1 Enhanced Mitigation Experience Toolkit User Guide Microsoft Corporation
2 Table of Contents 1. Introduction Capabilities Supported mitigations Supported operating systems The graphical user interface The main window Configuring system mitigations Configuring mitigations for applications The command line configuration tool Mitigation caveats System settings Application specific settings Advanced options Frequently asked questions EMET questions General mitigation questions Troubleshooting problems with mitigations General questions Support... 21
3 1. Introduction The enhanced Mitigation Experience Toolkit (EMET) is designed to help prevent hackers from gaining access to your system. Software vulnerabilities and exploits have become an everyday part of life. Virtually every product has to deal with them and consequently, users are faced with a stream of security updates. For users who get attacked before the latest updates have been applied or who get attacked before an update is even available, the results can be devastating: malware, loss of PII, etc. Security mitigation technologies are designed to make it more difficult for an attacker to exploit vulnerabilities in a given piece of software. EMET allows users to manage these technologies on their system and provides several unique benefits: 1. No source code needed: Until now, several of the available mitigations (such as Data Execution Prevention) have required for an application to be manually opted in and recompiled. EMET changes this by allowing a user to opt in applications without recompilation. This is especially handy for deploying mitigations on software that was written before the mitigations were available and when source code is not available. 2. Highly configurable: EMET provides a higher degree of granularity by allowing mitigations to be individually applied on a per process basis. There is no need to enable an entire product or suite of applications. This is helpful in situations where a process is not compatible with a particular mitigation technology. When that happens, a user can simply turn that mitigation off for that process. 3. Helps harden legacy applications: It s not uncommon to have a hard dependency on old legacy software that cannot easily be rewritten and needs to be phased out slowly. Unfortunately, this can easily pose a security risk as legacy software is notorious for having security vulnerabilities. While the real solution to this is migrating away from the legacy software, EMET can help manage the risk while this is occurring by making it harder to hackers to exploit vulnerabilities in the legacy software. 4. Ease of use: The policy for system wide mitigations can be seen and configured with EMET's graphical user interface. There is no need to locate up and decipher registry keys or run platform dependent utilities. With EMET you can adjust setting with a single consistent interface regardless of the underlying platform. 5. Ongoing improvement: EMET is a living tool designed to be updated as new mitigation technologies become available. This provides a chance for users to try out and benefit from cutting edge mitigations. The release cycle for EMET is also not tied to any product. EMET updates can be made dynamically as soon as new mitigations are ready
4 The toolkit includes several pseudo mitigation technologies aimed at disrupting current exploit techniques. These pseudo mitigations are not robust enough to stop future exploit techniques, but can help prevent users from being compromised by many of the exploits currently in use. The mitigations are also designed so that they can be easily updated as attackers start using new exploit techniques Capabilities EMET allows users to both configure the system policy for mitigations as well as to configure mitigations on a per executable basis. The first option allows the user to set the defaults for system supported mitigaitons; for instance choosing whether one should be enabled for all processes, enabled for only those that chose to opt in, disabled entirely etc. The second option allows the user to enable an EMET supported mitigation on an arbitrary executable. Any one of the supported mitigations can idependently be turned on and off for any executable residing on the system. Next time one of the configured executables runs, the specified mitigations will be applied to it. Combining these two options gives the user a high degree of control over the mitigations available on a system and how they get used. NOTE: Before continuing, please be aware that some security mitigation technologies may break applications. It is important to thoroughly test EMET in all target use scenarios before rolling it out to a production environment Supported mitigations The current version supports six different mitigation technologies. A training video covering many of the mitigations is available here: The remainder of this section will outline the different mitigations and the protections they provide. Structure Exception Handler Overwrite Protection (SEHOP) This protects against currently the most common technique for exploiting stack overflows in Windows. This mitigation has shipped with Windows since Windows Vista SP1. Recently with Windows 7, the ability to turn it on and off per process was added. With EMET, we provide the Windows 7 capabilities on any platform back though Windows XP. For more information, take a look at the SEHOP Overview and Window 7 SEHOP Changes blog posts. Without EMET in place an attacker can overwrite, with a controlled value, the handler pointer of an exception record on the stack. Once an exception happens, the OS will walk the exception record chain and call all the handler on each exception record. Since the attacker controls one of the records, the OS will jump to wherever the attacker wants, giving the attacker control the flow of execution. See figure 1 for an illustration of this.
