Trend Micro Control Manager Readme

Trend Micro, Inc.

April 2018

Trend Micro™ Control Manager™

Version 7.0 Patch 1

This readme file is current as of the date above. However, all customers are advised to check Trend Micro's website for documentation updates at http://docs.trendmicro.com/en-us/enterprise/control-manager.aspx.

Trend Micro always seeks to improve its documentation. Your feedback is always welcome. Please evaluate this documentation on the following site: http://docs.trendmicro.com/en-us/survey.aspx.

1. About Control Manager

Trend Micro Control Manager is a centralized management console that manages Trend Micro products and services at the gateway, mail server, file server, and corporate desktop levels. Administrators can use the policy management feature to configure and deploy product settings to managed products and endpoints. The Control Manager web-based management console provides a single monitoring point for antivirus and content security products and services throughout the network.

Control Manager enables system administrators to monitor and report on activities such as infections, security violations, or virus/malware entry points. System administrators can download and deploy update components throughout the network, helping ensure that protection is consistent and up to date. Example update components include virus pattern files, scan engines, and anti-spam rules. Control Manager allows both manual and pre-scheduled updates. Control Manager allows the configuration and administration of products as groups or as individuals for added flexibility.

For more information, go to:

http://docs.trendmicro.com/en-us/enterprise/control-manager.aspx

1.1. Overview of This Release

Control Manager 7.0 Patch 1 includes fixes from previously-released hotfixes for Control Manager 7.0. It also enhances some functions. Refer to Section 2, "What's New", for details.

1.2. Who Should Install This Release

Install this patch if you currently run Control Manager 7.0 Repack 1.

If you run previous versions of Control Manager, upgrade to Control Manager 7.0 Repack 1 first before installing this patch. Refer to the Installation and Upgrade Guide available at the Trend Micro Download Center for upgrade recommendations and options.

http://downloadcenter.trendmicro.com/

2. What's New

2.1. Enhancements

Control Manager 7.0 Patch 1 includes the following enhancements:

[Hotfix 2566]
1. Enhancement: This hotfix allows Control Manager to download Trend Micro Endpoint Application Control component updates automatically.
[Hotfix 2570]
1. Enhancement: This hotfix enables Control Manager 7.0 to support the WSI Registration Tool (TMCMWSIRegister) for Endpoint Protection as a Service.
[Hotfix 2571]
1. Enhancement: This hotfix enables users to copy the settings of an existing child policy in Control Manager 7.0.
[Hotfix 2573]
1. Enhancement: This hotfix adds the following columns to the Logs > Log Query > Detailed Virtual Analyzer Suspicious Object Impact Information screen on the Control Manager web console to display the specified suspicious object detection information.
  - Latest Submission File SHA-1
  - Latest Submission Detection Name
2. Enhancement: This hotfix updates the suspicious object list import mechanism to enable it to import the list from Control Manager 6.0 Service Pack 3 Patch 3 into Control Manager 7.0 successfully.
[Hotfix 2574]
1. Enhancement: This hotfix enables Control Manager 7.0 to synchronize suspicious object lists with Cloud App Security 5.0.
[Hotfix 2579]
1. Enhancement: This hotfix enables the Control Manager LogForwarder Tool to send Endpoint Application Control logs to the Syslog server.
2. Enhancement: This hotfix provides enhancements for the LogForwarder Tool, including:
  - Support for new protocols, including TLS v1.2 and TCP while communicating with the syslog server
  - A new CEF format log type for Sandbox Detection Logs
  - A new "Severity Level" CEF column for Web Security violation logs
[Hotfix 2590]
1. Enhancement: This hotfix enables the following data columns on the Log Query > Product Status view.
  - Platform
  - Client Program
  - Pattern Files/Cleanup Templates
  - Smart Scan Agent Pattern
  - Scan Method
  - Smart Scan Server Status
  - Last Startup
  - Engine Version
  - Offline Time
[Hotfix 2630]
1. Enhancement: This hotfix enables users to configure the "Scan Action" and apply it to "All future objects" or "All present and future objects" according to different "Risk Level" settings on the "Virtual Analyzer Suspicious Objects" screen.
2. Enhancement: This hotfix updates the Automation API to support the upload of user-defined suspicious object files.
3. Enhancement: This hotfix updates the Automation API to improve the automated Trend Micro OfficeScan agent management feature in Control Manager.
[Hotfix 2636]
1. Enhancement: This hotfix enables Control Manager to display all matched rules for each event in Trend Micro Data Loss Prevention (DLP) Log Query Results.
[Hotfix 2646]
1. Enhancement: This hotfix renames "External Web Services" to "Automation API" and updates the related error messages and event descriptions on the Control Manager web console.

