Extentrix Extended  Registry Key Scan

Scan description

Scan Name: Extentrix Extended Registry Key .

Description:  It allows IT administrators to create a list of data for the key registry value and check if any of the client’s machines have one of these values. For example, IT administrators can create scan to verify whether the client's machine name (stored in the registry) match any of its allowed list machine names. This will reduce the need to create a scan for each machine name.

  

Parameters:

·         Base Registry Key: specifies the base registry key.

·         Sub Key: specifies the sub key ex: Software\Extentrix.

·         Value Name: specifies the name of the value.

·         Value Type: specifies the type of the value.

·         Value Data list: specifies the data of the value, it’s a comma separator file contains data depend on search type; it could be,   REG_SZ à String, REG_BINARY à Binary, REG_DWORD à Double Word.

 

                  Note: If the data is binary or dword, it should be written as hexadecimal without space ex:05f47e. 

                  Note: If the data is string, then the WILD CHARACTER (?,*) is supported as well as the exact string.

 

Scan Output:

·         Allow Access - a Boolean output which indicates whether the key or the value is registered on the client's machine or not.

 

TRUE   – indicates that a given key/value is registered on the client's machine.

FALSE – indicates that a given key/value is not registered on the client's machine or contains wrong information.

 

·        License Status- a String output which indicates whether the scan is licensed or not.

 

TRIAL LICENSE    – indicates that the scan has a trial license.

INVALID LICENSE – indicates that the scan hasn’t a license.

VALID LICENSE    – indicates that the scan is licensed.

 

Note: If the License Status has an Invalid License value, the Allow Access will be false.

Installation and configuration

Importing scan packages

To install a custom end point analysis scan package follow the following steps:

1.       After opening Citrix Access Management Console, in the console tree select the Endpoint Analysis node.

2.       Right click any of the displayed scan packages categories and select Import scan package from the drop down menu list.

 

Also you can choose to insert the scan package to any scan category listed in the tree as shown in the following picture: 

 

 

3.       A dialog box named “Select Scan Package File” will appear. Double click on the (.cab) file which contains the Scan.

 

 

The package will be displayed in the console as shown in the following picture:

 

 

Installing the scan package

Please follow the steps below to create scans and rules for the Extentrix Extended Registry Key Scan.

1.       Select ExtentrixExtendedRegistryKeyScan to create scan for it, right click the icon and choose Create Scan.

 

 

2.       Type a name for the scan:

 

3.       Set the scan conditions:

 

4.       Type rule name and set rule conditions:

 

 

 

5.       Choose a base registry key from the list:

 

6.       Type the sub key to be checked.

 

7.       Type the Value Name if you will check the value or NULL if you will not.

 

8.       Choose the Type of the data from the list:

 

9.       Define a data set using a comma delimited .csv file. To do that, click on New Data Set to import the file. The file will have a list of valid value for the key “String or Binary or Dword”.

    

 

8. A dialog box titled “New Data Set” will appear. Type a name for the new data set in the first field then use Browse Button to locate the .csv file.

 

 

9. After defining the data set, click Next.

 

10.   When you are done, click Finish.

 

Editing Extentrix Key Register Scan Data Set

You can edit the value of the set later after creating the data set to change values or remove or add options. The following steps demonstrate how you can do that:

1. Right click Endpoint Analysis in the management console tree and select

Manage Data Set from the action menu.

 

 

2. A window titled “Data Sets” will appear. Select the data set you want to edit then click Edit button.

 

  

 

3. A window titled “Edit Data Set” will appear.

Note: You can use string with wild character (?,*) as well as exact string .

 

4. In this dialog box, you can insert a new value, edit an existing value or remove unwanted value, then click OK.