5 Figure 1: An exception handler hijack With EMET in place, before the OS calls any exception handlers, it will validate the exception record chain. This involves checking if the final exception contains a predefined one. If the chain is corrupted, EMET will terminate the process without calling any of the handlers. Figure 2 illustrates what this looks like. Figure 2: EMET stopping an exception handler hijack
6 Dynamice Data Execution Prevention (DEP) DEP has been available since Windows XP. However, current configuration options don t allow applications to be opted in on an individual basis unless they are compiled with a special flag. EMET allows applications compiled without that flag to also be opted. For more information on what DEP is and how it works, take a look at Part 1 and Part 2 of our two-part SRD blog post on it. Without EMET in place, an attacker can attempt to exploit a vulnerability by jumping to shellcode at a memory location where attacker controlled data resides such as the heap or stack. Since these regions are marked as executable the malicious code will be able to run. Figure 3: Running shellcode from attacker controlled locations Turning EMET on will enable DEP for a process. Once this happens, the stack and heap will be marked as non-executable and any attempt to execute malicious code from these regions will be denied at the processor level.
7 Figure 4: DEP blocking shellcode from running Heapspray Allocations When an exploit runs, it often cannot be sure of the address where its shellcode resides and must guess when taking control of the instruction pointer. To increase the odds of success, most exploits now use heapspray techniques to place copies of their shellcode at as many memory locations as possible. Figure 5 shows an illustration of what this looks like in a victim process. Figure 5: Using heapspray in an exploit
8 With EMET in place some commonly used pages are pre-allocated. Exploits that rely on controlling these pages (and then jumping into them) will fail. Figure 6: Blocking an attack that uses heapspray Please note this is a pseudo mitigation designed to break current exploit techniques. It is not designed to break future exploits as well. As exploit techniques continue to evolve, so will EMET. Null page allocation This is similar technology to the heap spray allocation, but designed to prevent potential null dereference issues in user mode. Currently there are no known ways to exploit them and thus this is a defense in depth mitigation technology. Mandatory Address Space Layout Randomization (ASLR) ASLR randomizes the addresses where modules are loaded to help prevent an attacker from leveraging data at predictable locations. The problem with this is that all modules have to use a compile time flag to opt into this. Without EMET in place, attackers can take advantage of a predictable mapping of those dlls and could use them in order to bypass DEP though a known technique called return oriented programming (ROP).
9 Figure 7: A module being loaded at a predictable location With EMET in place, we force modules to be loaded at randomized addresses for a target process regardless of the flags it was compiled with. Exploits using ROP and relying on predictable mappings will fail. Figure 8: A module being forces to load at a random address
10 Export Address Table Access Filtering (EAF) In order to do something useful, shellcode generally needs to call Windows APIs. However, in order to call an API, shellcode must first find the address where that API has been loaded. To do this the vast majority of shellcode iterates through the export address table of all loaded modules, looking for modules that contain useful APIs. Typically this involves kernel32.dll or ntdll.dll. Once an interesting module has been found, the shellcode can then figure out the address where an API in that module resides. This mitigation filters accesses to the Export Address Table (EAT), allowing or disallowing the read/write access based on the calling code. With EMET in place, most of today s shellcode will be blocked when it tries to lookup the APIs needed for its payload. Please note this is a pseudo mitigation designed to break current exploit techniques. It is not designed to break future exploits as well. As exploit techniques continue to evolve, so will EMET Supported operating systems EMET supports the following operating systems and service pack levels: Client Operating Systems Windows XP service pack 3 and above Windows Vista service pack 1 and above Windows 7 all service packs Server Operation Systems Windows Server 2003 service pack 1 and above Windows Server 2008 all service packs Windows Server 2008 R2 all service packs Please note that not all mitigations are supported on each operating system.. System Settings Mitigation XP Server 2003 Vista Server 2008 Win7 Server 2008 R2 DEP Y Y Y Y Y Y SEHOP N N Y Y Y Y ASLR N N Y Y Y Y Application Settings DEP Y Y Y Y Y Y SEHOP Y Y Y Y Y Y NULL Page Y Y Y Y Y Y Heap Spray Y Y Y Y Y Y
