https://community.cisco.com/t5/network-security/automated-installations-updates-and-csa/m-p/399541#M97544 <P>Hello !</P><P></P><P>I'm getting a little bit tired of tunning my CSA rules everytime some new processes or actions are discovered. Let me explain: we're using MS SMS server for deploying software and windows updates, then we have McAfee AV server who is updating agents on PCs and then here is ScriptLogic with its funcionality of pushing various settings to different users. My problem (hope I'm not the only one) is that processes from this servers which need higher privileges to install what they have to are changing and is dificult to follow it. Has anyone any suggestion how to cope with it ? Is it possible to have some group of servers that you allow them to have no restrictions (for example by IP address) ?</P><P></P><P>Thanks in advance</P> Sun, 10 Mar 2019 09:11:53 GMT efink 2019-03-10T09:11:53Z https://community.cisco.com/t5/network-security/automated-installations-updates-and-csa/m-p/399541#M97544 <P>Hello !</P><P></P><P>I'm getting a little bit tired of tunning my CSA rules everytime some new processes or actions are discovered. Let me explain: we're using MS SMS server for deploying software and windows updates, then we have McAfee AV server who is updating agents on PCs and then here is ScriptLogic with its funcionality of pushing various settings to different users. My problem (hope I'm not the only one) is that processes from this servers which need higher privileges to install what they have to are changing and is dificult to follow it. Has anyone any suggestion how to cope with it ? Is it possible to have some group of servers that you allow them to have no restrictions (for example by IP address) ?</P><P></P><P>Thanks in advance</P> Sun, 10 Mar 2019 09:11:53 GMT https://community.cisco.com/t5/network-security/automated-installations-updates-and-csa/m-p/399541#M97544 efink 2019-03-10T09:11:53Z https://community.cisco.com/t5/network-security/automated-installations-updates-and-csa/m-p/399542#M97546 <HTML><HEAD></HEAD><BODY><P>I am told that CSA 4.5 will have this feature. I eagerly await it. </P><P></P><P>I created a group called Admin servers that are IP addresses trusted by every host. I also installed CSA on the servers to keep them honest. It works to limit all but global events. </P><P></P><P>Is that what you're after?</P></BODY></HTML> Tue, 21 Dec 2004 02:02:12 GMT https://community.cisco.com/t5/network-security/automated-installations-updates-and-csa/m-p/399542#M97546 tsteger1 2004-12-21T02:02:12Z