Trend Micro, Inc.

August 2011

Trend Micro OfficeScan Server

Version 10.6
This readme file is current as of the date above. However, all customers are advised to check Trend Micro's Web site for documentation updates at http://docs.trendmicro.com/. Register online with Trend Micro within 30 days of installation to continue downloading new pattern files and product updates from the Trend Micro Web site. Register during installation, or online at http://olr.trendmicro.com. Trend Micro always seeks to improve its documentation. Your feedback is always welcome. Please evaluate this documentation on the following site: http://www.trendmicro.com/download/documentation/rating.asp

Contents
1. About OfficeScan 2. What's New 3. Document Set 4. System Requirements 5. Installation and Upgrade 6. Post-installation Configuration 7. Known Issues 8. Contact Information 9. About Trend Micro 10. License Agreement

1. About OfficeScan
Trend Micro OfficeScan protects enterprise networks from malware, network viruses, Web-based threats, spyware, and mixed threat attacks. An integrated solution, OfficeScan consists of a client

program that resides at the endpoint and a server program that manages all clients. The client guards the endpoint and reports its security status to the server. The server, through the Web-based management console, makes it easy to set coordinated security policies and deploy updates to every client. OfficeScan is powered by the Trend Micro Smart Protection Network , a next generation cloudclient infrastructure that delivers security that is smarter than conventional approaches. Unique in-thecloud technology and a lighter-weight client reduce reliance on conventional pattern downloads and eliminate the delays commonly associated with desktop updates. Businesses benefit from increased network bandwidth, reduced processing power, and associated cost savings. Users get immediate access to the latest protection wherever they connect within the company network, from home, or on the go.
Back to top

2. What's New
OfficeScan includes the following new features and enhancements:

2.1. Data Protection

The Data Protection module provides Digital Asset Control and expands the range of devices monitored by Device Control. Plug-In Manager manages the installation and licensing of the Data Protection module. Data Protection Features Digital Asset Control Details

Digital Asset Control safeguards an organization's digital assets against accidental or deliberate leakage. Digital Asset Control allows you to:

Identify the digital assets to protect Create policies that limit or prevent the transmission of digital assets through common transmission channels, such as email and external devices Enforce compliance to established privacy

standards Device Control OfficeScan out-of-the-box has a Device Control feature that regulates access to USB storage devices, CD/DVD, floppy disks, and network drives. Device Control that is part of the Data Protection module expands the range of devices by regulating access to the following devices:

Imaging devices Modems Ports (COM and LPT) Infrared devices PCMCIA cards Print screen key IEEE 1394 interface

2.2. Plug-in Manager 2.0

Plug-in Manager 2.0 installs with the OfficeScan server. This Plug-in Manager version delivers widgets. Widgets provide a quick visual reference for the OfficeScan features and plug-in solutions that you deem most vital to your business. Widgets are available in the OfficeScan servers Summary dashboard, which replaces the Summary screen in previous OfficeScan versions.

2.3. IPv6 Support

The OfficeScan server and clients can now be installed on IPv6 computers. In addition, new versions of Control Manager and Smart Protection Server now support IPv6 to provide seamless integration with the OfficeScan server and clients.

2.4. Cache Files for Scans

The OfficeScan client now builds cache files, which contain information about safe files that have been scanned previously and files that Trend Micro deems trustworthy. Cache files provide a quick reference during on-demand scans, thus reducing the usage of system resources. On-demand scans (Manual Scan, Scheduled Scan, and Scan Now) are now more efficient, providing up to 40% improvement to speed performance.

2.5. Startup Enhancement

When a computer starts, the OfficeScan client will postpone the loading of some client services if CPU usage is more than 20%. When CPU usage is below the limit, the client starts to load the services. Services include:

OfficeScan NT Firewall OfficeScan Data Protection Service Trend Micro Unauthorized Change Prevention Service

2.6. Damage Cleanup Services Enhancement

Damage Cleanup Services can now run in advanced cleanup mode to stop activities by rogue security software, also known as FakeAV. The client also uses advanced cleanup rules to proactively detect and stop applications that exhibit FakeAV behavior. You can choose the cleanup mode when you configure virus/malware scan actions for Manual Scan, Real-time Scan, Scheduled Scan, and Scan Now.