11 Mandatory ASLR N N Y Y Y Y EAF Y Y Y Y Y Y Additionally, on 64 bit systems, some application specific mitigations are only applicable when running on 32 bit processes. For details, refer to the following table. Application Settings Mitigation 32 bit Processes 64 bit Processes DEP Supported by EMET Already Mandatory without EMET SEHOP Supported by EMET Not Applicable NULL Page Supported by EMET Supported by EMET Heap Spray Supported by EMET Supported by EMET Mandatory ASLR Supported by EMET Supported by EMET EAF Supported by EMET Not Supported
12 2. The graphical user interface The preferred method of interacting with EMET it through the graphical user interface (GUI). You can launch this program through the start menu icon crating during the EMET installation. In this section we will walk you through the various windows of this interface The main window When EMET is launched the following GUI is be presented to the user. Refresh the list of running processes Configure system mitigations Configure application specific mitigations Though this initial window a user will be able to display the status of the different system mitigations and whether or not any of the running processes have been opted-in to EMET. Please note the list of running processes is only updated every 30 seconds. To get updated information on demand, click the button next to Running Processes. A user can also click on either of the two buttons to configure system mitiations or to opt-in an application to the EMET supported mitigations.
13 2.2. Configuring system mitigations Users can configure system wide mitigations in two different ways. Either they can select one of the two profiles ( Maximum Security Settings and Recommended Security Settings ) or set the mitigation configuration individually. Please note some configuration changes will require rebooting the operating system. EMET s GUI provides notification of this when it happens Configuring mitigations for applications Users will be able to configure specific applications to opt-in to the mitigations supported by EMET. Additionally, mitigations can be individually enabled or disabled on a per application basis.
14 For instance, a user will be able configure iexplore.exe to opt-in to all EMET s mitigation and, at the same time, opt-in firefox.exe only for SEHOP and Mandatory ASLR. Users will be able to Add and Remove applications from the list by clicking the corresponding buttons. When adding an application, a user will get prompted with the regular open file dialog and once having selected one it will get added to this list. Then, user will be able to configure it. It is important to note that the opt-in list is path dependent. A user must opt in the full path for each executable to be configured with EMET. Placing the mouse over an executable name will cause a tooltip to appear, showing the full path to the executable. EMET will only be in place with the selected configuration after you click the Ok button and after you restart the newly added/configured application(s).
15 3. The command line configuration tool An alternate way to configure EMET is to use the EMET_conf command-line utility found at the location where EMET is installed. This utility is very similar to the one that shipped with EMET with one notable exception. With 2.0.0, an application is configured based on the full path name to the executable, not just the executable file name. As with EMET 1.0.2, the EMET_conf utility requires administrator privileges. Be sure to run EMET_conf from an administrator command prompt. The following table illustrates the options EMET_conf supports. Task Add an application to EMET List which applications EMET has been enabled for Remove an application from EMET Remove all applications from EMET Command EMET_conf --add <full path to executable> EMET_conf --list EMET_conf --delete <full path to executable> EMET_conf --delete_all For example, to have EMET enable mitigations for foo.exe, run EMET_conf --add "c:\program files\app\foo.exe". To later disable the mitigations for foo.exe, run EMET_conf --delete "c:\program files\app\foo.exe". The command-line utility does not support enabling and disabling the individual mitigations for an executable; all mitigations are enabled. The utility also does not support modifying the system mitigation settings. To do either of these tasks, please use the GUI.
