HP Client Manager™ 7.

0 from
Symantec
User’s Guide
Copyright © 2008 Symantec Corporation. All rights reserved. Symantec, the Symantec Logo, Altiris and any Altiris or Symantec trademarks
used in the product are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other
names may be trademarks of their respective owners.

The product described in this document is distributed under licenses restricting its use, copying, distribution, and decompilation/reverse
engineering. No part of this document may be reproduced in any form by any means without prior written authorization of Symantec
Corporation and its licensors, if any.

THE DOCUMENTATION IS PROVIDED "AS IS" AND ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND WARRANTIES,
INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT, ARE
DISCLAIMED, EXCEPT TO THE EXTENT THAT SUCH DISCLAIMERS ARE HELD TO BE LEGALLY INVALID. SYMANTEC CORPORATION,
INCLUDING WITHOUT LIMITATION ITS AFFILIATES AND SUBSIDIARIES, SHALL NOT BE LIABLE FOR INCIDENTAL OR CONSEQUENTIAL
DAMAGES IN CONNECTION WITH THE FURNISHING, PERFORMANCE, OR USE OF THIS DOCUMENTATION. THE INFORMATION CONTAINED IN
THIS DOCUMENTATION IS SUBJECT TO CHANGE WITHOUT NOTICE.

The Licensed Software and Documentation are deemed to be commercial computer software as defined in FAR 12.212 and subject to
restricted rights as defined in FAR Section 52.227-19 "Commercial Computer Software - Restricted Rights" and DFARS 227.7202, "Rights in
Commercial Computer Software or Commercial Computer Software Documentation," as applicable, and any successor regulations. Any use,
modification, reproduction release, performance, display, or disclosure of the Licensed Software and Documentation by the U.S. Government
shall be solely in accordance with the terms of this Agreement.

Symantec Corporation
20330 Stevens Creek Blvd.
Cupertino, CA 95014
http://www.symantec.com

Document Date: November 7, 2008

Symantec HP Client Manager 7.0 User’s Guide 2

Contents

Chapter 1: About HP Client Manager. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5

Features and Benefits . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
Support to HP Computers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7

Chapter 2: Installing HP Client Manager. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8

Types of Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8
Installation Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9
System Requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9
Installing Symantec Management Platform and HPCM . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
Installing Symantec Installation Manager . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
Running Symantec Installation Manager . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11
Upgrading from Previous Versions of Notification Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
After Installation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12

Chapter 3: Getting Started with HP Client Manager . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13

HP Client Manager Home page . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13
HP Client Manager and the Symantec Management Platform . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
Symantec Management Platform and HPCM documentation . . . . . . . . . . . . . . . . . . . . . . . . . . 16
Notification Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
Altiris Agent . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
Using the Symantec Management Console. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
Out of Band Management Solution . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
Using HPCM tasks. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
Using HPCM Filters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
Terminology. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18
Quick Start Tasks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
Activate Product . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
Discover all Computers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
Install the Altiris Agent . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
Automatically installing the Altiris Agent (push) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
Windows XP Simple File Sharing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21
Manually installing the Altiris Agent from a Web Page (pull). . . . . . . . . . . . . . . . . . . . . . . 21
Deliver HP Client Manager Plug-in . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
Automated Getting Started Tasks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
Discover HP Computer Systems . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
Upgrade the HP Client Manager Agent. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23
Uninstall the HP Client Manager Agent . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23
Other Getting Started Tasks. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
Manage Licenses . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
Verify Server-to-Client Communication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
Identifying HP Client Manager Supported Computers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25

Chapter 4: Using HP Client Manager . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27

Gathering and Viewing Client Computer Inventory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27
Gathering Client Inventory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28
Viewing Inventory Data. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28
Using Client Inventory Reports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28
Viewing HP Inventory Data using the Resource Manager . . . . . . . . . . . . . . . . . . . . . . . . . 29

Symantec HP Client Manager 7.0 User’s Guide 3

 Updating HP Tools . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 29
Using HP Instant Support System Health Scan . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 30
Update HP Instant Support and SSM Tools . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 30
Run HP Instant Support System Health Scan . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 30
Use HP Instant Support System Health Scan to Manage SoftPaqs. . . . . . . . . . . . . . . . . . . ... 31
View HP Instant Support System Health Scan Reports . . . . . . . . . . . . . . . . . . . . . . . . . . ... 31
View HP Instant Support Health Scan Results . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 32
Microsoft Vista Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 32
Running Windows Vista Ready Reports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 32
Performing HP Backup. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 33
Disaster Recovery. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 33
Managing BIOS and Drivers SoftPaqs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 34
SoftPaq Drivers Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 34
Import HP SoftPaqs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 35
Update SSM Tools . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 35
Using HP Instant Support System Health Scan to Automatically Manage SoftPaqs . . . . . . . ... 35
Manually Managing SoftPaqs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 36
Manually Downloading and Storing SoftPaqs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 36
SoftPaq Delivery Wizard . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 37
SoftPaq Delivery Reports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 37
Managing BIOS Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 38
Using the HP BIOS Administration Wizard . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 38
HP BIOS Administration Wizard . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 38
Creating and Viewing BIOS Reports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 39
Using Health Monitoring and Alerts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 39
Configure HP Client Health Monitoring Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 40
HP Client Local Alerts Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 41
HP Client Manager Automation Policies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 43
HP Health Monitor Reports. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 44
Using HP Instant Support Diagnostics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 44
Updating HP Instant Support Diagnostics Tools . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 45
Installing HP Instant Support Diagnostics on Client Computers . . . . . . . . . . . . . . . . . . . . ... 45
The HP Instant Support Diagnostics Task . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 45
HP Instant Support Diagnostics Reports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 46
Configuring Data Purging . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 46
Configuring Altiris Agent Settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 47
Updating the HP Supported Systems List. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 47
Using platform tasks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . ... 48

Chapter 5: Embedded Security Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49

Managing Embedded Security tasks using the HP Embedded Security Wizard . . . . . . . . . . . . . . . . 49
About Selecting Filters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 50
Initializing Embedded Security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 51
Configuring Embedded Security Credentials. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 52
Modifying Security Owner Passwords . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 52
Managing Security User Passwords . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 53
Managing Security Credentials and Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 54
Running Embedded Security Reports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 56

Index. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57

Symantec HP Client Manager 7.0 User’s Guide 4

Chapter 1
About HP Client Manager

HP Client Manager (HPCM) is specifically designed for HP computers to leverage HP’s

manageability technology. HPCM offers greater capabilities and enhanced features to
efficiently manage HP and Compaq desktops, workstations, and notebook computers.
For a complete list of supported computers, see Support to HP Computers (page 7).

HPCM is a Web-based client management system that provides centralized tools,

including BIOS and driver management, diagnostics, health monitoring, alerts, and
client information data reports. HPCM is designed to provide the best IT management
for HP clients, increase efficiency, and reduce management costs.

How HP Client Manager Works

HP Client Manager is a Web-based product that plugs into the Symantec Management
Platform that includes Notification Server. HPCM uses Notification Server’s tasks,
packages, policies, and filters to send and receive client information to the supported HP
computers.

Notification Server also provides security, reporting, policy definition services, and
includes the Symantec Management Console for remote management from a Web
browser.

See “HP Client Manager and the Symantec Management Platform” on page 15.

Symantec HP Client Manager 7.0 User’s Guide 5

 As a Web solution plug-in, HPCM joins with other management solutions, such as Out of
Band Management Component. These combined solutions provide comprehensive
automatic remote administration of HP desktops, notebooks, server, handheld, and
network computer devices.

Features and Benefits

HP Client Manager provides centralized hardware management of a client computer from
a Web browser. Key features and benefits include:

Get information about your computers

! Hardware inventory — Captures detailed information about the processors, hard
drives, memory, BIOS, and more, on your HP client computers. Gather basic
information for your non-HP client computers.

! Central and local alerting — Monitors a client computer for hardware issues, such
as hard drive failures or free space, overheating, faulty batteries or charge levels,
and changes to hardware assets. Receive hardware alerts either at the system
management console or also on the local computer. Customers can view the Alerts
locally. Administrators can also track the alerts on the HPCM Portal page or through
HPCM reports.

! System health scans and diagnostics — Reduces troubleshooting and resolution

time of hardware problems by tightly integrating a client computer with HP Instant
Support tools. Runs a system health scan that checks your computer for hardware
issues tracked by the HP Instant Support knowledgebase. Perform diagnostics on
computer components and view reports of test results. If required, link to the HP
Instant Support knowledgebase for more information.

Perform Hardware Management Operations

! Deploy HP-specific driver updates — When a system health scan runs, the
results automatically identify HP SoftPaqs needed to resolve hardware issues on
your computers. Point-and-click to select and download SoftPaqs. A SoftPaq
package is dynamically created and can be scheduled for delivery to your
computers. A SoftPaq Wizard is also included that enables building of custom
SoftPaq delivery packages.

! ROM/BIOS flash — Automatically updates BIOS on any remote client computer.

Flash a single or group of computers. View reports for computers not receiving
updates or where installation has failed.

! Change BIOS/Security settings — From the Symantec Management Console,

remotely configure the BIOS and security settings, which are accessible on a local
client computer through the 'F10' function key. These settings include changing the
BIOS password, machine boot order, and so on.

! Customized Web reports — Create Web-based reports on hardware inventory and

business-critical details, such as computers with health alerts (example: SMART
drive, memory, and thermal) or changes to hardware assets.

! Automatic notification — Proactively manage HP hardware with notifications by e-

mail, Web report, SNMP, or command-line launch about hardware environment
changes. Notifications include alerts about new and inactive computers,
replacement or removal of CPUs, drives, monitors, and memory.

Symantec HP Client Manager 7.0 User’s Guide 6

 ! Solution integration — HP Client Manager provides tight integration with other
Altiris client lifecycle management solutions.

! Support for remote users — HP Client Manager supports remote access using
HTTPS, SSL, and VPN protocols. It uses advanced functionality to regulate the file
downloading speed, compression of files, and activate a checkpoint restart if the
download fails.

! Support for remote Embedded Security Management — HP Client Manager

supports remote management of Embedded Security. This feature includes
initialization of Embedded Security, managing Embedded Security Owner, user
password, and managing Embedded Security credentials and settings.

Support to HP Computers
The complete list of the following information can be found in the HPCM Release Notes.

! Supported HP Computers: Refers to the HP commercial computers that are

tested and supported by HP Client Manager.

! Supported Operating Systems: Refers to the supported operating systems that

the HP commercial computers must be running on.

! Discontinued HP Computer Support: Refers to the HP commercial computers

that have been discontinued for support by HP Client Manager.

! Discontinued BIOS Support: Refers to HP commercial computers with 64-bit

operating systems that do not support BIOS modification using SSM because their
BIOS lacks the support.

Symantec HP Client Manager 7.0 User’s Guide 7

Chapter 2
Installing HP Client Manager

HP Client Manager (HPCM) is a solution that runs on the Symantec Management

Platform. This section details the basic tasks required to set up the Symantec
Management Platform server and HPCM in a controlled lab environment before moving
into a production setting.

To install software, you will use the Symantec Installation Manager. This is software that
you install on your test server and then run to install HPCM.

For detailed planning concepts and rollout instructions for large or distributed
environments, see the Symantec Management Platform Installation Guide.

Types of Installation
Installation tasks vary depending on what you have already installed.

