Online Help Center Home
Home
- What’s New in This Version
- Control Manager Documentation
- Document Conventions
Introducing Trend Micro Control Manager
- Control Manager Standard and Advanced
- Introducing Control Manager Features
- Understanding Trend Micro Management Communication Protocol
- Control Manager Architecture
- Trend Micro Smart Protection Network
Getting Started with Control Manager
- Using the Management Console
- Understanding the Function-Locking Mechanism
- Accessing the Management Console
  - Accessing the Web Console Locally from the Control Manager Server
  - Accessing the Console Remotely
- Changing Access to the Management Console
  - Assigning HTTPS Access to the Control Manager Web Console
- Configuring Web Console Settings
- Configuring Command Time-out Settings
- Logging Off from the Management Console
Configuring User Access
- Understanding User Access
  - Root Account Information
- Understanding User Roles
  - About Adding User Roles
    - Adding a User Role
  - About Editing User Roles
    - Editing a User Role
- Understanding User Accounts
- Understanding User Groups
Product Directory Basics
- Understanding the Product Directory
- Grouping Managed Products Using Directory Management
- Understanding Cascading Management
Downloading and Deploying Components
- Downloading and Deploying New Components
- Manually Downloading Components
- Understanding Scheduled Download Exceptions
  - Configuring Scheduled Download Exceptions
- Configuring Scheduled Downloads
- Understanding Deployment Plans
- Configuring Proxy Settings
- Configuring Update/Deployment Settings
Working with the Dashboard and Widgets
- Using the Dashboard
  - User Accounts and the Dashboard
- Understanding Tabs
- Understanding Widgets
- Configuring Smart Protection Network Settings
- Configuring Deep Security Management Server Connection Settings
Using Command Tracking
- Understanding Command Tracking
  - Understanding Command Details
    - Managed Products or Services Involved
    - Details for Individual Products or Services
- Querying and Viewing Commands
Using Notifications
- Understanding Event Center
- Customizing Notification Messages
- Enabling or Disabling Notifications
- Understanding Notification Methods
  - Configuring Notification Method Settings
- Configuring Notification Recipients and Testing Notification Delivery
- Configuring Alert Settings
- Configuring Data Loss Prevention Settings
Working with Logs
- Using Logs
  - Understanding Control Manager Generated Logs
  - Understanding Managed Product Logs
- Understanding Log Aggregation
  - Configuring Log Aggregation Settings
- Querying Log Data
Working with Reports
- Understanding Reports
- Understanding Control Manager Report Templates
  - Understanding Control Manager 5 Templates
  - Understanding Control Manager 3 Templates
- Adding Control Manager 5 Report Templates
- Understanding One-time Reports
  - Adding One-time Reports
- Understanding Scheduled Reports
  - Adding Scheduled Reports
    - Enabling/Disabling Scheduled Reports
- Viewing Generated Reports
  - Viewing One-Time Reports
  - Viewing Scheduled Reports
- Configuring Report Maintenance
- Understanding My Reports
MCP and Control Manager Agents
- Understanding Agents
  - Understanding Communicators
  - Understanding Connection Status Icons
- Understanding Control Manager Security Levels
- Using the Agent Communication Schedule
- Understanding the Agent/Communicator Heartbeat
- Configuring Agent Communication Schedules
  - Setting an Agent Communication Schedule for a Managed Product
  - Modifying the Default Agent Communication Schedule
- Configuring the Agent Communicator Heartbeat
- Stopping and Restarting Control Manager Services
- Modifying the Control Manager External Communication Port
- Verifying the Communication Method Between MCP and Control Manager
  - Verifying Control Manager Uses Two-way Communication
  - Verifying Control Manager Uses Two-way Communication from the Web Console
- Understanding Control Manager Agent Remote Installation
Managing Managed Products
- Manually Deploying Components Using the Product Directory
- Viewing Status Summaries for Managed Products
  - Accessing Through the Dashboard
  - Accessing Through the Product Directory
- Configuring Managed Products
- Understanding the Directory Management Screen
Activating Control Manager and Managed Products
- Activating and Registering Managed Products
- Understanding License Management
  - Activating Managed Products
  - Renewing Managed Product Licenses
    - Renewing Managed Product Licenses from the License Management Screen
    - Renewing Managed Product Licenses from the Product Directory
- About Activating Control Manager
Managing Child Servers
- Understanding Parent-Child Communication
- Registering or Unregistering Child Servers
  - Registering a Child Server
    - Checking the Status in the Control Manager Web Console
  - Unregistering a Child Server
- Accessing the Cascading Folder
- Viewing Child Server Status Summaries
- Configuring Log Upload Settings
  - Enabling or Disabling Child Server Connection
- Issuing Tasks to Child Servers
- Viewing Child Server Reports
  - Refreshing the Product Directory
- Renaming a Child Server
- Removing Child Servers Accidentally Removed from the Cascading Manager
Policy Management
- Understanding Policy Management
- Understanding the Managed Server List
- Updating the Policy Templates
- Understanding Data Loss Prevention
  - Data Identifier Types
  - Data Loss Prevention Templates
    - Predefined DLP Templates
    - Customized DLP Templates
Investigating Data Loss Prevention Incidents
- Administrator Tasks
- DLP Incident Review Process
  - Understanding the Incident Information List
  - Reviewing Incident Details
Administering the Database
- Understanding the Control Manager Database
  - Understanding the db_ControlManager Tables
- Backing Up db_ControlManager Using osql
  - Restoring Backup db_ControlManager Using osql
- Backing Up db_ControlManager Using SQL Server Management Studio
  - Restoring Backup db_ControlManager Using SQL Server Management Studio
- Shrinking db_ControlManager_log.ldf Using SQL Server Management Studio
  - Shrinking the db_ControlManager_log.ldf File Size on Windows Server 2008/2005 SP 3
  - Shrinking the db_ControlManager_log.ldf File Size on Windows Server 2005
- Shrinking db_ControlManager.mdf and db_ControlManager.ldf Using SQL Commands
Using Trend Micro Services
- Understanding Trend Micro Services
- Understanding Enterprise Protection Strategy
  - Highlighting the Value of EPS
- Understanding Outbreak Prevention Services
  - Benefits of Outbreak Prevention Services
    - Activating Outbreak Prevention Services
    - Viewing Outbreak Prevention Services Status
- Preventing Virus Outbreaks and Understanding Outbreak Prevention Mode
  - Understanding Outbreak Prevention Policies
- Using Outbreak Prevention Mode
Using Control Manager Tools
- Using Agent Migration Tool (AgentMigrateTool.exe)
- Using the Control Manager MIB File
- Using the NVW Enforcer SNMPv2 MIB File
- Using the DBConfig Tool
Getting Support
- Before Contacting Technical Support
- Contacting Technical Support
  - Resolve Issues Faster
- TrendLabs
- Other Useful Resources
Control Manager System Checklists
- Server Address Checklist
- Ports Checklist
- Control Manager 2.x Agent Installation Checklist
- Control Manager Conventions
- Core Process and Configuration Files
- Communication and Listening Ports
- Control Manager Product Version Comparison
Data Views
- Data Views: Product Information
- Data View: Security Threat Information
- Data View: Data Protection Information
  - Data Loss Prevention Information
    - DLP Incident Information
    - DLP Template Match Information
IPv6 Support in Control Manager
- Control Manager Server Requirements
- IPv6 Server Limitations
- Configuring IPv6 Addresses
- Screens That Display IP Addresses
Checking Policy Status
- Policy Status
Templates for Policy Management
- Deep Discovery Inspector Product Settings
- IMSVA Product Settings
- OfficeScan Client Settings
- OfficeScan DLP Settings
  - Creating a Data Loss Prevention Policy
    - Creating Data Loss Prevention Rules
    - Data Loss Prevention Exceptions
      - Defining Non-monitored and Monitored Targets
      - Decompression Rules
- ScanMail for Microsoft Exchange Product Settings
  - Configuring a Data Loss Prevention Policy
- Trend Micro Security for Mac Product Settings