16 4. Mitigation caveats There are a few things you should be aware of when configuration the various mitigations available through EMET. In the following sections we discuss the caveats broken down by the system settings and application specific settings System settings DEP 1. Configuring the system setting for DEP changes a boot option for Windows. For systems using BitLocker, this will cause BitLocker to detect that system boot information has changed and you will be forced to enter your recovery key the next time you boot Windows. It is highly recommended that you have your recovery key ready before changing the system configuration setting for DEP on a system with BitLocker enabled. 2. Not all systems, including virtual machines, support DEP. However, this option will still be available for configuration even if EMET is being run on a machine that doesn t support it. Setting this option on those systems will have no effect. Be aware of the limitations of your systems when configuring DEP. SEHOP None ASLR 1. There is an unsafe option for the ASLR setting called Always On. This setting will force address space randomization for binaries that do not specifically support it. This setting is not visible by default due to the risk of introducing system instability. In our tests we encountered issues in a common use scenario where having ASLR set to Always On would cause a system would blue screen during boot. This occurred because the address space for certain third party video drivers was being randomized. These drivers had not been built to support this randomization and subsequently crashed, causing the whole system to crash as well. Recovering from this issue requires booting into safe mode and switching the system ASLR setting to either Opt In or Disabled. For more information on how to turn on the unsafe ASLR setting, refer to the Advanced options section of this document.
17 4.2. Application specific settings DEP 1. Not all systems, including virtual machines, support DEP. However, this option will still be available for configuration even if EMET is being run on a machine that doesn t support it. Setting this option on those systems will have no effect. Be aware of the limitations of your systems when configuring DEP. SEHOP None Null Page None Heap Spray None EAF 1. Systems configured with the /debug boot option need to have a debugger attached when running EAF enabled applications. If the /debug boot option is enabled and a debugger is not attached, the system will become unresponsive when an application with EAF enabled starts. This happens because the EAF mitigation relies on debug registers. If Windows has been configured to use a kernel debugger, Windows will try to inform the debugger whenever one of several memory addresses has been accessed. Windows will then wait for a response from the debugger. If a debugger does not respond, the system will appear unresponsive. 2. Some virtual machines do not support debug registers (and consequently EAF). However, the EAF option will still be available for configuration even if EMET is being run on a machine that doesn t support debug registers. Setting this option on those machines will have no effect. Be aware of this limitation when configuring EAF. Mandatory ASLR 1. EMET s mitigations only become active after the address space for the core process and the static dependencies has been set up. Mandatory ASLR does not force address space randomization on any of these. The main focus of Mandatory ASLR is to protect dynamically linked modules, such as plugins. 2. Windows XP and windows Server 2003 do not support randomization. Since Mandatory ASLR does not protect the core process or static imports (see #1 above), they will always be at predictable addresses. Consequently, Mandatory ASLR is unable to provide any meaningful protection against attack on the platforms and is therefore disabled. For more information on which platforms support which mitigations, see the Supported operating systems section of this document.
18 5. Advanced options By default, EMET hides configuration options considered to be unsafe. These are options that have shown to cause system instability in common use scenarios. For users still wishing to configure these options, there is a registry override. After the override is applied, EMET will display the unsafe options, but will also warn the user whenever one of them is selected. The override can be found in registry at HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\EMET. If you do not see this key, launch the EMET GUI and refresh your view of the registry. Inside the key, there is a DWORD value called EnableUnsafeSettings. By default it has a value of 0. By setting it to 1 and restarting the EMET GUI, you can see the unsafe options. With EMET 2.0.0, there is currently one unsafe option: the Always On setting for the system ASLR setting. Depending on your operating system configuration, setting the system ASLR setting to Always On could make your operation system blue screen during boot. Recovering from this will require booting the system in safe mode and setting the system ASLR setting to either Opt In (recommended) or Disabled.
