Locations Overview

You can have IBM BigFix apply different CPM security configuration on the basis of the client’s current geographical location. For example, say an organization has offices in California, New York, and Germany, and that travel between offices is not uncommon. In California and New York, the corporate security policy requires that suspicious files be quarantined. In Germany such files must be deleted. In locations other than California or Germany, incidents should be logged but no action taken. You can accommodate all these regulations by creating Location Properties. In short, a client can disconnect from the corporate network in the California one day and reconnect in Germany the next, and his computer will automatically pick up the correct security policy for the new location.

This same idea also applies to firewall configurations, and other CPM security features. So, for example, in addition to location-specific configurations, you can create NIC-specific security policies. If you want to have one set of malware and firewall settings to that govern wireless connections and another set for wired connections. Your LAN and W-LAN settings can be the same for all geographic locations, or they too can vary to reflect a local security policy.

For example, wireless connections in New York could have one set of rules and wired connections mighty have a different set of rules. In Germany, there may be completely different rules for both wired and wireless connections - two locations, but four sets of rules that may apply.