If installing Symantec Management Platform 7.0 and HP Client

Manager 7.0 for the first time
To complete this installation, perform the following steps:

1. Identify system requirements. See Installation Requirements (page 9).

2. Download and install Symantec Installation Manager. See Installing Symantec

Management Platform and HPCM (page 10)

3. From Symantec Installation Manager, install the Symantec Management Platform

and HPCM. See Running Symantec Installation Manager (page 11).

If you are evaluating HPCM, accept the default settings and install in a test environment
with a prescribed server and HP client computers.

If Symantec Management Platform 7.0 is already installed and you are

installing HP Client Manager 7.0 or upgrading from HP Client Manager
6x.
To add HP Client Manager, install HPCM using the Symantec Installation Manager.

See Running Symantec Installation Manager (page 11).

If upgrading from Notification Server 6x

Symantec Management Platform 7.0 and HP Client Manager 7.0 include major feature
upgrades. If you are upgrading from Notification Server 6x, you may need to perform
basic update tasks, increase allotted disk space for the database, and complete
additional design optimization tasks before proceeding. For detailed instructions about
optimizing for Notification Server 6.0 SP3, see Upgrading from Previous Versions of
Notification Server (page 12).

Symantec HP Client Manager 7.0 User’s Guide 8

Installation Requirements
Before setting up HP Client Manager, select an appropriate Windows server to install the
Notification Server, the HPCM solution, and any additional solutions. The server and
clients should comply with the System Requirements (page 9).

You can run HPCM in either a workgroup environment or on a domain. For evaluation
purposes, running in a workgroup is simplest and you can perform the evaluation with a
minimum of two computers: a server computer (with minimal server requirements) and
a client computer. Running in a workgroup lets you perform the basic installation tasks
and get a feel for the capabilities of HPCM.

As you roll out HPCM to a domain or to a production workgroup environment, you can
increase RAM, increase disk space for the Symantec CMDB, or upgrade the server
depending on the number of managed computers and the needs of your environment
and IT team.

System Requirements
The following information provides the system requirements for installing Symantec
Management Platform and HP Client Manager on a server and setting up the Altiris
Agent on managed client computers.

For more details on requirements for different size of environments, see the Symantec
Management Platform Installation Guide.

Server requirements

Hardware Minimum Requirements for Recommended for small business

evaluation
CPU Pentium 4 Dual processor twin core
CPU Speed 1.8 GHz 2.53 GHz
RAM 1 GB 4 GB, DDR2
Hard Disk 5 GB of free disk space Mirrored 10,000 RPM SCSI or better. 10 GB of free
disk space.

Software Minimum Requirements for Recommended for small business

evaluation
Microsoft.NET Microsoft.NET 3.5 Microsoft.NET 3.5
Operating system MS Windows Server 2003. (Windows MS Windows Server 2003. (Windows Server 2008
Server 2008 is not supported.) is not supported.)
Web browser Microsoft IE 7 Microsoft IE 7
Microsoft IIS IIS 6 IIS 6
AJAX AJAX 1.0 AJAX 1.0
Database Microsoft SQL Server 2005 Express Microsoft SQL Server 2005 Standard or Enterprise

Symantec HP Client Manager 7.0 User’s Guide 9

Client computer requirements for Altiris Agent

Requirement Minimum Requirements for evaluation

Operating system Any of the following:

! Windows 2000 SP4

! Windows 2003

! Windows XP SP2

! Windows Vista

! Windows 2008
Hard disk space 60 MB
RAM 64 MB minimum (128 MB recommended)
Web browser Version 5.0 or later
Access rights Local administrator rights

For more information, see topics about the Altiris Agent in the Symantec Management
Platform User’s Guide (help).

Note
Unblock ports 80 and 445 if the operating system is Windows XP SP2 with firewall
enabled. These ports can be blocked after installation. You can also create an exception
for the Altiris Agent in the Windows Firewall dialog. If the Altiris Agent is installed
successfully on the client computer, HPCM functions properly.

Installing Symantec Management Platform and

HPCM
If the Symantec Management Platform is already installed, you can install HPCM using
the Symantec Installation Manager.

See Running Symantec Installation Manager (page 11).

To install Symantec Management Platform, you start by downloading and installing the
Symantec Installation Manager. You then run the Symantec Installation Manager to
install the Symantec Management Platform and HP Client Manager. When you run the
Symantec Installation Manager, it launches a prerequisite wizard to verify that all
required programs and services are present on the server. If additional software is
required, it assists in downloading and installing that software. After it verifies that the
prerequisite software is installed properly, you can install the Symantec Management
Platform.

Installing Symantec Installation Manager

You use Symantec Installation Manager to install the Symantec Management Platform.
Symantec Installation Manager is a Windows-based application that runs on your server.
You use it to download and install the platform and solutions.

Symantec HP Client Manager 7.0 User’s Guide 10

 To install Symantec Installation Manager
1. From the server you want to install on, launch a Web browser and go to the
following URL:

www.altiris.com/Download.aspx

2. From the Download Products page, select HP Client Manger 7.0 from the product
drop-down menu, and click Submit.

3. From the Eligibility Export Restrictions page, select I Agree.

4. From the SymAccount Login page, enter your username and password.

If you are a new user, create a new user account

5. From the Software Download page, click Download Now.

6. Save the installation file.

7. Download and open the installation package.

After the installation file is extracted, the Symantec Installation Manager Setup
wizard opens.

8. Follow the wizard to install Symantec Installation Manager.

a. From the Welcome page, click Next.

b. Accept the license agreement, and then click Next.

c. Accept the default destination path, and then click Begin install.

d. When the installation in complete, click Finish.

By default, this will launch the Symantec Installation Manager.

9. Proceed to Running Symantec Installation Manager (page 11).

Running Symantec Installation Manager

After you have installed Symantec Installation Manager, you can install the platform or
solutions such as HPCM.

To run Symantec Installation Manager

1. On the Start menu, click Programs > Altiris > Symantec Installation Manager
> Symantec Installation Manager.

2. From the Install New Products page, check HP Client Manager.

3. If Symantec Management Platform has not been installed, it will prompt you to
accept any pre-requisite software. Click OK.

4. Verify the products to install, and then click Next.

5. Accept the license agreement, and then click Next.

6. Enter your contact information, and then click Next.

7. On the Install Readiness Check page, install any required software and click Next.

8. From the licensing page, click Next.

9. On the Notification Server Credentials page, enter the user name credentials, and
then click Next.

Symantec HP Client Manager 7.0 User’s Guide 11

 This page appears only when you install Symantec Management Platform.

Enter the user name (include the domain) and password that you want to use to
access Notification Server. The user name must be a Windows user with local
administrator rights to the Notification Server computer.

You can configure e-mail settings after installation.

10. On the Database Credentials page, specify credentials for the database, and then
click Next.

This page appears only when you install Symantec Management Platform.

In most cases you can accept the default values.

11. From the Computers to Manage page, select the computers you want to manage,
and then click Begin Install.

The install program lets you select a limited number of computers to manage.

You can select computers now or you can skip this task and do it after installation.

See “Discover all Computers” on page 19.

Upgrading from Previous Versions of Notification

Server
If you are upgrading from Notification Server 6x or HP Client Manager 6x, you must first
migrate your Notification Server to 7.0, then you can use Symantec Installation Manager
to upgrade HP Client Manager to 7.0.

For more information, see the Symantec Management Platform Installation Guide and
the HP Client Manager Release Notes.

After Installation
After you install HP Client Manager, you can start managing HP client computers. Go to
Getting Started with HP Client Manager (page 13) and complete the listed tasks.

Symantec HP Client Manager 7.0 User’s Guide 12

Chapter 3
Getting Started with HP Client Manager

This section helps you become familiar with and introduces you to the tasks to manage
HP client computers.

Five mandatory steps must be completed before you start managing your computers.
For information about these tasks, see Quick Start Tasks (page 19).

! HP Client Manager Home page (page 13)

! HP Client Manager and the Symantec Management Platform (page 15)

" Symantec Management Platform and HPCM documentation (page 16)

" Notification Server (page 16)

" Using the Symantec Management Console (page 16)

" Using HPCM tasks (page 17)

" Using HPCM Filters (page 17)

" Terminology (page 18)

! Quick Start Tasks (page 19)

" Activate Product (page 19)

" Discover all Computers (page 19)

" Install the Altiris Agent (page 20)

" Deliver HP Client Manager Plug-in (page 22)

! Automated Getting Started Tasks (page 22)

" Discover HP Computer Systems (page 22)

" Upgrade the HP Client Manager Agent (page 23)

! Other Getting Started Tasks (page 24)

" Manage Licenses (page 24)

" Verify Server-to-Client Communication (page 24)

" Identifying HP Client Manager Supported Computers (page 25)

HP Client Manager Home page

After installing Notification Server and HP Client Manager, you can use the HPCM Home
page as the starting point for all your management tasks.

This home page is a portal page that contains several Web parts. The Web parts
provides links to tasks that you can perform and summary information about your
managed computers. You can collapse a Web part or modify the home page altogether.
You can start the HP Client Manager Home page from a client computer or from the
Symantec Management Console on the Notification Server.

Symantec HP Client Manager 7.0 User’s Guide 13

 Starting the HP Client Manager Home page from the Notification Server
Computer
1. From the Notification Server computer, select Start > Programs > Altiris >
Altiris Console.

2. From the Symantec Management Console, click Home > HP Client Manager.

Starting the HP Client Manager Home page from a remote computer

1. Log on with a user account that has administrator privileges to access the
Notification Server computer.

2. Open a Web browser.

3. Enter the URL: http://NSName/Altiris/NS/Console.aspx.

4. From the Symantec Management Console, click Home > HP Client Manager.

Home page item Description

Left pane The left pane of the home page provides links to all the
management tasks available through HP Client
Manager. The following Web parts are available:

! Quick Start
This Web part lists the tasks you perform to set up
HPCM.

See “Quick Start Tasks” on page 19.

! Administrative Tasks
This Web part lists tasks that are performed on the
HP Client Manager server itself.

See “Using HP Client Manager” on page 27.

! Management Tasks
This Web part lists tasks that are performed on
client computers.

See “Using HP Client Manager” on page 27.

! Other features you can evaluate

This Web part lists other Symantec solutions that
are available for evaluation.

Symantec HP Client Manager 7.0 User’s Guide 14

 Home page item Description
Center pane The center pane has Web parts that show reports of the
status of HP computers. The following Web parts are
available:

! HP Health Alert Trending

The HP Health Alert Tending graph summarizes the
three alert summaries in the right pane.

You can view a summary of the last 3 months or 6

months worth of data.

The data in this graph is displayed over units of

weeks. Because of this you may have to wait a few
days before any data is visible in the graph.

! Percent of computers needing updates

This Web part has two reports that are a reflection
of all HP computers that have either had HP
Diagnostics or a HP Health Scan run.

Use the drop-down list to select the graph you

want to view.

! Summary of HP Computers
This graph shows a breakdown by percentage of
computer types: desktop computers, notebooks,
workstations, and blades.
Right pane The right pane has three Web parts that provide an
overview of the health of your HP computers:

! HP Asset Change Alerts

! HP Threshold Alerts

! HP Hardware Health Alerts

Each of these Web parts can display 100 alerts.

HP Client Manager and the Symantec Management

Platform
The Symantec Management Platform provides a set of services that IT-related solutions
leverage. Solutions leverage the platform and take advantage of the platform services,
such as security, reporting, communications, package deployment, and Configuration
Management Database (CMDB) data.