19 6. Frequently asked questions 6.1. EMET questions I have the previous of EMET installed. Should I uninstall it before installing the new version? The old version of EMET is incompatible with the new version. However, you do not explicitly need to uninstall it before installing the new version. The EMET installer will disable the older version of EMET as needed. I installed the new version of EMET, but my old settings disappeared. Can I get them back? During the installation of EMET 2.0.0, the old EMET settings are disabled to prevent them from conflicting with the new version. However, they are not deleted. To find them simply open the registry editor and navigate to: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options For each key in there (e.g. calc.exe) open the key and look for a string value called Debugger - from EMET If you see that value, that executable was configured for use with EMET Note: on 64 bit systems, you may also need to repeat the above step with the following path: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\WindowsNT\CurrentVersion\Ima ge File Execution Options 6.2. General mitigation questions In Process Explorer, the ASLR column for a process is blank even though EMET is configured for use with that application. EMET does not take advantage of the OS implementation of ASLR. It will not show up in process explorer even when it is turned on With the previous version of EMET the DEP mitigation did not work on Windows Server. Does it work now?
20 Yes, EMET can now turn on DEP on Windows Server With the old version, the DEP policy was ineffective because Windows Server 2003 does not have the SetProcessDepPolicy() API. With the new version of EMET, DEP is enabled though a special process parameter 6.3. Troubleshooting problems with mitigations I ve modified the system setting for DEP and rebooted. Now BitLocker is asking me for the recovery key. Why is that and how can I stop it from asking me? Modifying the system setting for DEP changes the boot options for the operating system. BitLocker cannot prevent an attacker from tampering with these options and instead monitors them for change. When they change, BitLocker asks for the recovery key to ensure the changes are legitimate. To prevent BitLocker from continually asking for your recovery key, you will need to disable BitLocker (and decrypt the drive). Afterward, you can re-enable it (and re-encrypt the drive. This will cause BitLocker to record the new boot options. My system hangs if the Export Address Filtering (EAF) mitigation is enabled. This generally occurs when the system is running under DEBUG mode (the /debug boot option has been specified). Due to the nature of the EAF mitigation (involving debug registers and single step events) the hang occurs because the system waiting for a response from the debugger before continuing the execution of the application. To prevent this from happening, you can do one of the following: a) Remove the /debug boot option and reboot the system b) Attach a debugger and have it respond to the system General questions I get the error app failed to initialize properly when attempting to launch the graphical user interface. How can I fix this? The GUI requires that.net 2.0 is installed on the system. If you get this error after copying the binaries form another machine, try running the installer on the local machine. It will direct you to a location where you can download the.net 2.0 redistributable. Does EMET work on 64 bits applications? It is installed in the 32bit program files directory.
21 Yes, EMET supports 64 bit applications. The installer is designed to work on both 64 bit systems as 32 bit systems. A side effect of this is that the binaries are place in the 32 bit directory. However, please note several mitigations are not available on 64 bits. Refer to the Supported operating systems section for more details.
22 7. Support EMET is not currently an officially supported Microsoft product. We are working hard to establish the appropriate agreements to enable that. In the mean time, EMET is being released as an AS-IS product. That said, you can send your support questions to and we will do our best to help you.
CHAPTER 6 Supporting Windows XP Professional After completing this chapter, you will be able to: Identify the most common operating system problems. Explore options for addressing operating system problems.