2.7. Web Reputation HTTPS Support

Clients can now scan HTTPS traffic for web threats. You can configure this feature when you create a web reputation policy.

2.8. Windows Server Core 2008 Support

The OfficeScan client can now be installed on Windows Server Core 2008. Users can use the command line interface to launch the client console and check the endpoints protection status.

2.9. Other Enhancements

This release includes the following enhancements:

Smart scan clients now run Outlook Mail Scan in smart scan mode. In previous versions, smart scan clients run Outlook Mail Scan in conventional scan mode. Logs and notifications for spyware/grayware detections now show the user name logged on to the computer at the time of detection. In the spyware/grayware logs, if the second level scan result is "Passed", the first level scan result is now "Further action required" instead of "No action required". With this enhancement, you can now take additional measures such as cleaning spyware/grayware that you consider harmful. Client Self-protection is now a granular setting that you can configure in the client tree. You can now configure all clients to send heartbeat messages to the OfficeScan server. In the previous version, only clients in unreachable networks send heartbeat messages. When exporting client tree settings to a .dat file, all settings, except Update Agent settings, will now be exported. In previous versions, only scan settings and client privileges/other settings are exported.

When using the Client Mover tool, you can now specify the client tree subdomain to which the client will be grouped after it moves to its new parent server.

Back to top

3. Document Set
The document set for the OfficeScan server includes:

Installation and Upgrade Guide: A PDF document that discusses requirements and procedures for installing the OfficeScan server, and upgrading the server and clients Administrator's Guide: A PDF document that discusses getting started information, client installation procedures, and OfficeScan server and client management Help: HTML files compiled in WebHelp format that provide "how to's", usage advice, and fieldspecific information. The Help is accessible from the OfficeScan server, client, and Policy Server consoles, and from the OfficeScan Master Setup. Readme file: Contains a list of known issues and basic installation steps. It may also contain latebreaking product information not found in the Help or printed documentation. Knowledge Base: An online database of problem-solving and troubleshooting information. It provides the latest information about known product issues. To access the Knowledge Base, go to the following website: http://esupport.trendmicro.com

Download the latest versions of the PDF documents and readme at http://docs.trendmicro.com/enus/enterprise/officescan.aspx.
Back to top

4. System Requirements
The OfficeScan server and client can be installed on computers running Microsoft Windows platforms. The OfficeScan client is also compatible with various third-party products. Visit the following website for a complete list of system requirements and compatible third-party products: http://docs.trendmicro.com/en-us/enterprise/officescan.aspx

Back to top

5. Installation and Upgrade

See the Installation and Upgrade Guide for instructions on:

Installing the OfficeScan server Upgrading the OfficeScan server and clients Rolling back clients to a previous OfficeScan version

For instructions on installing the client, see the Administrator's Guide.

Back to top

6. Post-installation Configuration
See the post-installation tasks in the Installation and Upgrade Guide if you:

Installed the OfficeScan server Upgraded the OfficeScan server and clients

If you installed the client, see the client post-installation tasks in the Administrator's Guide.
Back to top

7. Known Issues
The following are the known issues in this release:

Server installation, upgrade, and uninstallation Client installation, upgrade, and uninstallation Scanning Server update Client update Server management Client management Device Control Digital Asset Control OfficeScan firewall Smart scan Web reputation Policy Server and Cisco Trust Agent Control Manager integration Additional release notes