Detailed Application Activity

Displays overall information about application activity on your network. Example: the managed product which detects the security compliance, the name of the specific policy in compliance, the total number of security compliances on the network

Table 1. Detailed Application Activity Data View
Data	Description
Received	The time at which Control Manager receives data from the managed product.
Generated	The time at which the managed product generates data.
Product Entity	The entity display name for a managed product. Control Manager identifies managed products using the managed product's entity display name.
Product	The name of the managed product. Example: OfficeScan, ScanMail for Microsoft Exchange
VLAN ID	Displays the VLAN ID (VID) of the source from which the suspicious threat originates.
Detected By	Displays the filter, scan engine, or managed product which detects the suspicious threat.
Traffic/Connection	Displays the direction of network traffic or the position on the network the suspicious threat originates.
Protocol Group	Displays the broad protocol group from which a managed product detects the suspicious threat. Example: FTP, HTTP, P2P
Protocol	Displays the protocol from which a managed product detects the suspicious threat. Example: ARP, Bearshare, BitTorrent
Description	Detailed description of the incident by Trend Micro.
Endpoint	Displays the host name of the computer in compliance of the policy/rule.
Source IP	Displays the IP address of the source from which the suspicious threat originates.
Source MAC	Displays the MAC address of the source from which the suspicious threat originates.
Source Port	Displays the port number of the source from which the suspicious threat originates.
Source IP Group	Displays the IP address group of the source where the violation originates.
Source Network Zone	Displays the network zone of the source where the violation originates.
Endpoint IP	Displays the IP address of the endpoint the suspicious threat affects.
Endpoint Port	Displays the port number of the endpoint the suspicious threat affects.
Endpoint MAC	Displays the MAC address of the endpoint the suspicious threat affects.
Endpoint Group	Displays the IP address group of the endpoint the suspicious threat affects.
Endpoint Network Zone	Displays the network zone of the endpoint the suspicious threat affects.
Policy/Rule	Displays the policy/rule the suspicious threat violates.
Detections	Displays the total number of policy/rule violations managed products detect. Example: A managed product detects 10 violation instances of the same type on one computer. Detections = 10