2.2. Resolved Known Issues

Control Manager 7.0 Patch 1 resolves the following product issues:

[Hotfix 2566]
1. Issue: An issue prevents Control Manager from generating PDF reports using static templates when the operating system language is set to French.
  
  Solution: This hotfix updates the number format parser to ensure that Control Manager can generate PDF reports normally when the operating system language is set to French.
2. Issue: Garbled information appears in the "Last Action Result" column for Trend Micro Endpoint Sensor in "Detail Virtual Analyzer Suspicious Object Impact Information" view.
  
  Solution: This hotfix resolves the issue by enabling Control Manager to map the raw information into readable text.
3. Issue: Control Manager cannot update the license status through HTTP proxy with password encryption.
  
  Solution: This hotfix enables Control Manager to check and update the license status successfully through HTTP proxy with password encryption.
4. Issue: An ASP.net error event is generated in the Microsoft™ Windows™ event center.
  
  Solution: This hotfix resolves the ASP.net error.
5. Issue: The database cleanup tool's shrink database function does not work.
  
  Solution: This hotfix ensures that the shrink database function works properly.
6. Issue: An issue prevents Control Manager from synchronizing with the Trend Micro Deep Security™ Manager server after configuring the server on the Active Directory and Widget Settings screen.
  
  Solution: This hotfix resolves the issue to ensure that Control Manager can synchronize with the Deep Security Manager server after configuring the server on the Active Directory and Widget Settings screen.
7. Issue: Control Manager 7.0 contains some internationalization/localization issues.
  
  Solution: This hotfix resolves these issues.
8. Issue: The Control Manager dashboard does not display properly when the user logon language of the SQL Server is not set to English.
  
  Solution: This hotfix ensures that the dashboard displays properly.
9. Issue: The Dashboard widget of the Smart Protection Server on Control Manager does not auto-select a registered server as widget data source.
  
  Solution: This hotfix resolves the issue.
10. Issue: An XML External Entity (XXE) vulnerability is found in the Control Manager 7.0 program.
  
  Solution: This hotfix resolves the vulnerability.
[Hotfix 2569]
1. Issue: An SQL execution timeout issue prevents the User Accounts screen from displaying account information properly.
  
  Solution: This hotfix enhances the performance of the SQL query function to ensure that the User Accounts screen displays account information properly.
2. Issue: The Control Manager scheduler for Trend Micro Security (for Mac) disappears unexpectedly when the Internet connection is unstable or when there is heavy traffic. If this happens, the status of Trend Micro Security (for Mac) agents on the Control Manager web console may not match the information on the Trend Micro Security (for Mac) server.
  
  Solution: This hotfix ensures that the Control Manager scheduler for Trend Micro Security (for Mac) does not disappear unexpectedly during the scenarios described above so that the correct Trend Micro Security (for Mac) agent status appears on the Control Manager web console.
3. Issue: An issue prevents Control Manager from running scheduled updates.
  
  Solution: This hotfix resolves the issue to ensure that scheduled updates proceed properly.
[Hotfix 2575]
1. Issue: The Policy Management screen on Control Manager 7.0 does not include a separate "Offline" column. The number of targets in the "Pending" column includes offline targets.
  
  Solution: This hotfix provides a separate "Offline" column on the Policy Management screen to display the number of targets with offline agents.
[Hotfix 2577]
1. Issue: In Control Manager 7.0, the current URL parsing code cannot correctly handle the single sign-on (SSO) URL provided by ScanMail for Exchange (SMEX).
  
  Solution: This hotfix refines the SSO handling process so that Control Manager can provide the SSO page to the target server using IP addresses if the hostname connection is unsuccessful.
[Hotfix 2579]
1. Issue: The SQL scripts of Control Manager 7.0 contains some internationalization/localization issues.
  
  Solution: This hotfix resolves these issues.
[Hotfix 2581]
1. Issue: An SQL script issue prevents Control Manager from generating custom template reports successfully.
  