Server Installation, Upgrade, and Uninstallation

1. If you install the OfficeScan server using Apache web server and you enabled SSL for secure connections, it is possible to use an unsecure HTTP connection to log on to the web console. 2. The OfficeScan web console and all OfficeScan services cannot be accessed if the OfficeScan server was installed on Windows Server 2008 or Windows Server 2008 R2 before joining a domain. To resolve the issue: For Windows Server 2008: a. Go to Control Panel > System and Security > Windows Firewall > Exceptions tab. b. Enable exception for File and Printer Sharing. c. Add the following port exceptions: Trend Micro Local Web Classification Server HTTP, TCP port 5274 Trend Micro OfficeScan Server HTTP, TCP port 8080 Trend Micro OfficeScan Server HTTPS, TCP port 4343 Trend Micro Smart Scan Server (Integrated) HTTP, TCP port 8082 Trend Micro Smart Scan Server (Integrated) HTTPS, TCP port 4345 d. Click OK. For Windows Server 2008 R2: a. Go to Control Panel > System and Security > Windows Firewall > Allowed Programs. b. Select the following features and allow access for the Domain profile: File and Printer Sharing Trend Micro Local Web Classification Server HTTP Trend Micro OfficeScan Server HTTP Trend Micro OfficeScan Server HTTPS Trend Micro Smart Scan Server (Integrated) HTTP Trend Micro Smart Scan Server (Integrated) HTTPS c. Click OK. 3. After installing the OfficeScan server remotely to a Windows Server 2008 computer, the Web console shortcut does not immediately display on the computer's desktop. Refresh the desktop by pressing F5 to see the shortcut. 4. When the OfficeScan server is installed to a disk using the FAT32 file system, role-based logon to the OfficeScan Web console does not work. 5. During upgrade, if the existing OfficeScan database file (found in the "HTTPDB" folder under "OfficeScan/PCCSRV") is very large, the upgrade process may time out. Trend Micro recommends doing the following before upgrading: a. Go to Control Panel > System and Security > Windows Firewall > Exceptions tab. b. From the OfficeScan console, manually delete old server logs. c. Go to Administration > Database Backup, and click Backup Now to back up the database.

Client Installation, Upgrade, and Uninstallation

1. After moving an OfficeScan client from an OfficeScan 8.0 SP1 server to the OfficeScan 10.6 server, the client successfully upgrades but reloads the OfficeScan client several times. To avoid this issue, Trend Micro recommends using Login Scrip Setup or Client Packager to upgrade the OfficeScan client. Using these methods, the OfficeScan client will only reload once. 2. Upgrade may fail if using an MSI package to upgrade an OfficeScan client that was originally installed also using an MSI package. As a workaround, do the following: a. Ensure that the new MSI package has the same file name as the original package. If you do not know the file name of the original package, launch the new package and you will be notified of the file name. Rename the new package and then launch it again. b. Use command prompt to execute the package with the parameter "/fvo". For example, C:\msiexec /fvo package.msi. 3. The OfficeScan client is unable to query the web reputation servers after performing a fresh installation or upgrade. To resolve the issue, ensure that clients restart their computers if a restart notification appears. 4. If you create a login script in Active Directory and then log on as administrator on a computer running Windows Vista Home, Server 2008, or 7, the OfficeScan client cannot be installed to the computer and the message that displays states that the account used is not an administrator account. 5. When this product version is installed to a Citrix Presentation server, the Citrix client loses connection with the server. To address this issue: a. On the Citrix server, open Registry Editor and navigate to HKLM\SOFTWARE\TrendMicro\NSC\TmProxy\WhiteList. b. Click Edit > New > Key and name the key IIS. c. Under this new key, create a string value (Edit > New > String Value) with the name ProcessImageName and use w3wp.exe as its value. d. Restart the OfficeScan NT Listener service. 6. When an application that locks the Windows Service Control Manager (SCM) is launched, the OfficeScan client cannot be installed or upgraded. Before upgrading or installing OfficeScan, ensure that no SCM-locking application is running. 7. When running Vulnerability Scanner on a computer running Windows Server 2008, the DHCP tab does not display on the tool's console. 8. The ServerProtect Normal Server Migration tool is unable to:

Detect ServerProtect for Windows 5.8 with patch 7 or later Restart the target computer after installing the OfficeScan client even if the "Restart after installation" option is selected

To resolve these issues, open Registry Editor on the Normal Server and Information Server and add following registry key:

Path: HKEY_LOCAL_MACHINE\SOFTWARE\TrendMicro\ServerProtect\CurrentVersion\RPC Name: AgentFilter Type: REG_SZ (string value) Value: IP addresses or computer name of the OfficeScan server

9. Microsoft IIS 7 does not work when:

Running Setup to install both the OfficeScan server and client on a Windows Server 2008 computer without Service Pack 2, and then specifying IIS 7 as the Web server. The Web console cannot be opened after installation and all applications using IIS do not work. Installing the OfficeScan client to a Windows Server 2008 computer with Microsoft IIS 7. All applications using IIS do not work.