Because solutions, like HPCM, share the same platform, they can share platform
services as well as data. Shared data is more useful than data that is only available to a
a single solution. This close integration of solutions and the platform makes it easier for
you to use the different solutions because they work in a common environment and are
administered through a common interface.

Symantec HP Client Manager 7.0 User’s Guide 15

Symantec Management Platform and HPCM documentation
For more information you can view the Symantec Management Platform Help. To view
documentation, in the Symantec Management Console, from the Help menu, click Help
Library. From this library, you can also view documentation for any products that are
installed, including HPCM.

You can also view context-sensitive help from any page in the console. To view the help,
click in the page or pane you want help on and press F1.

Notification Server
The Notification Server is the primary server installed in the Symantec Management
Platform and is responsible for coordinating the various solutions, providing the primary
user interface, policy-based administration, reporting and notification. In addition to
acting as a primary or secondary server in a hierarchy, a Notification Server can also be
designated as a Reporting Server, which is only used for generating and displaying
enterprise-wide reports.

Altiris Agent
The Altiris Agent (formerly called the Notification Server Client or NS Client) acts as a
primary agent and resides on managed client computers. This agent provides shared
functionality, such as:

! Common transport mechanism.

! The UI (User Interface) for changing the settings on the end-user computer.

! A core set of services and capabilities which other sub-agents can share. These are
client/server communications, package/file download, auto-updating and
installation, and UI (User Interface).

The Altiris Agent also provides the core (bootstrap) capabilities for installing and
managing various solution-specific agents and plug-ins. (Each solution may add an
additional agents or plug-ins to add specific capabilities to the base functionality.)

Using the Symantec Management Console

The Symantec Management Console is the core interface for Notification Server and any
solutions that have been installed. From this console, you can run or schedule a variety
of tasks, view system resources, run or view reports, change configuration settings,
update system settings, and manage the SoftPaq Filestore. These items are available in
menus located in the console. HP Client Manager functionality is located on the HPCM
Home page.

There are two ways of accessing the Symantec Management Console: on the Notification
Server computer or from a different client computer using a Web browser.

See “HP Client Manager Home page” on page 13.

For more information, see topics about using the management console in the Symantec
Management Platform User’s Guide.

Symantec HP Client Manager 7.0 User’s Guide 16

Out of Band Management Solution
Out of Band Management Solution is another solution that is included with HPCM. Out-
of-band management is the ability to manage client computers in one of the following
out-of-band states:

! The computer is plugged in, but not actively running (off, standby, hibernated).

! The operating system is not loaded (software or hardware boot failure).

! The software-based management agent is not available.

For more information, view the Out of Band Management documentation.

Using HPCM tasks

HP Client Manager utilizes the task management system of the Symantec Management
Platform. HPCM has several pre-defined tasks that you can run to perform management
tasks.

Some HPCM tasks have default schedules that will automatically run the task at a set
interval, such as once a week. You can use the default schedule or configure a new
schedule.

When you configure a task, you have two options:

! Quick Run - This lets you run the task immediately on a single computer.

! New Schedule - This lets you run the task on multiple target computers at the time
that you specify.

If a schedule already exists, it will appear under Task Status. You can view or modify the
properties of an existing schedule by double-clicking it. You can view online help for
configuring tasks by clicking in the task page and pressing F1.

To use the Quick Run, you simply select a computer in the drop-down menu to run the
task on.

To create a new schedule for a task, you configure two elements:

! When to run the task

! What target computers to run the task on

A single task can have multiple schedules. This lets you run the task on different
computers at different times. For example, if you manage computers in multiple
locations, you can set up a different task to run on each location.

You use filters to select the target computers for a task.

See “Using HPCM Filters” on page 17.

If you create a new schedule, a New Schedule page opens. You can click the help icon
for specific instructions on scheduling tasks (click the Adding a schedule link.)

For more information, see topics about using tasks in the Symantec Management
Platform User’s Guide.

Using HPCM Filters

A resource filter, usually known as a filter, is a dynamic definition of a set of resources.
The resources may be grouped by some specified parameters, for example, all Windows
XP computers. Filters are used as resource targets that a task or policy applies to.

Symantec HP Client Manager 7.0 User’s Guide 17

 Filters replace collections used in HPCM 6x and Notification Server 6x.

For more information, see topics about resource filters in the Symantec Management
Platform User’s Guide.

There are many predefined filters for HPCM.

To view HPCM filters

1. In the Symantec Management Console, do the following:

" From the Manage menu, click Filters, and in the left pane, expand HP Client
Manager Filters.

" From the Settings menu, click All Settings, and in the left pane, expand
Agents/Plug-ins > HP Client Manager Agent.

2. Click a filter to view the resources represented in that filter.

3. Click Update membership.

Terminology
This section introduces the concepts and terminology used in this document.

Filter
A query that identifies a dynamic group of resources that share common criteria.

Example: All HP Notebook Computers.

Package
A package or software package is one or more files that can be delivered using package
servers as defined in software delivery tasks.

Policy
A policy is a set of rules that control the execution of automated actions. Policies can be
scheduled or based on incoming data that triggers an immediate action. Policies
determine when an action should start and who or what should be notified of the results.

Reports
The information collected from the client computers is sent to the Notification Server
and stored in a central database. You can create reports from this information to help
you analyze your data. These reports can be accessed using any Web browser.

Task
An action that is performed on a computer. Server tasks are run on Notification Server.
Client tasks are run on managed computers.

Symantec HP Client Manager 7.0 User’s Guide 18

Quick Start Tasks
This section lists the tasks you must perform to start using HP Client Manager.

" Activate Product (page 19)

" Discover all Computers (page 19)

" Install the Altiris Agent (page 20)

" Deliver HP Client Manager Plug-in (page 22)

Activate Product
HP Client Manager is a free product for HP customers; however, you are required to
register with Symantec as an HP Client Manager user. This product comes with a 90-day
evaluation license. After you register, a new permanent license key will be sent to you
through e-mail. You must install the new permanent license to continue using HPCM
beyond the evaluation period.

To activate HP Client Manager

1. From the HPCM Home page, click 1. Activate Product.

2. In the Web page that opens, follow the instructions to register and receive a free
permanent license.

3. Save the license to a text file.

4. Add the license using Symantec Installation Manager.

See “Manage Licenses” on page 24.

Discover all Computers

In order to successfully manage computers, you must first discover them and create
resources for them. You can identify and select all client computers on the network by
entering each domain name, or browse and select from available domains using the
Domain Picker. Additionally, you can discover all computers sharing files and printers
or running the messenger service, and computers that have trust accounts in the
domain.

You had the opportunity to discover computers during installation. If you did not
discover computers then, or if you want to discover additional computers, you can
discover them now.

During an evaluation, or if you are using HP Client Manager in a Workgroup, you can skip
this step and deploy the Altiris Agent without completing a full network discovery
operation.

See “Install the Altiris Agent” on page 20.

However, when deploying the Altiris Agent to several computers in a large environment,
you will want to use this automated process to discover computers on the network.

For complete instructions on discovering computers, see topics about discovering

resources in the Symantec Management Platform User’s Guide.

Symantec HP Client Manager 7.0 User’s Guide 19

 To discover computer resources
1. From the HPCM Home page, click 3. Discover all Computers.

2. Enter the name of the domain or browse to select available domains by clicking .
Click Add to include the domain in the search list.

3. Click Domain Browse List to discover all computers currently sharing files or
printers or running the messenger service.

4. Click Domain Membership to discover all computers that have trust accounts in
the domain, including Windows 2000/XP/2003/VISTA computers in the domain. This
method is slower than the Domain Browse List method and does not identify the
operating system of the computer.

5. Click Discover Now. Computers from the entered domains are discovered and
listed.

Install the Altiris Agent

After discovering client computers on your network, you can install the Altiris Agent on
them. When a computer has the Altiris Agent installed, it is considered a managed
computer.

You can use two methods to install the Altiris Agent:

! Automatically installing the Altiris Agent (push) on page 20

! Manually installing the Altiris Agent from a Web Page (pull) on page 21

If you have not discovered a computer, use the pull method.

Note
If you are running Windows XP on a computer that is not in a domain, refer to Windows
XP Simple File Sharing (page 21) for information on deploying the Altiris Agent to those
types of client computers.

Automatically installing the Altiris Agent (push)

This process lets you automatically install the Altiris Agent on Windows 2000 and XP
computers. Additionally, you must have administrator rights to deploy the Altiris Agent.

For complete instructions, see topics about installing the Altiris Agent in the Symantec
Management Platform User’s Guide.

To automatically deliver the Altiris Agent

1. From the HPCM Home page, click 4. Deliver Altiris Agent.

2. Click Select Computers to open a page listing all discovered computers.

Symantec HP Client Manager 7.0 User’s Guide 20

 3. Select the client computers to which you want to deploy the Altiris Agent and click
OK.

Note
Select the Discovered computers not reporting inventory filter from the drop-
down list to view all discovered client computers that do not have an Altiris Agent
already installed. You can also add the names of known computers in the Add field.

The names of all selected computers to which you can deploy the Altiris Agent are
listed in the Altiris Agent Installation page.

4. Click Install Altiris Agent. The Options page opens to allow you to set
configuration properties for the Altiris Agent. Select the Show the Altiris Agent
icon in the system tray option.

5. Click Proceed with Install. The Altiris Agent is copied to the client computer and
automatically installed.

Windows XP Simple File Sharing

If Windows XP simple file sharing option is enabled on a client computer within a
workgroup, it does not allow non-guest access over the network and does not allow the
Altiris Agent to be deployed remotely.

You can either disable simple file sharing or you can install the Altiris Agent from a Web
page

By default, simple file sharing is enabled on a Microsoft Windows XP-based computer if

the computer is not a member of a domain. Therefore, Windows XP client computers in
a Workgroup must have simple file sharing disabled.

To disable simple file sharing

1. From the Windows Start menu, select My Computer.

2. From the Tools menu, select Folder Options and click the View tab.

3. In the Advanced Settings section, clear the Use simple file sharing
(Recommended) check box.

Manually installing the Altiris Agent from a Web

Page (pull)
You can manually install the Altiris Agent on computers that you cannot automatically
push the agent to. You can also you the manual method if you are evaluating HPCM in a
lab environment.

To download the Altiris Agent installation package from a Web browser, you must
download the agent installation file from Notification Server.

To install the Altiris Agent from a Web page

1. On a client computer, open the following URL:

http://NSName/Altiris/NS/Agent/AltirisAgentDownload.aspx
Where NSName is the name of your Notification Server computer.

2. To install the bootstrap utility, click Install.

Symantec HP Client Manager 7.0 User’s Guide 21

 3. To install the Altiris Agent, click Click here to begin the download and install.

4. You can verify the URL by doing the following:

a. From the HPCM Home page, click 4. Deliver Altiris Agent.

b. View the information under the section entitled URL of download page.

Deliver HP Client Manager Plug-in

To manage HP computers, you must install the HP Client Manager plug-in on target
computers. This plug-in works with the Altiris Agent to perform tasks on the target
computers and communicates with Notification Server.

To install the plug-in, you configure a policy that installs the plug-in on target
computers. You select the group of computers on which the policy runs and when it
runs. You use filters to select target computers.

See “Using HPCM Filters” on page 17.

If you choose a group that contains a computer that already has the plug-in installed,
the task is ignored on that computer.

When a policy is turned on, any new computer that is a member of the target group
automatically has the plug-in installed on it.