  Solution: This hotfix ensures that Control Manager can generate custom template reports successfully.
2. Issue: An issue prevents Control Manager from displaying the correct status of Trend Micro Deep Security™ Manager server on the Active Directory and Widget Settings screen.
  
  Solution: This hotfix resolves the issue to ensure that Control Manager can display the Deep Security Manager server status correctly on the Active Directory and Widget Settings screen.
[Hotfix 2589]
1. Issue: An SQL execution timeout issue prevents Control Manager 7.0 from generating reports.
  
  Solution: This hotfix enhances the performance of the SQL query function to ensure that Control Manager 7.0 can successfully generate reports.
2. Issue: Control Manager encounters an exception error while synchronizing with the Active Directory (AD) server. This occurs when synchronizing a large number of AD User Groups.
  
  Solution: This hotfix ensures that users can sync information with the AD server without issues.
3. Issue: The widgets on the Threat Detection page of the dashboard stops responding while loading when there is a large number of Web Security logs. When this happens, the Control Manager web console may also stop responding.
  
  Solution: This hotfix updates the SQL scripts to reduce the generation time and ensure that widgets load normally.
4. Issue: It may take Control Manager a long time to display information when there is a large number of product agents.
  
  Solution: This hotfix updates the SQL scripts to ensure that Control Manager 7.0 can successfully display information normally.
[Hotfix 2618]
1. Issue: On the Directory Management screen of the Control Manager web console, the scroll bar does not move when users click and drag an entity under a folder that contains a long list of entities. This prevents users from moving entities from one folder to another while managing the product tree.
  
  Solution: This hotfix ensures that the scroll bar moves up or down automatically when users click and drag entities in the product tree.
2. Issue: The occurrences of the data identifier variable cannot be added to the Trend Micro Data Loss Prevention™ (DLP) Template.
  
  Solution: This hotfix ensures that users can add the occurrences of the data identifier variable to the DLP Template.
[Hotfix 2630]
1. Issue: An issue prevents Control Manager from displaying correct production version of Trend Micro Endpoint Encryption 6.0 in the Server Registration page.
  
  Solution: This hotfix resolves the issue so the correct product version for Trend Micro Endpoint Encryption 6.0 appears in the Server Registration page.
[Hotfix 2631]
1. Issue: The policy list for Trend Micro OfficeScan™ agents does not display properly on the Policy Management screen of the Control Manager web console.
  
  Solution: The hotfix ensures that the OfficeScan agent policy list is displayed properly on the Policy Management screen.
[Hotfix 2632]
1. Issue: A directory traversal vulnerability was found in the "Trigger Application Notification" function.
  
  Solution: This hotfix ensures that the notification triggers only the applications in the "Application" folder.
2. Issue: A Denial of Service vulnerability was found in the Single Sign-on (SSO) feature.
  
  Solution: This hotfix resolves the vulnerability.
3. Issue: An information leakage vulnerability was found on the Agent Communication Schedule screen of the Control Manager console.
  
  Solution: This hotfix resolves the vulnerability.
4. Issue: When using Chrome version 65, Control Manager is unable to display details for unknown threats on the Operation Center or export CSV files from the User/Endpoint Directory.
  
  Solution: This hotfix resolves the issue and provides support for Chrome version 65.
[Hotfix 2646]
1. Issue: Users cannot download forensic data when an account name and password has been specified for the Trend Micro OfficeScan™ server on the Server Registration screen of the Control Manager console.
  
  Solution: This hotfix resolves the issue by enabling Control Manager to ignore the specified account name and password while downloading forensic data from OfficeScan.

3. Document Set

The Control Manager documentation set includes:

Readme File: Contains a list of known issues and may also contain late-breaking product information not found in the Online Help or printed documentation.
System Requirements: A PDF document that lists specific requirements for installing Control Manager.
Installation and Upgrade Guide: A PDF document that contains procedures for installing Control Manager and migrating from a previous installation.
Administrator's Guide: A PDF document that provides detailed instructions of how to configure and manage Control Manager and managed products, and explanations on Control Manager concepts and features.
Online Help: HTML files compiled in WebHelp format that provide "how to's", usage advice, and field-specific information. The Help is also accessible from the Control Manager console.
Connected Threat Defense Primer: A PDF document that explains how use Control Manager to bring together a host of Trend Micro products and solutions to help you detect, analyze, and respond to targeted attacks and advanced threats before they unleash lasting damage.
Widget and Policy Management Guide: Explains how to configure Dashboard widgets and Policy Management widgets in Control Manager.
Data Protection Lists (Chapter 1 only): A PDF document that lists predefined data identifiers and templates for Data Loss Prevention.
Knowledge Base: An online database of problem-solving and troubleshooting information. It provides the latest information about known product issues. To access the Knowledge Base, go to the following website: http://esupport.trendmicro.com