A message displays on the computer using Windows Server 2008 without Service Pack 2, instructing the user to restart the IIS service to resolve the issue. 10. When installing the client from the Web install page, users may get an error message stating that ActiveX setup controls did not download information needed for installation. When users retry the installation, the error message no longer displays and installation proceeds. To avoid seeing the error message, enable Automatic prompting for ActiveX controls in Internet Explorer. 11. To perform client Web installation on computers with a 64-bit processor architecture, you must use the 32-bit version of Internet Explorer. The 64-bit version of Internet Explorer is not supported. 12. The OfficeScan client may not install correctly if Norton SystemWorks antivirus is installed on the computer. Uninstall it before installing OfficeScan client. 13. If the OfficeScan client is installed using the "per-user" method, the OfficeScan client shortcut will still show on all the users' Windows Start menu. 14. When cloning virtual machine images using Microsoft's "sysprep" utility, cloning is unsuccessful if the OfficeScan client is installed on the source virtual machine. To resolve this issue: a. b. c. d. Disable Local Area Connection on the source virtual machine. Power off the virtual machine and start cloning the image. Configure custom settings on the cloned image. Power on the virtual machine.

15. After upgrading OfficeScan, the following issues occur:

If upgrading from OfficeScan 8.0 patch 2, the OfficeScan firewall service may sometimes not start even if this service and the Common Firewall Driver are up-to-date. The following error appears in the Setupapi.log file found under %systemroot%: "0x800b0100: No signature was present in the subject."

If upgrading from version 8.0 Service Pack 1 by moving a client to an OfficeScan 10.5 server, the OfficeScan firewall service cannot be started and the Common Firewall Pattern version is 0. When upgrading by moving a client to an OfficeScan 10.5 server, the Common Firewall Pattern version is "N/A".

To resolve these issues, perform the following steps: a. b. c. d. Stop the Cryptographic Services from the Microsoft Management Console. Navigate to C:\Windows\system32 and rename the "catroot2" folder to "oldcatroot2". Start the Cryptographic Services. Open a command prompt (cmd.exe) and run the following commands: regsvr32 wintrust.dll regsvr32 netcfgx.dll e. Restart the computer. 16. When disabling automatic client upgrade on an OfficeScan 8.0 SP1 client and then upgrading the server, the client is not upgraded but its program version becomes 8.0. 17. The OfficeScan client unloads and then reloads three times when upgraded to this version. This happens if the client upgrades, applies smart scan as its scan method, and then applies the domain level scan method. 18. After an OfficeScan client in a VPN environment is uninstalled successfully, the client is not removed on the Web console's client tree and its status is offline. 19. The administrator will not be able to remotely install OfficeScan client to Windows 7 x86 platforms without enabling the default administrator account. To resolve this issue: Note: Enable the Remote Registry service on the Windows 7 machine. By default, Windows 7 machines disables this feature. Option A: Use the domain administrator account to remotely install OfficeScan 10.5 clients to Windows 7 machines. Option B: Use the default administrator account: a. Type the "net user administrator /active:yes" command from the command console to enable the default administrator account. b. Use the default administrator account to remotely install the OfficeScan client to the Windows 7 machine. 20. Installing OfficeScan clients to Windows 7 or Windows Server 2008 R2 in VMware may cause the system to stop responding. This is because of compatibility issues with the Intel Network Adapter Driver.

Scanning

1. A Microsoft Hyper-V virtual machine might not be able to start if the host computer has OfficeScan client installed. This is because the OfficeScan client and Hyper-V virtual machine access the same Hyper-V xml file, which causes file access violation. As a workaround:

Set exclusion folder for the virtual machine xml file located in C:\ProgramData\Microsoft\Virtual Machine Manager\. Turn off file mapping scan by modifying the TmFilter/TmxpFilter registry value.