Before performing this task, you must install the Altiris Agent on target computers.

To install the HP Client Manager plug-in

1. From the HPCM Home page, click 5. Deliver HP Client Manager Plug-in.

2. On the plug-in install page, turn on the policy.

At the upper right of the page, click the colored circle, and then click On.

When you installed HPCM, you may have had the option to turn on the plug-in
installation policies. If a policy is already turned on, it was turned on during
installation.

To access help for this page, click anywhere in the page and press F1.

3. Use the default filter of target computers listed under Applied to.

4. Click Save changes.

Automated Getting Started Tasks

The following HP Client Manager tasks are performed automatically by default.

! Discover HP Computer Systems (page 22)

! Upgrade the HP Client Manager Agent (page 23)

Discover HP Computer Systems

After the Altiris Agent is installed, the pre-defined Discover HP Computers task
automatically runs on all client computers. This tasks identifies all the HP computers in
your network. This task also identifies computers that are not supported by HPCM.

By default, this task will run every hour. You can view or edit the properties of this task.

Symantec HP Client Manager 7.0 User’s Guide 22

 It will take some time for the policy to run on all your computers.

After the policy has run, you can view the HP computers that were discovered. To view
discovered computers, you can use a report or a filter.

See “Identifying HP Client Manager Supported Computers” on page 25.

To view or configure the Discover HP computer task

1. In the Symantec Management Console, on the Settings menu, click All Settings.

2. In the left pane, click HP Client Manager > HP Client Manager Configuration >
Discover HP Computers.

3. Under Task Status, view the existing tasks.

There is default task that automatically runs once a week.

4. You can view the properties of a task, run the task, or create a new schedule for the
task.

See “Using HPCM tasks” on page 17.

Upgrade the HP Client Manager Agent

If you are upgrading from a previous version of HPCM, this version automatically
upgrades the HP client software on all supported computers. This upgrade is done
through the HP Client Manager Upgrade policy. This policy is turned on by default,
requiring no additional action.

To view or configure the HP Client Manager Upgrade policy

1. In the Symantec Management Console, on the Settings menu, click All Settings.

2. In the left pane, click Agent/Plug-ins > HP Client Manager Agent.

This folder contains the policies and filters used by the policies.

See “Using HPCM Filters” on page 17.

3. Click HP Client Manager Upgrade.

4. To access help for this page, click anywhere in the page and press F1.

Uninstall the HP Client Manager Agent

You can uninstall the HP Client Manager Agent from target computers. This is done
through the HP Client Manager uninstall policy. This policy is turned off by default.

To uninstall the HP Client Manager Agent

1. In the Symantec Management Console, on the Settings menu, click All Settings.

2. In the left pane, click Agent/Plug-ins > HP Client Manager Agent.

This folder contains the policies and filters used by the policies.

See “Using HPCM Filters” on page 17.

3. Click HP Client Manager Uninstall.

Symantec HP Client Manager 7.0 User’s Guide 23

 4. On the plug-in installation page, turn on the policy.

At the upper right of the page, click the colored circle, and then click On.

To access help for this page, click anywhere in the page and press F1.

5. Configure the target computers.

IMPORTANT: The default filter is All HP Computers with HP Client Manager

Installed. If you use the default, the agent will be uninstalled from all computers.

You can use the default filter or select a different set of target computers.

See “Using HPCM Filters” on page 17.

See “Using HPCM tasks” on page 17.

6. Click Save changes.

Other Getting Started Tasks

! Manage Licenses (page 24)

! Verify Server-to-Client Communication (page 24)

! Identifying HP Client Manager Supported Computers (page 25)

Manage Licenses
You can use Symantec Installation Manager view the licenses that are installed for your
products and install new licenses.

See “Activate Product” on page 19.

For more information, see the Symantec Management Platform Installation Guide.

To install licenses
1. Click Start > Program Files > Altiris > Symantec Installation Manager >
Symantec Installation Manager.

2. Click Add/Update licenses.

3. In the page that opens, view the licenses you have installed, including HP Client
Manager.

This will show you how many days remain on your evaluation license.

4. To install a new license, click Apply License.

5. Select the license text file.

Verify Server-to-Client Communication

You can verify the installation of Notification Server, the Altiris Agent, and HP Client
Manager. There are several ways to test that all components are installed and to verify
communication between Notification Server and the managed client computer:

! From the managed client computer, you can quickly verify the installation of the
Altiris Agent by simply checking the client computer. The Altiris Agent icon appears
in the system tray of the managed computer.

Symantec HP Client Manager 7.0 User’s Guide 24

 ! In a larger test environment with several managed computers, you may want to run
the Altiris Agent basic inventory (sorted by last update) report to check the
client-to-server communication. As part of its routine, the Altiris Agent sends basic
inventory to the Notification Server soon after it is installed and reports the
managed computers recently inventoried. This report can be found in the Symantec
Management Console by clicking the Reports menu and selecting All Reports >
6.0 Legacy Reports > Notification Server Infrastructure > Agent > Altiris
Agent Inventory in the left pane.

Identifying HP Client Manager Supported Computers

You can view reports and collections that lists the computers managed by HP Client
Manager.

In order to view client computer information, client inventory data must exist in the
Configuration Management Database. Inventory data is gathered through
advertisements that run inventories on client computers. Inventory data is not real-time
data, but is based on the last inventory run on the client computer. Inventories are run
based on schedules. The Altiris Agent is configured by default to send basic inventory
data once a day. When a client computer sends basic inventory data, it only sends the
differences in inventory from the last time it was sent.

For information on configuring client settings, see topics about the Altiris Agent in the
Symantec Management Platform Help.

For information on HP Client Manager inventory data, see Gathering and Viewing Client
Computer Inventory (page 27).

After the Discover HP Computers policy has run, you can view the HP computers that
were discovered.

See “Discover HP Computer Systems” on page 22.

To view discovered computers, you can use a report or a filter.

See “Using HPCM Filters” on page 17.

To view discovered HP computers

1. To view a report, do the following:

a. In the Symantec Management Console, on the Reports menu, click All Reports.

b. In the left pane, click HP Client Manager > HP Client Information > HP
Supported Computer Information > All HP Computers by IP Address.

c. Click Refresh.

2. To view a HPCM filter, do the following:

a. In the Symantec Management Console, on the Manage menu, click Filters.

b. In the left pane, click HP Client Manager Filters.

c. Click a filter to view the resources that are represented in that filter.

d. Click Update membership.

To view computers not supported by HPCM

1. To view a report, do the following:

a. In the Symantec Management Console, on the Reports menu, click All Reports.

Symantec HP Client Manager 7.0 User’s Guide 25

 b. In the left pane, click HP Client Manager > Non Supported Computers >
Non Supported Computer Information.

c. Click Refresh.

2. To view a HPCM filter, do the following:

a. In the Symantec Management Console, on the Manage menu, click Filters.

b. In the left pane, click HP Client Manager Filters.

c. Click All Unsupported HP Client Manager Computers.

d. Click Update membership.

Symantec HP Client Manager 7.0 User’s Guide 26

Chapter 4
Using HP Client Manager

This section lists the tasks you can do with HP Client Manager to manage HP client
computers.

Before performing the following tasks, ensure you have completed the Getting Started
tasks listed in Getting Started with HP Client Manager (page 13).

! Gathering and Viewing Client Computer Inventory (page 27)

! Updating HP Tools (page 29)

! Using HP Instant Support System Health Scan (page 30)

! Microsoft Vista Support (page 32)

! Performing HP Backup (page 33)

! Managing BIOS and Drivers SoftPaqs (page 34)

! Managing BIOS Settings (page 38)

! Using Health Monitoring and Alerts (page 39)

! Using HP Instant Support Diagnostics (page 44)

! Configuring Data Purging (page 46)

! Configuring Altiris Agent Settings (page 47)

! Updating the HP Supported Systems List (page 47)

! Updating the HP Supported Systems List (page 47)

Gathering and Viewing Client Computer Inventory

After HP Client Manager has been rolled out to all the HP client computers, you can
begin gathering inventory data through inventory tasks. These tasks can be run on
client computers immediately or during a scheduled time. There are two tasks: one for
HP computers and one for non-HP computers.

By knowing what is on each HP computer, you can be more effective in managing it. For
example, you can gather details about the computer’s CPU, storage devices, and battery
and chasis information.

Because many networks have computers from multiple manufacturers, HPCM also lets
you gather inventory data from non-HP computers. This inventory feature is useful in
gathering basic information for all client computers on the network and then running
reports against the information.

The inventory data from client computers is sent to the Notification Server and stored in
its database, which you can access by running one of the client inventory reports.

See “Using Client Inventory Reports” on page 28..

Symantec HP Client Manager 7.0 User’s Guide 27

 This section describes the following tasks:

! Gathering Client Inventory (page 28)

! Viewing Inventory Data (page 28)

Gathering Client Inventory

You can gather specific inventory data from your client computers. You can gather
specific data from HP computers or general inventory data from non-HP computers.

You use the HP Client Inventory task to collect inventory data from HP client computers.

You use the Non HP Client Inventory task to collect inventory data from non-HP
computers.

There is default version of each task that will automatically run once a week. You can
view or change the schedule of the tasks as needed.

To view or configure HP Client Inventory tasks

1. From the HP Client Manager Home page, under Management Tasks, click Inventory
> HP Client Inventory.

2. You can view existing tasks under Task Status.

There is a default task that will automatically run once a week.

3. You can view the properties of a task, run the task, or create a new schedule for the
task.

See “Using HPCM tasks” on page 17.

To view or configure non-HP Client Inventory tasks

1. From the HP Client Manager Home page, under Management Tasks, click Inventory
> Non HP Client Inventory.

2. You can view existing tasks under Task Status.

There is a default task that will automatically run once a week.

3. You can view the properties of a task, run the task, or create a new schedule for the
task.

See “Using HPCM tasks” on page 17.

Viewing Inventory Data

There are two ways to view HP Client Manager inventory data:

! Using reports

! Using the Resource Manager

Using Client Inventory Reports

HP Client Manager includes a number of standard reports to provide detailed inventory
information for all client computers defined in the database.

Symantec HP Client Manager 7.0 User’s Guide 28

 To run inventory reports
1. From the HP Client Manager Home page, under Management Tasks, click Inventory
> View HP Client Inventory Reports.

2. In the new window that opens, in the left panel, click a report.

3. Click Refresh.

For information on using reports, click Help > Context.

Viewing HP Inventory Data using the Resource

Manager
Every discovered computer has a resource created for it in the CMDB. You can view the
inventory data for a specific computer using the Resource Manager.

To use the Resource Manager

1. Do one of the following:

" From a report, select a computer, and click Actions > Resource Manager.

" In the Symantec Management Console, from the Manage menu, click Resource,
and select a computer.

" Select a computer from a filter.

See “Identifying HP Client Manager Supported Computers” on page 25.

2. Double-click a computer to open the Resource Manager for that computer.

3. Click View > Inventory.

4. Select Data Classes > HP Client Manager Inventory.

5. Click an inventory node and view inventory data in the right pane.

Updating HP Tools
HP tools are stored on the Notification Server so that they can be used by HP Client
Manager and deployed to HP client computers. You can update the version of the
following HP tools as updates are made available through HP:

! HP Instant Support System Health Scan

! HP System Software Manager (SSM)

To update HP Tools using the HP Tool Update Wizard

1. From the HP Client Manager Home page, under Administrative Tasks, click Update
HP Tools.

2. Select the tools that need to be updated.

3. Click Update.

The files are downloaded from the HP Web site.

