Page 2 - BlackberryCylance
P. 2
CylanceON-PREM FAQ
™
Cylance Protection Without a Connection
®
Achieving the How will updates be handled?
Apex of Security Software update packages will be announced to CylanceON-PREM customers via
knowledge base release article. The article will contain links to download the update
Some organizations require package. From the CylanceON-PREM Console Settings Page, you can perform a
the utmost in security for software update with the downloaded update package.
their internal systems. What are the supported VM platforms?
Their infrastructure may be We support EXSI 6.5 and higher.
completely removed from What is base OS of the virtual appliance?
outside connections. It is Linux CentOS 7.
CylanceON-PREM fortifies
these entities against both Does the CylanceON-PREM Manager have feature parity with the Cloud console?
outside and inside threats by If not, what’s there and what’s missing?
adding an advanced layer of CylanceON-PREM Manager will not have feature parity with the Cylance Cloud
system security that requires console. Currently, CylanceON-PREM Manager supports events reporting, policy
no outside connection. management, management of tenant global lists, device management, device tagging,
user and role management, and audit log.
CylanceON-PREM is a
standalone version of the Does the CylanceON-PREM Manager support download and distribution of
CylancePROTECT security centroids, agent updates, blacklists, etc?
®
product. Intended for isolated CylanceON-PREM Manager supports importing of the global quarantine list
or air-gapped networks, and safelist in CSV format, which can be exported from a Cloud tenant. But,
CylanceON-PREM includes the CylanceON-PREM Manager doesn’t support direct download and distribution of
Cylance Management Console centroids, agent updates, blacklists, etc. from the Cloud since CylanceON-PREM is
meant for air-gapped environments with no external Internet connection.
and predictive threat detection
models. This allows security What agent operating systems are supported with the CylanceON-PREM
admins to manually update Manager?
agents without compromising CylanceON-PREM supports agents for Windows and MacOS.
their network by connecting to How will I manage more than one CylanceON-PREM Manager located in
the Internet or cloud services. different locations?
CylancePROTECT’s predictive Each instance of CylanceON-PREM will need to be managed individually.
technology, managed through
CylanceON-PREM, also offers Do I have access to the API?
security against internal No, you do not have access.
threats like infected USB What are patching plans for the virtual appliance?
devices or on-site installation Refer to “How will updates be handled?”
of hostile programs, which Any other dependencies for the appliance
air-gapping cannot prevent. (certificates, DNS, syslog, or SNMP health monitoring)?
You will need port 443 opened in the firewall, and DNS to set up the virtual appliance.
Is the VM STIG’d? Secure Linux? How is it locked down?
We are using Linux CentOS 7. The user doesn’t have access to the root user
password and SSH is disabled as well. Security patches will be created by the Cylance
development team and provided to customers as an update package. Refer to “How
will updates be handled?”
Is the CylancePROTECT agent installed on the VM?
No, it is installed on the endpoint.
