Suite infrastructure. Enforce Suite Compliance Enforce Suite Response OPERATIONS COMPLIANCE addTicket processing on the basis of SLA (see II.) addCompleteness check of the integrated IT systems addCompliance with and use of the ITIL processes of the addKorrektur von Fehlern im Produkt (z.B. durch Hotfixes) im Rahmen der Applikationsupdates addAlarm system addProactive reporting of compliance statuses RESPONSE addMonitoring des Betriebssystems über das kundenseitige Monitoring (v.a. addLifecycle Management des Betriebssystems, um Updates oder Upgrades durchzuführen addSupport for hardening configurations addEröffnen & Zuweisung von Tickets bei Compliance-Abweichungen zum vordefinierten Zustand CPU, RAM, Festplattenplatz, usw.) addPrüfung des Compliance-Status der angebundenen IT-Systeme addPrüfung der Funktionsweise der Prüfungen auf angebundene IT-Systeme addProaktive Implementierung von Workarounds oder Hotfixes addTracking der Incidents und Eskalation bei Verletzung der kundenseitig gewünschten Laufzeiten addErzeugen und Zuweisung von Incidents, sofern angebundene IT-Systeme aus Enforce-Sicht nicht korrekt laufen addEinspielen von Sicherheitsupdates auf die Enforce-Suite Infrastruktur addMaintenance & operation of the application

Related

license prices

Price per month / per managed IT system

6,00 €

Price per year / per managed IT system

72,00 €

*With a larger number, staggering is also possible.

*Rabattstaffeln und Rahmenbedingungen hier.

*Rabattstaffeln und Rahmenbedingungen hier.

Product features &

Hardening standards

Product features

Hardening templates

  • Regular updating of the curing templates
  • Preconfigured, tested configuration recommendations

Managed systems

  • Automated configuration check
  • Audit and / or auto-correction in case of deviation
  • Management and distribution of any configurations
  • Management of Windows systems (Linux from 2022)
  • Backup and restore of changed configurations (rollback procedure)

Reporting

  • Status reports of the managed systems
  • Conformity evaluations (individual systems or managed infrastructure)
  • Automatic generation of reports
  • Export of reports

Administration

  • Independent system management
  • Simple management of exceptions for special IT systems
  • Regular updates of the Enforce Suite
  • Logical grouping of systems (e.g. according to operating systems and / or roles)
  • Rollout control according to system groups
  • Centralized management of multiple environments
  • Automatic mail dispatch for definable events
  • Multi-client capability
  • REST API for automation
  • Central credential management for cross-stage authentication
  • Role-based access control

Hardening standards

Operating system

 

 

 

Product DISA CIS Microsoft BSI
Microsoft Windows 7 03.01.

2000
Microsoft Windows 10 V1R16 01.09.

2000

 20H2 SiM-08202, SiSyPHuS Version March 2021 (HD, ND, NE, Logging)
Microsoft Windows 10 GDPR 16082019 V1.1
Microsoft Windows 10 BSI SiM-08202, SiSyPHuS Version March 2021 (HD, ND, NE, Logging)
Microsoft Windows Server 2012 R2 02.04.

2000
Microsoft Windows Server 2016 V1R6 01.02.

2000

 FINAL
Microsoft Windows Server 2016 DC V1R6 01.02.

2000

 FINAL
Microsoft Windows Server 2019 V1R2 01.01.

2000

 FINAL
Microsoft Windows Server 2019 DC V1R2 01.01.

2000

 FINAL

Data base

Product DISA CIS
Microsoft SQL Server 2016 1.0.0

Office

Product DISA CIS
Microsoft Office 2016 Excel V1R2
Microsoft Office 2016 Outlook V1R2
Microsoft Office 2016 PowerPoint V1R1
Microsoft Office 2016 SkypeForBusiness V1R1
Microsoft Office 2016 Word V1R1
Microsoft Office 2016 01.01.
2000

Other

Product DISA CIS Microsoft
Google Chrome V1R15 2.0.0
Mozilla Edge 85
Mozilla Firefox V4R24 1.0.0
Microsoft IE11 V1R16 1.0.0 2004
Microsoft IIS 01.01.
2000

Our webinar

Hardening as part of a holistic security strategy

YouTube

Mit dem Laden des Videos akzeptieren Sie die Datenschutzerklärung von YouTube.
Mehr erfahren

Video laden

Our webinar

Hardening as part of a holistic security strategy

YouTube

Mit dem Laden des Videos akzeptieren Sie die Datenschutzerklärung von YouTube.
Mehr erfahren

Video laden

The Enforce Administrator &
Your advantages at a glance

Generation of verifiable compliance

Automated optimization of your system configuration

Continuous monitoring of your security

Comprehensive and up-to-date system hardening packages

Reduced operating costs through auto-optimization

Professional operation via the Teal Managed Service

Your contact person at TEAL

Fabian Böhm – Security Architect

Send request now

Send request now

Der Enforce Administrator
Your advantages at a glance

Generation of verifiable compliance

Automated optimization of your system configuration

Continuous monitoring of your security

Comprehensive and up-to-date system hardening packages

Reduced operating costs through auto-optimization

Professional operation via the Teal Managed Service

Your contact person at TEAL

Fabian Böhm – Security Architect

en_US
en_US de_DE