4. When the download is complete, close the window.

Symantec HP Client Manager 7.0 User’s Guide 29

Using HP Instant Support System Health Scan
HP Client Manager is integrated with HP Instant Support System Health Scan, which is a
tool that analyzes your computer to check its overall health status. The scan can identify
problems that may affect your computer, check to see if you have the latest drivers
installed, and provide recommendations for resolving potential issues.

HP Instant Support System Health Scan also identifies the SoftPaqs that are available for
client computers with available updates. You can then download those SoftPaqs into the
Filestore and automatically create packages and policies to deploy the SoftPaqs to the
client computers.

HP Instant Support System Health Scan also provides links to the HP Instant Support
results related to scanned client computers.

This section describes how to perform the following tasks:

! Update HP Instant Support and SSM Tools (page 30)

! Run HP Instant Support System Health Scan (page 30)

! Use HP Instant Support System Health Scan to Manage SoftPaqs (page 31)

! View HP Instant Support System Health Scan Reports (page 31)

! View HP Instant Support Health Scan Results (page 32)

Update HP Instant Support and SSM Tools

HP Instant Support and HP System Software Manager (SSM) tools are stored on the
Notification Server so that they can be used by HP Client Manager and deployed to HP
client computers. You can update the version of the HP Instant Support and SSM tools
as updates are made available through HP.

For information on updating HP tools, see Updating HP Tools (page 29).

Run HP Instant Support System Health Scan

The HP Instant Support System Health Scan task, by default, automatically runs on
computers with the HP Client Manager Agent installed at 1:30 AM every day.

To run the HP Instant Support System Health Scan

1. From the HP Client Manager Home page, under Management Tasks, click HP
Instant Support > Perform HP Instant Support Health Scan.

2. You can view existing tasks under Task Status.

3. You can view the properties of a task, run the task, or create a new schedule for the
task.

Symantec HP Client Manager 7.0 User’s Guide 30

 See “Using HPCM tasks” on page 17.

Use HP Instant Support System Health Scan to Manage

SoftPaqs
Complete the following steps for using HP Instant Support System Health Scan to
manage SoftPaqs:

1. Run the HP Instant Support System Health Scan task. This task runs by default, or
you can set up an additional schedule for the task.

2. Download HP Health Scan Softpaqs.

3. Use the HP Softpaq Delivery Wizard to deliver the SoftPaqs.

1. Run the HP Instant Support System Health Scan to identify available

SoftPaqs.
The HP Instant Support System Health Scan task, by default, automatically runs on
computers with the HP Client Manager Agent installed.

To view or edit the task, see Run HP Instant Support System Health Scan (page 30).

2. Download HP Health Scan SoftPaqs

After the HP Instant Support System Health Scan policy has run on client computers,
you can view the list of SoftPaqs that are available.

To view the list and select the SoftPaqs you want to download, do the following:

a. From the HP Client Manager Home page, under Administrative Tasks, click
Download HP Health Scan SoftPaqs.

If SoftPaqs were identified, they will appear in the list.

b. Select the SoftPaqs and click Download SoftPaqs.

The SoftPaqs are downloaded to the Notification Server and are available in the
HP SoftPaq Delivery wizard.

3. Use the HP SoftPaq Delivery Wizard to Deliver the SoftPaqs

Use the HP SoftPaq Delivery Wizard to deliver the SoftPaqs to client computers.

View HP Instant Support System Health Scan Reports

There are several predefined reports that show data from HP Instant Support System
Health Scans.

To view HP Instant Support System Health Scan reports

1. In the HP Client Manager Home page, under Management Tasks, click HP Instant
Support > View HP Instant Support Health Scan Reports.

2. The first report in the list is run automatically. Click another report in the list in the
left pane to run that report.

Symantec HP Client Manager 7.0 User’s Guide 31

 3. Some reports have parameters that allow you to customize the report output. Enter
a parameter if desired.

Note
You can also right-click any report and view other report options.

For information on reports, access the online Help.

View HP Instant Support Health Scan Results

After an HP Instant Support System Health Scan, HP Client Manager provides results
that are related to scanned computers.

To view Health Scan results

1. From the Resource Manager, click View > Events.

2. Expand HP Client Manager Inventory.

3. Click HPCMS ActiveCheckIssueResult.

To view Health Scan results through HPCM reports

1. From the Symantec Management Console, click Reports > HP Client Manager >
View all Reports.

2. Click HP Instant Support System Health Scan.

3. Select Computers with Instant Support Links.

Microsoft Vista Support

HP Client Manager supports Microsoft Vista (32-bit and 64-bit) operating systems on
client computers. From HPCM 6.2 and later, in addition to other supported operating
systems, the following types of Windows Vista operating systems are supported for
client computers:

! Vista Business

! Vista Business x64 Edition

! Vista Enterprise x32 and x64

Running Windows Vista Ready Reports

The Windows Vista Ready reports help you gather information related to Vista readiness
on client computers. You can run, view, or schedule any of the Windows Vista Ready
reports.

For more information, see topics about using reports in the Symantec Management
Platform User’s Guide.

To run Windows Vista Ready reports

1. In the Symantec Management Console, from the Reports menu, All Reports.

2. In the left pane, click HP Client Manager > Windows Vista Ready.

3. Click on one of the reports in the list.

Symantec HP Client Manager 7.0 User’s Guide 32

 Note
You can also right-click any report and view other report options.

Performing HP Backup
HP Backup and Recovery Manager is a system backup and recovery tool provided by
Hewlett-Packard. HP Client Manager is responsible for running and reporting backups.

Note
The HP Backup and Recovery feature requires Altiris Software Management Solution 7.x
to be installed. Until then, the HP Backup and Recovery task page is not available.

This section lists the steps to perform a backup of all HP computers using the HP Backup
and Recovery Manager.

Caution
After the HP Backup and Recovery Manager has backed up the hard drive, you cannot
recover the individual files that were backed up.

To configure the HP Backup Policy task

1. From the HP Client Manager Home Page, under Management Tasks, click Backup >
HP Backup and Recovery.

The HP Backup Task page appears.

2. There is a default task created, you just need to modify the task to add targets or
create a new schedule for the task.

See “Using HPCM tasks” on page 17.

Caution
We recommend that you do not change the settings of the backup task, as the
backup may fail if you do so.

Caution
The HP Backup Policy only executes properly if the scheduler.exe supplied by HP Backup
and Recovery Manager is version 1.0.4.0 or later.

Note
The HP Backup Policy performs a backup of the primary drive of all HP computers using
the HP Backup and Recovery Manager if installed on the client computer.

Disaster Recovery
HP Client Manager provides the ability to remotely request a backup on a recurring
schedule using the HP Backup and Recovery client. You cannot recover backups
remotely. Also, the backup restoration is intended only for disaster recovery and not to
recover individual lost files and folders.

Symantec HP Client Manager 7.0 User’s Guide 33

 To perform a disaster recovery
1. Restart the computer (client computer) where recovery has to be done.

2. Press F11 when the Press F11 for emergency recovery prompt is displayed.

3. From the Welcome to PC Recovery window, select Recover PC to a specific

point in time. Click Next.

4. A list of Recovery Points appear. Select the appropriate Recovery Point and click
Next.

5. In the Smart PC Recovery window, two options are provided:

" Browse new and updated files to preserve.

If this option is selected, the user can preserve existing files updated or created
since the creation of the selected Recovery Point or Entire Drive Backup.

" Recover PC without preserving new and updated files.

If this option is selected, any changes to the operating system configuration or
applications made after the creation of this Recovery Point or Entire Drive Backup is
lost.

Once you make a choice, the HP Backup and Recovery Manager begins the recovery
process.

Managing BIOS and Drivers SoftPaqs

This section helps you learn how to manage BIOS and driver files so that all HP client
computers can be kept up-to-date with the latest information available from the HP Web
site.

This section includes the following information:

! SoftPaq Drivers Overview (page 34)

! Import HP SoftPaqs (page 35)

! Using HP Instant Support System Health Scan to Automatically Manage SoftPaqs

(page 35)

! Manually Managing SoftPaqs (page 36)

! SoftPaq Delivery Reports (page 37)

SoftPaq Drivers Overview

A SoftPaq is a single executable file containing drivers, BIOS updates, or other system
files unique to HP computers. SoftPaqs can be deployed to numerous computer models
or to a specific model. SoftPaqs are available from the HP Web site at www.hp.com/
support/files.

HP Client Manager interacts with Notification Server using the software delivery
functions to send SoftPaqs to client computers. This process takes advantage of the
features available in Notification Server, such as:

! Checkpoint recovery, which lets you resume downloading a file if interrupted

! Bandwidth throttling, which lets you control how much bandwidth a download can
use

! Data to generate reports

Symantec HP Client Manager 7.0 User’s Guide 34

 You can access SoftPaqs in two ways:

! Use HP Instant Support System Health Scan to automatically determine which

SoftPaqs are needed on client computers and automatically download them. See
Using HP Instant Support System Health Scan to Automatically Manage SoftPaqs
(page 35).

! Manually download SoftPaqs from the HP Web site. See Manually Managing SoftPaqs
(page 36).

Import HP SoftPaqs
The SoftPaq Filestore is an allocated storage area where you can store and update
SoftPaq files that you download from the HP Web site. The default path for the filestore
is C:\Program Files\Altiris\Notification Server\NSCap\Bin\Win32\X86\HPCMS\Filestore
For details, see Manually Downloading and Storing SoftPaqs (page 36).

Updating the Filestore and Importing the SoftPaqs: Updating the Filestore by
downloading SoftPaqs and importing the SoftPaqs refreshes the database in the
Notification Server, which populates the Select a SoftPaq page of the SoftPaq Delivery
Wizard. Files that are downloaded from HP and imported are available for delivery in the
HP SoftPaq Delivery Wizard.

If you use HP Instant Support System Health Scan, SoftPaqs are automatically added to
the Filestore and it is updated automatically. See Use HP Instant Support System Health
Scan to Manage SoftPaqs (page 31).

However, there may be cases when you want to manually add files and manually update
the Filestore. Example: HP Instant Support System Health Scan may not work properly
because you are behind a firewall or you may want to manually manage the file library.
See Manually Managing SoftPaqs (page 36).

To import HP SoftPaqs
1. On the HP Client Manager Home Page, under Administrative Tasks, click HP
SoftPaq Import.

2. Enter the full path to the Filestore. By default, this is C:\Program

Files\Altiris\Notification Server\NSCap\Bin\Win32\X86\HPCMS\Filestore.

3. Click Import.

Update SSM Tools

HP Client Manager uses HP System Software Manager (SSM), which is a utility that helps
streamline the mass deployment of system software updates to client computers. You
can update the version of the SSM tools as updates are made available through HP.

For information on updating HP tools, see Updating HP Tools (page 29).

Using HP Instant Support System Health Scan to Automatically

Manage SoftPaqs
HP Instant Support System Health Scan automatically identifies SoftPaqs that are
available for HP client computers. You can then download those SoftPaqs into the

Symantec HP Client Manager 7.0 User’s Guide 35

 Filestore and use the HP SoftPaq Delivery Wizard to deploy the SoftPaqs to the client
computers.

For details, see Using HP Instant Support System Health Scan (page 30).

Manually Managing SoftPaqs

You can manually download SoftPaqs to your Filestore and then use the SoftPaq Delivery
Wizard to create packages and policies to deploy SoftPaqs to client computers.