View and download the documentation set at:

http://docs.trendmicro.com/en-us/enterprise/control-manager.aspx

4. System Requirements

You must install Control Manager 7.0 Repack 1 before installing this patch.

Visit the following website for a complete list of system requirements for Control Manager 7.0:

http://docs.trendmicro.com/en-us/enterprise/control-manager.aspx

5. Installation/Uninstallation

5.1. Installation

You must install Control Manager 7.0 Repack 1 before installing this patch.

Download the TMCM_70_WIN_EN_PATCH1.exe file to the Control Manager server.
Run the TMCM_70_WIN_EN_PATCH1.exe patch installer as an administrator.
Read the license agreement carefully and accept the license agreement terms to proceed with installation. Installation cannot proceed without accepting the license agreement terms.
- If you do not agree with the terms of the license, click Cancel; the installation stops.
- Otherwise, accept the license agreement and click Next.
Click Install to start the installation.
Click Yes to continue the installation.
Click OK to close the wizard.

5.2. Uninstallation

This patch cannot be uninstalled to roll back Control Manager 7.0 Patch 1 to its pre-patch state.

6. Known Issues

There are no known issues for this patch release.

7. Files Included in This Release

For a list of files included in this release, go to:

http://docs.trendmicro.com/all/ent/tmcm/v7.0p1/en-us/tmcm_7.0_p1_files.txt

8. Contact Information

A license to the Trend Micro software usually includes the right to product updates, pattern file updates, and basic technical support for one (1) year from the date of purchase only. After the first year, Maintenance must be renewed on an annual basis at Trend Micro's then-current Maintenance fees.

You can contact Trend Micro via fax, phone, and email, or visit us at http://www.trendmicro.com.

Evaluation copies of Trend Micro products can be downloaded from our Web site.

Global Mailing Address/Telephone Numbers

For global contact information in the Asia/Pacific region, Australia and New Zealand, Europe, Latin America, and Canada, refer to http://www.trendmicro.com/en/about/overview.htm.

The Trend Micro 'About Us' screen displays. Click the appropriate link in the 'Contact Us' section of the screen.

Note: This information is subject to change without notice.

9. About Trend Micro

Trend Micro Incorporated, a global leader in Internet content security and threat management, aims to create a world safe for the exchange of digital information for businesses and consumers. A pioneer in server-based antivirus with over 20 years experience, we deliver top-ranked security that fits our customers' needs, stops new threats faster, and protects data in physical, virtualized and cloud environments. Powered by the Trend Micro™ Smart Protection Network™ infrastructure, our industry-leading cloud-computing security technology and products stop threats where they emerge, on the Internet, and are supported by 1,000+ threat intelligence experts around the globe. For additional information, visit http://www.trendmicro.com.

Copyright 2018, Trend Micro Incorporated. All rights reserved. Trend Micro, the Trend Micro t-ball logo, Control Manager, ScanMail, Deep Security, InterScan, Data Loss Prevention, OfficeScan, ServerProtect, PortalProtect, and Smart Protection Network are trademarks or registered trademarks of Trend Micro, Incorporated. All other product or company names may be trademarks or registered trademarks of their owners.

10. License Agreement

Information about your license agreement with Trend Micro can be viewed at http://us.trendmicro.com/us/about/company/user_license_agreements/.

Third-party licensing agreements can be viewed by:

Selecting the "About" option in the management console
Referring to the "Legal" page of the Administrator's Guide

Contents

1.1. Overview of This Release

1.2. Who Should Install This Release

2.1. Enhancements

2.2. Resolved Known Issues

3. Document Set

4. System Requirements

5. Installation/Uninstallation

5.1. Installation

5.2. Uninstallation

6. Known Issues

7. Files Included in This Release

8. Contact Information

Global Mailing Address/Telephone Numbers

9. About Trend Micro

10. License Agreement