SAP BusinessObjects Business Intelligence platform Document Version: 4.0 Support Package 8-2013-10-31 Table of Contents 1 About this document...5 1.1 Who should read this document....5 1.2 Document history....5
Bypassing Browser Memory Protections in Windows Vista Mark Dowd & Alexander Sotirov firstname.lastname@example.org email@example.com Setting back browser security by 10 years Part I: Introduction Thesis Introduction
Citrix Access Gateway Plug-in for Windows User Guide Access Gateway 9.2, Enterprise Edition Copyright and Trademark Notice Use of the product documented in this guide is subject to your prior acceptance
Contents Getting Started.....................................................1 Installing the Software...........................................1 Using the Maxtor System Tray Icon................................6
Hotpatching and the Rise of Third-Party Patches Alexander Sotirov firstname.lastname@example.org BlackHat USA 2006 Overview In the next one hour, we will cover: Third-party security patches _ recent developments
Microsoft Security Bulletin MS09-053 - : Vulnerabilities in FTP Service for...page 1 of 28 TechNet Home > TechNet Security > Bulletins Microsoft Security Bulletin MS09-053 - Vulnerabilities in FTP Service
Overview Why Bluetooth? There were good reasons to use Bluetooth for this application. First, we've had customer requests for a way to locate the computer farther from the firearm, on the other side of
GP Reports Viewer Dynamics GP Reporting Made Easy GP REPORTS VIEWER USER GUIDE For Dynamics GP Version 2015 (Build 5) Dynamics GP Version 2013 (Build 14) Dynamics GP Version 2010 (Build 65) Last updated
How to Prepare for the Upgrade to Microsoft Dynamics CRM 2013 (On-premises) COMPANY: Microsoft Corporation RELEASED: September 2013 VERSION: 1.0 Copyright This document is provided "as-is". Information
Vodafone PC SMS 2010 (Software version 4.7.1) User Manual July 19, 2010 Table of contents 1. Introduction...4 1.1 System Requirements... 4 1.2 Reply-to-Inbox... 4 1.3 What s new?... 4 2. Installation...6
DocAve 6 SharePoint Migrator User Guide Service Pack 4, Cumulative Update 3 Revision D Issued September 2014 Table of Contents About SharePoint Migration... 5 Complementary Products... 5 Submitting Documentation
User Manual Onsight Management Suite Version 5.1 Another Innovation by Librestream Doc #: 400075-06 May 2012 Information in this document is subject to change without notice. Reproduction in any manner
Copyright (c) Vuzix Corporation 2013-2014. All Rights Reserved. M100 System File Manager Help Section I) Installation of the M100 Section II) General Information Section III) Troubleshooting Section IV)
Advanced Malware Cleaning Techniques for the IT Professional Mark Russinovich Microsoft Technical Fellow This section of the Microsoft Security Intelligence Report provides information and guidance for
OBJECTIVES: Services o task manager o services.msc Process o task manager o process monitor Task Scheduler Event viewer Regedit Services: A Windows service is a computer program that operates in the background.
Microsoft s Enhanced Mitigation Experience Toolkit (EMET) is an enhancement to the Windows operating system that stops broad classes of malware from executing. EMET implements a set of anti-exploitation
Advanced Endpoint Protection Overview Advanced Endpoint Protection is a solution that prevents Advanced Persistent Threats (APTs) and Zero-Day attacks and enables protection of your endpoints by blocking
LESSON 13 Managing Devices OBJECTIVES After completing this lesson, you will be able to: 1. Open System Properties. 2. Use Device Manager. 3. Understand hardware profiles. 4. Set performance options. Estimated
Aras Innovator Internet Explorer Client Configuration Aras Innovator 9.4 Document #: 9.4.012282009 Last Modified: 7/31/2013 Aras Corporation ARAS CORPORATION Copyright 2013 All rights reserved Aras Corporation
Lesson 2 Understanding Operating System Configurations Learning Objectives Students will learn to: Understand Standard User Versus Administrative User Accounts Understand Types of UAC Prompts and Levels
Moldplus Server Installation Guide Version 3.10 Revision date: February 05, 2006 INTRODUCTION... 2 PRODUCTS SUPPORTED BY MOLDPLUS SERVER V3.10... 3 WHAT S NEW IN VERSION 3.10... 4 CUSTOMER REQUIREMENTS:...