Scenario
The diagram below shows the process of deploying a new audio driver SoftPaq to HP
client computers. The audio driver is downloaded from the HP Web site to the local
server. HP Client Manager updates the Filestore and a list of compatible computer
models is displayed. The DesktopD530 computer model is selected to receive the audio
driver. The policy is scheduled to run during off-peak network hours at 2:00 a.m. Clients
that receive the policy connect to the Notification Server and the audio driver SoftPaq is
deployed.

Manually Downloading and Storing SoftPaqs

SoftPaqs are drivers, BIOS, or other system updates that are unique for a particular
computer model. After client information is collected from the computers on the
network, a report can be created to easily identify which computer models need SoftPaq
updates. You can download SoftPaqs from the HP Web site at www.hp.com/support/files.

The process of downloading and storing SoftPaqs is ongoing because HP frequently

releases new SoftPaqs. To keep the computers updated with the latest driver and BIOS
information, HP recommends that you check for new SoftPaqs on a regular basis.

Symantec HP Client Manager 7.0 User’s Guide 36

 To manually download and store SoftPaqs
1. Browse to the HP Support and Drivers Web page at www.hp.com/support/files.

2. Download the desired SoftPaqs and save them to the Filestore folder at C:\Program
Files\Altiris\Notification Server\NSCap\Bin\Win32\X86\HPCMS\Filestore See Import
HP SoftPaqs (page 35).

3. Import the SoftPaqs. See Import HP SoftPaqs (page 35).

4. Run the SoftPaq Delivery Wizard (page 37).

SoftPaq Delivery Wizard

This wizard lets you select SoftPaqs to be delivered to target computers. Before you can
deploy SoftPaqs to HP client computers, you must first download the latest SoftPaq files
and then import them to the Filestore (see Manually Downloading and Storing SoftPaqs
(page 36) and Import HP SoftPaqs (page 35)). You must also have discovered the HP
client computers on the network and deployed the HP Client Manager Agent. To view a
collection of computers with the agent installed, see Identifying HP Client Manager
Supported Computers (page 25). After you complete both these requirements, you can
begin using the SoftPaq Delivery Wizard.

The SoftPaq Delivery Wizard creates a package of the SoftPaq files, a policy that initiates
when the package gets deployed, and a collection of the computers where the SoftPaq
package will be deployed.

The following instructions guide you through the step-by-step process of creating and
deploying a SoftPaq package to a collection of HP computers on the network.

To deploy a SoftPaq
1. From the HP Client Manager Home Page, under Management Tasks, click Driver
Updates > HP SoftPaq Delivery Wizard.

2. In the Available HP SoftPaqs list, select the SoftPaq you want to deliver. If you have
selected a BIOS SoftPaq, enter the BIOS setup password in the Password field.

3. If full volume encryption is enabled on the computers you are delivering the SoftPaq
to, select the Upgrade SoftPaq forcefully check box to enable it.

4. Click Next.

5. The computers that the SoftPaqs you have selected are applicable to are listed.
Select one or more of the computers and click Next.

6. Set the schedule for the SoftPaq deployment. Once you have set the schedule, you
see the Jobs and Tasks window where you can see the status of the task.

SoftPaq Delivery Reports

SoftPaq reports can help you determine which SoftPaq files were deployed, the collection
of client computers that received the package, and if the SoftPaq package was
successfully installed.

Symantec HP Client Manager 7.0 User’s Guide 37

 To Run SoftPaq Delivery Reports
1. From the HP Client Manager Home Page, under Management Tasks, click Driver
Updates > View detailed HP Softpaq delivery reports.

2. Select HP Program Execution (All).

3. Select the specific Softpaq from “Software Delivery Task Name” to run the report.

Note
You can also right-click any report and view other report options.

For information about reports, access the online Help.

Managing BIOS Settings

You can manage the BIOS and security settings for client computers by creating a task
that deploys new settings to client computers.

This section describes the following tasks:

! Using the HP BIOS Administration Wizard (page 38)

! Creating and Viewing BIOS Reports (page 39)

Using the HP BIOS Administration Wizard

HP Client Manager simplifies this task by providing an HP BIOS Administration wizard
that guides you through the process of selecting the BIOS settings to modify and choose
the computers the settings apply to, as well as when the BIOS settings are deployed to
a client computer.

There is one BIOS Administration Wizard:

! HP BIOS Administration Wizard (page 38)

The HP BIOS Administration Wizard guides you though the step-by-step process of
specifying your BIOS settings, choosing the computers to apply the settings to, and
scheduling deployment. The task you create can be enabled to deploy immediately, or
you can set a schedule to run it during off-peak network hours. You can change BIOS
passwords, the chassis lock and intrusion sensor, access to the external port, the UUID,
the BIOS boot order, and enable or disable the Wake on LAN functionality. In the
advanced section of the wizard, you can configure advanced BIOS settings not found in
the Main tab of the BIOS Wizard. These advanced BIOS settings are based on actual
inventory results obtained when client computers execute the HP Client Inventory task.

HP BIOS Administration Wizard

To run the BIOS Administration Wizard
1. On the HP Client Manager Home Page, under Management Tasks, click BIOS
Management > HP BIOS Administration Wizard.

2. The first step in the Wizard is to choose your main Bios Administration settings. For
each of the settings shown, select the appropriate option, either Leave existing, or
enable/disable, lock/unlock, hidden/available, etc. You can also change the BIOS
password.

Symantec HP Client Manager 7.0 User’s Guide 38

 3. If you have BIOS setup protection, enter the current BIOS ‘Setup password so
that the BIOS settings are accepted at client computers, and then click Next.

Note
If the password you enter does not match the password of the client HP computer,
the BIOS changes are not accepted.

4. Select the Advanced tab to set the advanced BIOS settings. Configure the BIOS
advanced options according to the available options listed. Whatever is listed in your
HPCMS BIOS settings will be visible in the Advanced tab.

5. Select the Boot order tab to set the boot order for client computers anytime they
are reset or powered on. You can leave the settings as is, or select Change boot
order and use the up and down arrows to rearrange the boot order.

6. Click Next to choose the computers on which to run the BIOS settings.

7. Choose the computers or resources to run the BIOS settings on.

8. Click Next to set the schedule for the BIOS settings.

9. Click Apply.

Creating and Viewing BIOS Reports

Because there are many possible BIOS settings, there are not predefined reports for
each possible BIOS setting. However, HP Client Manager provides the HP BIOS Report
Wizard that helps you create custom reports for the BIOS settings you choose.

To run the HP BIOS Report Wizard

1. In the Symantec Management Console, click Reports > HP Client Manager >
Create HP BIOS Reports.

2. In the Instructions screen of the Wizard, click Next.

3. In the HP BIOS Settings screen of the Wizard, select the HP BIOS settings that you
want to include in the report and click Next.

4. In the HP BIOS Report Configuration screen of the Wizard, select whether you want
the BIOS settings to be joined by OR or AND and click Finish.

5. To view the report you have generated, in the Symantec Management Console,
select Reports > HP Client Manager > HP BIOS.

Using Health Monitoring and Alerts

HP Client Manager monitors the health or functioning of a computer. The health is
defined as a set of elements performing within a range of values and functionality. When
a health-related component is outside the set range or not functioning in the desired
state, the Health Agent generates an alert event about the client computer, and is sent
to the Notification Server. You can configure which health settings are monitored.

The Notification Server adds this event to the CMDB, where notification tasks can
discover the event and take user-defined actions. Predefined notification tasks monitor
the CMDB for health events. These notification actions can include creating a report,
sending an e-mail to the administrator, creating an SNMP trap, or adding a ticket to the
Alert Manager.

Symantec HP Client Manager 7.0 User’s Guide 39

 The notification tasks can be modified, or you can create your own. If you do not want
any actions taken with health alerts, you can disable the health monitoring notification
tasks completely.

You can also configure HP client local alerts so that the local client computers are also
shown the alerts for health events.

The following types of health alerts are available:

! Asset change alerts, which monitor changes to assets of the computer

! Threshold alerts, which notify you if the levels of disk space or battery charge fall
below an acceptable level.

! Hardware health alerts, which monitor the hardware on your computers for
problems.

Note
Available health settings and alerts vary by platform.

You can perform the following tasks to configure health monitoring and alerts.

! Configure HP Client Health Monitoring Settings (page 40)

! HP Client Local Alerts Settings (page 41)

! HP Client Manager Automation Policies (page 43)

! HP Health Monitor Reports (page 44)

Configure HP Client Health Monitoring Settings

The HP Health Monitor Task determines the data that is collected from the HP client
computers. You can select the group of HP client computers that this task applies to;
however, the default filter target for all managed HP computers is: Computers with HP
Client Manager Agent Installed.

The HP Client Health Monitoring task is enabled by default. When the HPCM Agent is
installed, HP Client Health Monitoring is enabled. After the HP Health Monitoring task is
sent to the target client computers, the health data for each computer is sent to the
Notification Server’s database. All the data collected can be viewed through the HP
Health Monitor Reports (page 44). You can apply modified HP Client Health Monitoring
Settings to client computers.

To change the HP Client Health Monitoring Task

1. On the HP Client Manager Home Page, under Management Tasks, click Alerts > HP
Health Monitoring.

2. Select the appropriate check box to enable or disable Asset Change alerts, Health
Monitoring Alerts, or Hardware Health Alerts. By default, all the health alerts are
enabled. Clear the check box next to each type of alert if you do not want to monitor
that component.

Symantec HP Client Manager 7.0 User’s Guide 40

 HP Client Manager Health Monitor Alerts
Asset change This monitors any hardware changes made in the computer. Areas
alerts monitored include:

! Battery

! Disk drive

! CPU

! Memory

! Monitor

! Chassis lock status

Threshold alerts This monitors the levels of disk space or battery charge and notifies you
when the levels fall below an acceptable level. By default, you are
alerted if free disk space falls below 30% or battery charge level
remaining falls below 5%.

You can modify the default threshold levels.

Hardware This monitors problems with the hardware on your computers. Items
health alerts monitored include:

! S.M.A.R.T disk drive predictive failures

! CPU thermal

! Fan stall

! Chassis intrusion sensor

! Memory warnings

! Cable not detected for audio, fan, or USB

! Battery charge degradation

3. Click Save Changes.

4. To roll out the Health Monitoring Tasks to client computers, click New Schedule to
schedule the task and set the target client computers for the task.

Note
If you want the Health Monitoring Tasks rolled out to all monitored HP computers,
you need to add a target to your new schedule, add a new rule to that target, and
specify that the filter rule “excludes computers not in” the Computers with HP
Client Manager Agent Installed filter as the target of the task.

See “Using HPCM tasks” on page 17.

5. To configure the actual alerts for these events, see HP Client Manager Automation
Policies (page 43).

HP Client Local Alerts Settings

HP Client Manager provides a task that configures alerts to be displayed on local client
computers in the event of health monitoring events. You can configure which alerts are
displayed and alert display options. Local alerts settings provide more granularity and

Symantec HP Client Manager 7.0 User’s Guide 41

 control over health alerts than the standard HP Client Health Monitor Settings. With local
alerts settings, you can enable or disable individual alerts, instead of just enabling or
disabling the broad alert categories.

HP Client Local Alerts are enabled by default. You can view or change the settings and
schedule as needed by editing the HP Local Alerts task.