2. When specifying the scan target for Scheduled Scan, Scan Now and Real-time Scan, spyware/grayware scan can be disabled. However, for Manual Scan, there is no option for disabling spyware/grayware scan, which means that during Manual Scan, OfficeScan will always scan for spyware/grayware. 3. When scanning is complete, OfficeScan displays a notification page. On a Windows Server 2008 computer, the background color of the page does not conform to the standard color for OfficeScan notification pages. 4. When OfficeScan is configured to scan mapped drives during Manual Scan, the mapped drive may not get scanned when scanning is initiated through Terminal Service client. 5. When an email containing an attachment with spyware/grayware is retrieved through Eudora email client and POP3 Mail Scan is disabled, OfficeScan's Real-time Scan denies access to the email even if the scan action is "clean". The email does not appear on the inbox and the Eudora client displays a message informing the user that access to the email is denied. 6. In a Citrix environment, when the OfficeScan client detects a security risk during a particular user session, the notification message for the security risk displays on all active user sessions. Security risk can be any of the following:

Virus/Malware Spyware/Grayware Firewall policy violation Web Reputation policy violation Unauthorized access to external devices

7. When OfficeScan detects virus/malware and computer restart is required to clean the infected file, a notification message prompts the user to restart. If the user did not restart the computer and generic virus/malware was detected, the restart notification displays again even if a restart is not required for the generic virus/malware detection.

Server Update
1. When updating OfficeScan patterns and engines from Control Manager, administrators are not notified of the update status even if notifications are enabled. The update status can be viewed from the Control Manager console.

Client Update

1. OfficeScan clients with client-level settings can only download settings from the OfficeScan server, not Update Agents. 2. An Update Agent running a 64-bit platform is unable to generate incremental patterns. Therefore, the Update Agent always downloads all incremental patterns available in the ActiveUpdate server, regardless of how many of these patterns it has previously downloaded. 3. When the OfficeScan server notifies clients to update components, clients that obtain updates from an Update Agent will not be able to update if the Update Agent has not been upgraded to version 8.0 SP1 or higher. However, these clients can still obtain the updates directly from the OfficeScan server. 4. On the OfficeScan client computer, automatic proxy detection in Internet Explorer does not work if the administrator enables the "Client Console Access Restriction" option on the OfficeScan server Web console's Privileges and Other Settings screen. 5. When the server and client computers are located on geographical locations with different time zones, the client cannot be configured to update based on the server's time zone.

Server Management
1. The Active Directory scope may display as empty or redirect to the Active Directory integration screen when querying Outside Server Management reports with a broad scope. Ensure that the first task is finished before performing another query. 2. The User Role has access and configure permissions on the client Manual Update page but only for selected domains. However, all clients receive the notification when this role clicks Initiate Update. 3. For Menu Items for Managed Domains, when an Active Directory user is part of several Active Directory groups, the user combines domain permissions but applies the higher role setting on all applicable domains. 4. When the computer's date/time format is changed, the date/time format on the OfficeScan console does not automatically change. 5. Web console logon is unsuccessful if using the x64 version of Internet Explorer 6.0 or later and the computer runs an x64 type platform. Use the x86 version of Internet Explorer to log on successfully. 6. When the Web console is opened in Internet Explorer 7 or later, a certificate error displays.

Client Management
1. Client names in the OfficeScan client tree supports only 15 characters and truncates the succeeding characters.

2. Double-byte characters (characters typically used in East Asian languages) cannot be used when specifying the notification message for virus/malware infection source (Notifications > Client User Notifications > Virus/Malware tab > Virus/Malware Infection source). 3. If the client security level configured on the Web console is set to "High", connection through Nortel VPN client cannot be established. 4. Select the Show icon and notifications option to display the OfficeScan icon in the Windows 7 system tray. The default option for Windows 7 is Only show notification. 5. Some client console screens include a Help button, which, when clicked, opens contextsensitive, HTML-based Help. Because Windows Server Core 2008 lacks a browser, the Help will not be available to the user. To view the Help, the user must install a browser.

Device Control
1. When the permission for plug-in devices (USB) is "read only", users can still create a new folder on the device but the folder cannot be renamed and no file can be saved to the folder. 2. The Device Control feature is unable to block recording of files (or "file burning") to optical disks. 3. If the permission for network drives is "Read", a text file on a network drive is blocked if the file is accessed from a command prompt on a Windows Server 2008 computer.