MANJRASOFT PTY LTD Aneka 3.0 Manjrasoft 5/13/2013 This document describes in detail the steps involved in installing and configuring an Aneka Cloud. It covers the prerequisites for the installation, the
Velocity@ocbc Guide to add https://bbmy.ocbc.com as trusted site in Java 7 Update 71 Version 1.0 141014 1 of 23 Contents Java 7 Update 71 (difficulty logging into Velocity@ocbc)... 3 Uninstall Java Prior
8x8 Virtual Office Telephony Interface for Salesforce Administrator Guide May 2014 The Champion For Business Communications Table of Contents 8x8 Virtual Office Telephony Interface for Salesforce.... 3
2015 System Center 2012 R2 SP1 Configuration Manager & Microsoft Intune DEPLOYING MICROSOFT OFFICE 365 PROFESSIONAL PLUS RONNI PEDERSEN & HANS CHRISTIAN ANDERSEN RONNIPEDERSEN.COM Microsoft MVP: Enterprise
START YOUR INVENTORY WITH LANDPARK Landpark, comprehensive IT Asset Tracking and ITIL Help Desk solutions October 2016 LANDPARK INVENTORY «Quickly estimate your data processing systems before considering
Using Process Monitor Process Monitor Tutorial This information was adapted from the help file for the program. Process Monitor is an advanced monitoring tool for Windows that shows real time file system,
Attix5 Pro Server Edition V7.0.2 User Manual for Mac OS X Your guide to protecting data with Attix5 Pro Server Edition. Copyright notice and proprietary information All rights reserved. Attix5, 2013 Trademarks
Eugene Tsyrklevich Eugene Tsyrklevich has an extensive security background ranging from designing and implementing Host Intrusion Prevention Systems to training people in research, corporate, and military
ZENworks 11 Support Pack 4 Full Disk Encryption Agent Reference May 2016 Legal Notice For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions, U.S. Government
ez Agent Administrator s Guide Copyright This document is protected by the United States copyright laws, and is proprietary to Zscaler Inc. Copying, reproducing, integrating, translating, modifying, enhancing,
Dual-Booting Windows with Other Operating Systems CHAPTER W6 Even if you think that your version of Windows is the greatest operating system ever, you have to admit that it probably doesn t cover every
Document Overview This document provides step-by-step instructions for installing Faronics Power Save on a single segment Local Area Network. Following these instructions will allow you to have Power Save
Software Vulnerability Exploitation Trends Exploring the impact of software mitigations on patterns of vulnerability exploitation Software Vulnerability Exploitation Trends This document is for informational
50292 - Administering Windows 7 for the Enterprise Desktop Support Technician Duration: 5 days Course Price: $2,975 Software Assurance Eligible Course Description Course Overview This five-day instructor-led
Data Migration was a one-time optional activity to migrate the underlying portfolio database in e- config and was only needed during the e-config Upgrade that was rolled out on January 21, 2013. This document
Taking PDF security to a new level with Adobe Reader and Adobe Acrobat Acrobat X family of products raises the bar Table of contents 1: Improved application security 4: Tighter Integration with operating
Turn the Page: Why now is the time to migrate off Windows Server 2003 HP Security Research Contents Introduction... 1 What does End of Support mean?... 1 What End of Support doesn t mean... 1 Why you need
Microsoft Visual Studio Integration Guide MKS provides a number of integrations for Integrated Development Environments (IDEs). IDE integrations allow you to access MKS Integrity s workflow and configuration
2 CHAPTER This chapter describes the required and recommended tasks for deploying Cisco IP Communicator. It also provides instructions for adding Cisco IP Communicator devices to the Cisco Unified (formerly
User Manual pdoc Forms Designer Copyright Topaz Systems Inc. All rights reserved. For Topaz Systems, Inc. trademarks and patents, visit www.topazsystems.com/legal. Table of Contents 1.0 Introduction...
Securing Windows 7 8/23/2011 Table of Contents About this lab... 3 About the Laboratory Environment... 4 Lab 1: Restricting Users... 5 Exercise 1. Verify the default rights of users... 5 Exercise 2. Adding
A+ Guide to Managing and Maintaining Your PC, 7e Chapter 2 Introducing Operating Systems Objectives Learn about the various operating systems and the differences between them Learn about the components
SonicWALL CDP 5.0 Microsoft Exchange InfoStore Backup and Restore Document Scope This solutions document describes how to configure and use the Microsoft Exchange InfoStore Backup and Restore feature in
Avira System Speedup HowTo Table of Contents 1. Introduction... 4 1.1 What is Avira System Speedup?...4 2. Installation... 5 2.1 System Requirements...5 2.2 Installation...5 3. Using the program... 8 3.1
8x8 Virtual Office Administrator Guide October 2013 The Champion For Business Communications Table of Contents 8x8 Virtual Office Salesforce Call Center App... 3 System Requirements...3 Installation...