Note
HP Client Local Alerts apply to the same events configured for the HP Client Health
Monitoring Task. The Local Alerts have a dependency on the HP Health Alerts. If, in the
HP Health Alerts, Asset Change alerts are disabled and rolled out to a computer, the
computer will not see any Asset Change alerts, even if they are enabled under the Local
Alerts settings. In order for the local alerts to work, the HP Client Health Monitoring Task
must be enabled and the component must be selected. If a component is not selected in
the HP Client Health Monitoring Policy, the local alert will not work.

To configure HP Client Local Alerts

1. On the HP Client Manager Home Page, under Management Tasks, click Alerts > HP
Local Alerts.

2. Configure the alert settings listed in the following table:

HP Client Manager Local Alerts Settings

User can By selecting this option, the user can enable or disable local alerts. By
enable/disable default, this setting is on.
alerts (display
icon in user’s If this option is selected, the icon appears in the user’s system tray.
system tray)
Users can right-click the icon to disable local notification of events. They
can also right-click or double-click the icon to view a log of events.
Allow users to By selecting this option, the user can close the alert dialog. By default,
close local alerts this setting is on.
Automatically Specifies the number of seconds that the alert displays before
remove alert automatically closing. The default is 20 seconds.
after x seconds

3. Configure the individual Asset change, threshold, and Hardware health alert
settings. You can enable or disable each individual setting.

4. Click Save Changes.

5. To roll out the Local Alerts Settings to client computers, click New Schedule to
schedule the task and set the target client computers for the task.

Note
If you want the Local Alerts Settings rolled out to all monitored HP computers, select
the All HP Computers with HP Client Manager Agent Installed filter as the
target of the task.

See “Using HPCM tasks” on page 17.

6. To configure the actual alerts for these events, see HP Client Manager Automation
Policies (page 43).

Symantec HP Client Manager 7.0 User’s Guide 42

HP Client Manager Automation Policies
When HP Client Manager detects a health monitor event, you can configure automation
policies to perform an alert action. Several predefined polices are provided. Each policy
can perform any of the following alert actions:

! Generate a snapshot report

! Send an e-mail

! Send e-mail with the details of Report URL

By default, each policy is enabled with the Generate Report action selected.

You need to test the automation policies to ensure that they are working.

First, you need to configure the Notification Server email settings. You need to provide
the email addresses of those that you want to receive the emails on the alert actions.

To Configure the Notification Server Email Settings

1. In the Symantec Management Console, click Settings > Notification Server
Settings.

2. Select the E-mail tab.

3. Enter the email address of the person who should receive the emails in the To: field.

4. Click Send test e-mail to ensure that the emails are working. You can also perform
these steps during Symantec Management Platform installation and modify the
settings later as described in this procedure.

Next, you need to enable the HPCM Automation Policy.

To Enable and test the HPCM Automation Policy

1. In the Symantec Management Console, click Manage > Policies > Automation
Policies > HPCMS Automation Policy With Query.

2. Ensure that the automation policy is turned on.

3. A default schedule is provided. You can use a 1-minute schedule for testing
purposes.

4. The Data Source field contains the source of the data that the automation policy
sends information from. A SQL query is provided to generate the result set. This
query’s results can be added as an output in the email generated by an alert.

5. The Condition field specifies the trigger for the automation policy. This field is set to
run on non-empty data, which means that if no data is returned from the query, the
automation policy will not send email or perform the specified action.

6. The Actions area specifies what actions are taken by the automation policy when the
data source returns a result. Any Job or Task can be run as an action. Click Edit
Input Parameter to provide the input parameter for the job or task.

7. To test this automation policy immediately, click Test Automation Policy.

8. After testing the automation policy, you will get an email with a URL of the snapshot
report that is generated as the action of the automation policy. Click the URL to get
to the data in the report.

Once the action for the job you have just created is run, the job does the following
things:

Symantec HP Client Manager 7.0 User’s Guide 43

 Generates a Snapshot Report

A preconfigured task generates the report. The report name is “HPCMS Report Test”.
This report can be configured during installation or it can be modified later.

Sends an email with this report’s URL to the specified email address

This task is pre-configured at installation time and added as a dependent task of

“Generate Snapshot report”. If you want to provide “to” and “cc” information in the “Hp
Client Manager Send Notification Email” task, the following is the current behavior:

! If you specify the “cc” address and leave the “to” address blank, the task will fail.

! If you specify the “cc” address and the “to” address, the task email will be sent
successfully.

! If you specify the “to” address and no “cc” address, the email will be sent to the “to”
address.

! If you leave both the “to” and “cc” addresses blank, the email will be sent to the
administration email address, if that is set up.

HP Health Monitor Reports

You can run, view, or schedule any of the HP Health Monitor reports, which can help you
identify issues on client computers.

To Run Health Monitor Reports

1. In the Symantec Management Console, click Reports > All Reports.

2. Click HP Client Manager > HP Health Monitor.

3. The first report in the list is run automatically. Click another report in the list in the
left pane to run that report.

4. Some reports have parameters that allow you to customize the report output. Enter
a parameter if desired.

Note
You can also right-click any report and view other report options.

For information on reports, click the help icon.

Using HP Instant Support Diagnostics

HP Client Manager is integrated with HP Instant Support to provide remote diagnostics
on supported client computers. HP Instant Support Diagnostic tools are installed on all
managed HP client computers that run and report data to the Notification Server.

You can review the diagnostic data sent from the client computers to the Notification
Server by running HP Instant Support Diagnostics reports. Some of the diagnostic data
you can view detailed information about include memory, hard disks, modems, ports,
keyboards, pointing devices, NICs, and batteries.

Collecting diagnostic data is initiated by The HP Instant Support Diagnostics Task, which
causes all client computers to communicate with the Notification Server. After you
gather diagnostics from a collection of client computers, you can view or print HP Instant
Support Diagnostics Reports.

Symantec HP Client Manager 7.0 User’s Guide 44

 This section describes the following tasks:

! Updating HP Instant Support Diagnostics Tools (page 45)

! Installing HP Instant Support Diagnostics on Client Computers (page 45)

! The HP Instant Support Diagnostics Task (page 45)

! HP Instant Support Diagnostics Reports (page 46)

Updating HP Instant Support Diagnostics Tools

HP Instant Support Diagnostic tools are stored on the Notification Server so that they
can be deployed to HP client computers. You can update the version of the HP Instant
Support Diagnostic tools as updates are made available through HP.

For information on updating HP tools, see Updating HP Tools (page 29).

Installing HP Instant Support Diagnostics on Client Computers

The HP Instant Support Diagnostics Install task, by default, automatically installs HP
Instant Support Diagnostics tools on all HP client computers with the HP Client Manager
Agent installed.

See “Using HP Instant Support Diagnostics” on page 44.

To view or modify the HP Instant Support Diagnostics Install Task

1. On the HP Client Manager Home Page, under Management Tasks, click HP Instant
Support > Install HP Instant Support Diagnostics.

2. There is a default task to roll out HP Instant Support to client computers. If desired,
you may modify the targets of the task or the schedule for the task rollout.

See “Using HPCM tasks” on page 17.

To view HP client computers with HP Instant Support Diagnostics tools

installed
1. In the Symantec Management Console, click Manage > Filters > HP Client Manager
Filters.

2. Click All HP Computers with HP Instant Support Diagnostics tools installed.

The HP Instant Support Diagnostics Task

The HP Instant Support Diagnostics task performs diagnostics on client computers. The
diagnostics performed collects computer information, such as processor speed, hard
disk size, and memory configuration. After the task is sent to a collection of client
computers, the diagnostic data for each computer is sent to the Notification Server. All
the data collected can be viewed through the HP Instant Support Diagnostics Reports.

By default, at 2:00 a.m. on the last Sunday of every month, diagnostic data is collected
on all client computers belonging to the All HP Computers with HP Instant Support
Diagnostics Installed collection. You can collect data from a selected group of
computers, such as all computers running Windows 2000. You can change the schedule
or the collection of computers by changing the policy’s properties.

Symantec HP Client Manager 7.0 User’s Guide 45

 Note
We recommend that you collect data during off-peak network hours and on a monthly
basis to minimize impact to the network.

To view or change the HP Instant Support Diagnostics Task

1. On the HP Client Manager Home Page, under Management Tasks, click HP Instant
Support > Perform HP Instant Support Diagnostics.

2. By default, there is a default task already specified. If desired, you may modify the
targets of the task or the schedule for the task rollout.

See “Using HPCM tasks” on page 17.

HP Instant Support Diagnostics Reports

HP Client Manager lets you gather Instant Support Diagnostic information from
managed HP client computers. The client data is stored in the CMDB so that you can run
a variety of diagnostic reports. These reports help you analyze and identify issues with
client computers throughout your infrastructure.

To run HP Instant Support Diagnostics reports

1. On the HP Client Manager Home Page, under Management Tasks, click HP Instant
Support > View HP Instant Support Diagnostics Reports.

2. The first report in the list is run automatically. Click another report in the list in the
left pane to run that report.

3. Some reports have parameters that allow you to customize the report output. Enter
a parameter if desired.

Note
You can also right-click any report and view other report options.

For information about reports, access the online Help.

Configuring Data Purging

This section gives information about the data purging technique, which lets you set the
period for which the captured data remains in the CMDB.

To configure data purging

1. In the Symantec Management Console, click Settings > Notification Server >
Purging Maintenance.

2. Select the Resource Event Data Purge Settings tab.

3. In the HP Client Manager Inventory section, you can set the period and other
settings for purging HPCM data, which includes data related to Diagnostics and
Health monitoring. The default settings for the HPCM data retention period is 6
months and maximum rows are 1,000,000.

For information on data purging configuration, see the Symantec Management Platform
Help.

Symantec HP Client Manager 7.0 User’s Guide 46

Configuring Altiris Agent Settings
The Altiris Agent must be deployed to each client computer that you want to manage
through the Notification Server and HP Client Manager. The Altiris Agent Settings page
lets you change General, Interaction, or Advanced settings.

Access the Symantec Management Platform Help for information about Altiris Agent
Settings.

Updating the HP Supported Systems List

If you add new client computers to your network infrastructure after HP Client Manager
has been installed to the Notification Server, you need to update the list of supported
computers in the CMDB.

You can update the supported System IDs (sysIDs) by connecting through the Internet
to an Altiris server where you can download the updated systems, which automatically
updates the CMDB tables.

You can also download the sysID file from any computer that is connected to the
Internet, save it to any storage media, and then update the CMDB by importing the
saved file.

To update the HP supported systems list

1. From the HP Client Manager Home page, under Administrative Tasks, click Update
HP Supported Systems List.

2. You will see a message indicating whether your systems are up to date or are not up
to date. If your systems are up to date, no further action is needed. If your systems
are not up to date, do one of the following to update your supported systems list:

" If the computer is connected to the Internet, you can update by downloading
the supported systems list. By default, the Internet option is selected. Click
Update to download the .xml file which contains the supported systems list.

" If the computer is not connected to the Internet, download the .xml update file
from another computer and place it in an accessible location. Once you have
done that, click the File option, enter the path to the file or browse to it, and
click Update.

Note
When updating the supported HP client computer list from the HP Update Supported
Systems List page, you should run the Notification Server from the hosting server.

Symantec HP Client Manager 7.0 User’s Guide 47

Using platform tasks
HP Client manager uses tasks in the Symantec Management Framework, a part of the
platform, to perform the following tasks:

! Discover HP computers
See “Discover HP Computer Systems” on page 22.