Digital Asset Control

1. Data transmitted through Instant Messaging applications are not detected if the applications use a non-transparent proxy server.

OfficeScan Firewall
1. The Firewall rule for outgoing traffic will not work as expected if a machine has several IP addresses with different Firewall policies. 2. When the security level on a Citrix server is medium or high, perform the following steps: a. On the OfficeScan server Web console, create a new firewall policy. b. Add the following port numbers to the policy's exclusion list: 1494, 2598 c. Go to Firewall > Profiles and click Assign Profile to Clients. 3. Incoming packets to a computer on a VMware client are dropped if the computer has OfficeScan client installed. Workaround (for all clients): a. On the server computer, open ofcscan.ini under the \PCCSRV folder. b. Add the following setting under [Global Setting]: EnableGlobalPfwBypassRule=1

c. On the Web console, go to Networked Computers > Global Client Settings and click Save to deploy the setting to all clients. Workaround (for specific clients): a. On the client computer, open Registry Editor. b. Add the following registry value: Key: HKEY_LOCAL_MACHINE\SOFTWARE\TrendMicro\PCcillinNTCorp\CurrentVersion\PFW For x64 computers: HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432\TrendMicro\PCcillinNTCorp\CurrentVersion\PFW Name: EnableBypassRule Type: REG_DWORD Value: 1 c. Reload the client for settings to take effect. 5. If the client runs on a Windows Server 2003 computer without any Microsoft service pack, the OfficeScan firewall may block connection to the integrated Smart Protection Server. Apply the latest service pack to avoid encountering this issue. 6. The OfficeScan firewall service and driver cannot be installed if a previous version of the firewall driver exists and is running but there is no Trend Micro Common Firewall in the network protocol.

Smart Scan
1. Only Internet Explorer is supported for configuring proxy settings used by clients to connect to the Global Smart Protection Server. If proxy settings are configured in other browsers, clients will not be able to connect to the Global Smart Protection Server.

Web Reputation
1. If the OfficeScan server is installed on a dual-stack (IPv4/IPv6) computer and is using an Apache web server, pure IPv6 clients cannot send web reputation queries to the integrated Smart Protection Server. 2. If you enable the option "Check HTTPS URLs" in a web reputation policy: a. Select the option "Enable third-party browser extensions" in Internet Explorer. If this option is disabled, clients will not be able to check the reputation of HTTPS websites. b. For clients running Windows Server 2008 (32-bit), disable Internet Explorer Enhanced Security Confguration (IE ESC) from Windows Server Manager. If IE ESC is enabled, the web reputation blocking page displays in source code mode. 3. The OfficeScan client is unable to get the Web reputation rating. This occurs if the client is installed on a computer running Windows Server 2008 (32-bit or 64-bit) or Windows Server 2008 R2 (64-bit) with Apache that supports IPv6. As a workaround, turn off IPv6 on the computer.

4. Clients can browse blocked sites if using Juniper Networks VPN and proxy servers to connect to the Internet. To resolve this issue: a. b. c. d. e. Connect to the network using Juniper Networks VPN. Open Internet Option > Connection > LAN Settings. Disable Automatic configuration settings. Enable Proxy server and specify the IP address and port of your proxy server. Click Ok.

5. If users access the Internet using Firefox and a proxy server, be sure that proxy settings in Internet Explorer have been configured. If proxy settings have not been configured in Internet Explorer, web reputation will not work, even if proxy settings have been configured in Firefox.

Policy Server and Cisco Trust Agent

1. The installation and removal of the Cisco Trust Agent (CTA) on client computers require the use of a Windows Utility (netsh.exe) to add/remove CTA from the Windows Firewall Program Exception list. This is done to allow CTA to communicate even when Windows Firewall is enabled. 2. Computer restart is required after the Cisco Trust Agent 2.x Supplicant package is deployed. 3. Users cannot log on to Policy Server installed on an Apache server if the Apache server already has OfficeScan installed. Uninstall the Policy Server and re-install on an Apache server without OfficeScan.