Timbuktu Pro for Windows, version 8 Release Notes, version 8.6.8 May 2010 This document contains important information about Timbuktu Pro for Windows, version 8. If you have additional questions, consult
INSTALLATION INSTRUCTIONS Table of Contents Installation Instructions 1 Table of Contents 1 System Requirements 2 Installation 3 Selecting where to Install the Professional Server 3 Installing Prerequisites
Verizon Internet Security Suite Powered by McAfee Installation Guide for Home Users ii Contents Introduction 3 System requirements 5 Installing Verizon Internet Security Suite 7 Signing in to your account...
Attix5 Pro Server Edition V7.0.3 User Manual for Linux and Unix operating systems Your guide to protecting data with Attix5 Pro Server Edition. Copyright notice and proprietary information All rights reserved.
Plug-in Manual Screen FT-R & Katana (SCSI) Version 22.214.171.124 June 25, 2008 Xitron Part Number Doc-1010 0608 Overview Xitron s Navigator PostScript RIP and Raster Blaster TIFF Catcher rely on software modules
Course 20687D: Configuring Windows 8.1 Course Details Course Outline Module 1: Windows 8.1 in an Enterprise Environment Windows client operating systems are essential to the functionality of almost every
1 Intel Smart Connect Technology Installation Guide: 1.1 System Requirements The following are required on a system: System BIOS supporting and enabled for Intel Smart Connect Technology Microsoft* Windows*
Getting Started with Vision 6 Version 6.9 Notice Copyright 1981-2009 Netop Business Solutions A/S. All Rights Reserved. Portions used under license from third parties. Please send any comments to: Netop
Computer Security: Principles and Practice Chapter 24 Windows and Windows Vista Security First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Windows and Windows Vista Security
Fixing Status 161 Problems with Pervasive PSQL v10 A White Paper From For more information, see our web site at Fixing Status 161 Problems with Pervasive PSQL v10 Last Updated: 03/06/2010 Pervasive PSQL
vtcommander vtcommander provides a local graphical user interface (GUI) to manage Hyper-V R2 server. It supports Hyper-V technology on full and core installations of Windows Server 2008 R2 as well as on
Notes: STATISTICA VERSION 10 STATISTICA ENTERPRISE SERVER INSTALLATION INSTRUCTIONS 1. The installation of the STATISTICA Enterprise Server entails two parts: a) a server installation, and b) workstation
SAP Single Sign-On 2.0 SP1 Document Version: 1.0 2015-10-02 PUBLIC Password Manager for SAP Single Sign-On Implementation Guide Content 1 Password Manager....4 2 Password Manager Installation Guide....5
Administrator Guide Reference Outpost Network Security Office Firewall Software from Agnitum Abstract This document provides information on deploying Outpost Network Security in a corporate network. It
Configure Java environment on Windows After installing Java Development Kit on Windows, you may still need to do some configuration to get Java ready for compiling and executing Java programs. The following
KON-BOOT For Windows Guide http://thelead82.com http://www.kon-boot.com General notes PLEASE KEEP YOUR ANTIVIRUS DISABLED WHILE EXTRACTING / BURNING / INSTALLING KON-BOOT Table of contents General notes...
ACTIVE DIRECTORY DEPLOYMENT CASAS Technical Support 800.255.1036 2009 Comprehensive Adult Student Assessment Systems. All rights reserved. Version 031809 CONTENTS 1. INTRODUCTION... 1 1.1 LAN PREREQUISITES...
Sharpdesk V3.5 Push Installation Guide for system administrator Version 3.5.01 Copyright 2000-2015 by SHARP CORPORATION. All rights reserved. Reproduction, adaptation or translation without prior written
MS 50292: Administering and Maintaining Windows 7 Description: This five-day instructor-led course provides students with the knowledge and skills to successfully administer, maintain, and troubleshoot