Control Manager Integration

1. The Integrated Windows Authentication protocol is not supported when registering OfficeScan to Control Manager and specifying Web server authentication credentials for the IIS server. Only basic access authentication is supported. 2. When accessing the OfficeScan server using the single-sign on function in Control Manager:

Users are sometimes prompted that the OfficeScan screen contains non-secure items. The "Action cancelled" warning screen may sometimes display.

Refresh the page if any of these conditions occur. 3. The Control Manager server must use port 80 or 443 to allow migration from the Trend Micro Management (TMI) protocol to the Trend Micro Control Manager Management Communication Protocol (MCP) agent. 4. OfficeScan client registers and unregisters to Control Manager if the mobile client frequently changes IP address. This can cause network bandwidth issues for Control Manager 5.0. 5. Outside Server Management reports cannot be queried if the OfficeScan web console is accessed through Control Manager single sign-on. Use the OfficeScan web console to query Outside Server Management reports.

Additional Release Notes

1. There are several tools included in this version. Refer to the OfficeScan server Help for instructions on how to use them. The tool folders are located under \PCCSRV\Admin\Utility. 2. The following are the permissions for the OfficeScan folders: Directory/User Administrat or Everyon e IUser _<Serve r Name> N/A Syste m Networ k Service N/A

\PCCSRV

Full control

RX

\PCCSRV\Download

Full control

N/A

\PCCSRV\HTTPDB \PCCSRV\Log

Full control Full control

N/A N/A

N/A N/A

\PCCSRV\Private

Full control

N/A

N/A

\PCCSRV\Temp \PCCSRV\Virus

Full control Full control

N/A N/A

\PCCSRV\Web

Full control

N/A

RWXD RW (Special Access) R

Full contro l Full contro l N/A Full contro l Full contro l N/A N/A

N/A

N/A N/A

RX

RWXD N/A

\PCCSRV\Web\Cgi \PCCSRV\Web_OSCE\Web_conso le \PCCSRV\Web_OSCE\Web_conso le\ HTML\ClientInstall \PCCSRV\Web_OSCE\Web_conso le\ RemoteInstallCGI

Full control Full control

N/A RX

RX N/A

Full control Full control

N/A N/A

RWXD RWXD

Full contro l N/A Full contro l N/A N/A

N/A

N/A N/A

N/A N/A

3. Download the latest components after upgrading to keep your security risk protection current.
Back to top

8. Contact Information

A license to the Trend Micro software usually includes the right to product updates, pattern file updates, and basic technical support for one (1) year from the date of purchase only. After the first year, Maintenance must be renewed on an annual basis at Trend Micro's then-current Maintenance fees. You can contact Trend Micro via fax, phone, and email, or visit us at http://www.trendmicro.com. Evaluation copies of Trend Micro products can be downloaded from our Web site.

Global Mailing Address/Telephone numbers

For global contact information in the Asia/Pacific region, Australia and New Zealand, Europe, Latin America, and Canada, refer to http://www.trendmicro.com/en/about/overview.htm. The Trend Micro "About Us" screen displays. Click the appropriate link in the "Contact Us" section of the screen. Note: This information is subject to change without notice.
Back to top

9. About Trend Micro

Trend Micro Incorporated, a global leader in Internet content security and threat management, aims to create a world safe for the exchange of digital information for businesses and consumers. A pioneer in server-based antivirus with over 20 years experience, we deliver top-ranked security that fits our customers' needs, stops new threats faster, and protects data in physical, virtualized and cloud environments. Powered by the Trend Micro Smart Protection Network infrastructure, our industryleading cloud-computing security technology and products stop threats where they emerge, on the Internet, and are supported by 1,000+ threat intelligence experts around the globe. For additional information, visit http://www.trendmicro.com. Copyright 1998-2011, Trend Micro Incorporated. All rights reserved. Trend Micro, the t-ball logo and OfficeScan are trademarks of Trend Micro Incorporated and are registered in some jurisdictions. All other product or company names may be trademarks or registered trademarks of their owners.
Back to top

10. License Agreement

Information about your license agreement with Trend Micro can be viewed at http://us.trendmicro.com/us/about/company/user_license_agreements/. License Attributions can be viewed from the OfficeScan web console.

Back to top