! Install the HP Instant Support Diagnostics package

See “Using HP Instant Support System Health Scan” on page 30.

! Perform an inventory of non-HP computers

See “Gathering and Viewing Client Computer Inventory” on page 27.

Symantec HP Client Manager 7.0 User’s Guide 48

Chapter 5
Embedded Security Support

Embedded Security support is provided through an embedded hardware security chip

called the Trusted Platform Module (TPM). Using HP Client Manager you can manage
TPM embedded security devices present on HP computers.

This section explains the tasks that let you manage Embedded Security devices present
on HP computers. The HPCM Agent is used to configure and set Embedded Security
properties based on the changes configured by the administrator. The HPCM Agent
discovers the HP computers that support Embedded Security while gathering inventory
and executes Embedded Security related tasks as scheduled.

The administrator can view information related to inventory and backup data about
Embedded Security-enabled HP computers. This information is available as reports
related to Embedded Security.

The Embedded Security Wizard is the preferred method to configure systems that
contain a TPM. Using the Embedded Security Wizard ensures that the proper collections
are selected for specific TPM tasks.

Note
We recommend that you read the HP ProtectTools Security Manager Guide to gain an
understanding of how Embedded Security works. This guide can be found on the HP Web
site for each model: http://www.hp.com/.

Quick Links

! Managing Embedded Security tasks using the HP Embedded Security Wizard

(page 49)

! Initializing Embedded Security (page 51)

! Configuring Embedded Security Credentials (page 52)

! Modifying Security Owner Passwords (page 52)

! Managing Security User Passwords (page 53)

! Managing Security Credentials and Settings (page 54)

! Running Embedded Security Reports (page 56)

Managing Embedded Security tasks using the HP

Embedded Security Wizard
Embedded Security provides administrators with the ability to lock encrypted data of
any HP Computer that includes the Embedded Security Chip. The wizard has the same
task options that are described in the Embedded Security Configuration and Embedded
Security Credential Management tasks.

Symantec HP Client Manager 7.0 User’s Guide 49

 This wizard lets you to do the following:

! Initialize Embedded Security

! Modify security owner passwords

! Reset user passwords

! Manage security credentials and settings. You can archive and restore the
credentials and settings

To manage the computer's embedded security

1. On the HP Client Manager Home page, under Management Tasks, click Embedded
Security > HP Embedded Security Wizard.

2. On the Choose Embedded Security Task page, select the security management task
you want to perform. The options available are:

" Initialize Embedded Security.

If you select this option, you need to select the option that enables the user to
allow or reject the initialization option. For information on this task, see
Initializing Embedded Security (page 51).

" Modify security owner password.

Select this option to modify the security owner password. For information on
this task, see Modifying Security Owner Passwords (page 52).

" Manage security user passwords (reset user passwords).

Select this option to manage the user password. For information on this task,
see Managing Security User Passwords (page 53).

" Manage security credentials and settings.

Select this option to create an archive or restore the Embedded Security
credentials and settings. For information on this task, see Managing Security
Credentials and Settings (page 54).

The options that appear in the wizard are based on the selected task.

3. Click Next, and follow the prompts accordingly to configure the embedded security
task.

4. Click Next, and specify the collection of computers that the task should be applied
to. You can specify a filter, which lists a group of computers that you might want to
apply the task to. You can click Quick Apply, enter the name of the filter, and click
Apply. This displays the computers that meet the specified filter criteria.

Note
If you change the default collection for a task, then even if you change the task, the
same collection is applied to the task.

5. Click Next, and set the schedule for the Embedded Security task to run.

6. Click Finish.

About Selecting Filters

When you select the collection of computers that the task will be applied to, you can
select a group, filter, or target. There are a number of filters created for HPCM that you

Symantec HP Client Manager 7.0 User’s Guide 50

 may want to use to specify the collection of computers the task will apply to. The
following filters are available for Embedded Security.

" Computers with Embedded Security Support

" Computers without Embedded Security initialized

" Computers with Embedded Security initialized

" Computers without Embedded Security Reset Password token file created

" Computers with Embedded Security Reset Password token file created

" Computers without Embedded Security archived

" Computers with Embedded Security archived

Although you can select any of these filters for a task, it is preferred that you select the
recommended filter for a task to ensure that the task is executed properly.

Initializing Embedded Security

The Embedded Security Initialization task initializes Embedded Security.

Note
In order for HP Client Manager to support Embedded Security, the following
prerequisites need to be met:
1. The target system must have a BIOS administrator password.
2. The Embedded Security chip must be enabled in the BIOS.
3. The Embedded Security Software must be installed on the computer.

To initialize Embedded Security

1. On the HP Client Manager Home page, under Management Tasks, click Embedded
Security > HP Embedded Security Wizard.

2. Select the Initialize Embedded Security button.

3. To allow the user to have a choice to accept or reject initialization, select the Allow
user to reject initialization check box. If this check box is not selected, the user
can only accept the initialization.

4. Click Next, and enter the BIOS Administrator password to initialize Embedded
Security.

5. Enter the Embedded Security owner password and retype the password to confirm
it. This should be a new password while initializing the owner on the selected
computers for the first time.

6. Click Next.

7. Click Apply to > Quick Apply.

8. Enter the following filter name: “Computers without Embedded Security initialized”.

9. Click Apply.

10. Click Next, and set the schedule for the Embedded Security task to run.

See “Using HPCM tasks” on page 17.

11. Click Finish.

Symantec HP Client Manager 7.0 User’s Guide 51

 12. After initializing the Embedded Security chip, the end user must create a user
password. From the HP ProtectTools Security Manager, select Embedded Security
> User Settings. Select Yes in the dialog box when you are asked if you want to
begin the User Initialization Wizard.

13. Follow the steps in the wizard to set the Basic User Password.

After this task is executed successfully on the client computer, the user can view the
status of the chip as Enabled and the owner as Initialized.

Configuring Embedded Security Credentials

The Embedded Security Credential Management task is used to manage security
credentials and settings. Administrators also use this task to manage the security owner
and user passwords.

To configure Embedded Security Credentials

1. On the HP Client Manager Home page, under Management Tasks, click Embedded
Security > HP Embedded Security Wizard.

2. On the Choose Embedded Security Task page, select the embedded security
credentials task you want to perform. The options available are:

" Modify security Owner password. Use this option to modify the security
owner password. See Modifying Security Owner Passwords (page 52).

" Manage security User passwords (reset user passwords). Use this option
to manage the security user password. See Managing Security User Passwords
(page 53).

" Manage security credentials and Settings. Use this option to back up or
restore Embedded Security Credentials and Settings. See Managing Security
Credentials and Settings (page 54).
The options that appear in the wizard are based on the selected task.

3. Click Next, and follow the prompts accordingly to configure the embedded security
credentials task.

4. Click Next.

5. Click Apply to > Quick Apply.

6. Enter the following filter name: “Computers without Embedded Security initialized”.

7. Click Apply.

8. Click Next, and set the schedule for the Embedded Security Credentials task to run.

9. Click Finish.

Modifying Security Owner Passwords

The security owner password is required to perform critical administrative Embedded
Security tasks. This password must be changed at regular intervals for security
purposes. The Modify Security Owner Password option lets the owner change the
password.

Symantec HP Client Manager 7.0 User’s Guide 52

 To modify the security owner password
1. On the HP Client Manager Home page, under Management Tasks, click Embedded
Security > HP Embedded Security Wizard.

2. Select the Modify security Owner password button.

3. Click Next, and enter the current owner password in the Current Owner password
field.

4. Enter the new owner password in the New Owner password field and retype the new
password to confirm in the Confirm Owner password field.

5. Click Next.

6. Click Apply to > Quick Apply.

7. Enter the following filter name: “Computers with Embedded Security initialized”.

8. Click Apply.

9. Click Next, and set the schedule for the Embedded Security Credentials task to run.

10. Click Finish.

Managing Security User Passwords

This feature is used to reset an Embedded Security user’s password in case the user has
forgotten the password or has problems with the authentication device. Before you reset
the user password, you must create a new token to be used for Password Reset. This
token is written to the location you have specified and requires a new token password to
access it.

To create the Password Reset Token file

1. On the HP Client Manager Home page, under Management Tasks, click Embedded
Security > HP Embedded Security Wizard.

2. Select the Manage security User passwords (Reset user passwords) button.

3. Click Next, and select the Create Password Reset Token file option to generate
a password reset token file.

Notes

" The Embedded Security chip must be enabled and the owner must be initialized
to create the Password Reset Token file. See To initialize Embedded Security
(page 51).

" The Password Reset Token file that is created through this task is used to reset
the Embedded Security user password.

4. Enter a password for the Password Reset Token file and retype the password to
confirm it.

5. Click Next.

6. Click Apply to > Quick Apply.

7. Enter the following filter name: “Computers without Embedded Security Password
token file created”.

8. Click Apply.

Symantec HP Client Manager 7.0 User’s Guide 53

 9. Click Next, and set the schedule for the Embedded Security Credentials task to run.

10. Click Finish.

After the Password Reset Token file is created, the users must authorize the owner to
reset their embedded security user passwords. The owner can reset the user passwords
only if the users have provided authorization to reset their password. The owner must
instruct all TPM users of client computers to provide authorization. The users can
provide authorization by accessing the Embedded Security Software installed on their
computers and selecting the task Password Reset > Configuration and Enable >
User Task > Enable Password Reset for Current User.

After the user clicks Enable, authorization is given to the owner to reset the password.

To reset the Security User Password

1. On the HP Client Manager Home page, under Management Tasks, click Embedded
Security > HP Embedded Security Wizard.

2. Select the Manage security User passwords (Reset user passwords) button.

3. Click Next, and select the Reset security User password button.

4. Type the user name and the Reset token password. The Reset token password is the
one that was provided while creating the Password Reset Token file.

5. Click Next.

6. Click Apply to > Quick Apply.

7. Enter the following filter name: “Computers with Embedded Security Reset
Password token file created”.

8. Click Apply.

9. Click Next, and set the schedule for the Embedded Security Credentials task to run.

10. Click Finish.

After this task is executed, a dialog appears at the client computer that displays the
generated Reset Authorization code. This action takes place only after ensuring that the
logged-on user is the same for whom the task is applied.

Managing Security Credentials and Settings

Use the Manage Security Credentials and Settings task to archive and restore
Embedded Security credentials and settings data.

The Archive option lets you create a backup of the Embedded Security credentials and
settings of the Owner, and the users that are initialized on the computer. The credentials
and settings of those users that will be initialized after the archive is created are not
added to the backup. The administrator has to execute the Archive task again to add the
new user’s settings to the archive.

The Restore option lets you restore the archived Embedded Security credentials and
settings from the CMDB to the Embedded Security chip.

Note
Preparation for user's restoration is done only for those users whose Embedded Security
credentials and settings have been archived.

Symantec HP Client Manager 7.0 User’s Guide 54

 To archive Embedded Security Credentials and Settings
1. On the HP Client Manager Home page, under Management Tasks, click Embedded
Security > HP Embedded Security Wizard.

2. Select the Manage security credentials and settings button, and select Archive
from the drop-down list.

3. Click Next, and enter the Embedded Security Owner password and the new
Recovery token password. Retype the Recovery token password for confirmation.

Note
The Recovery token password is used when Security credentials and settings data is
restored based on the archived data.

4. Click Next.

5. Click Apply to > Quick Apply.

6. Enter the following filter name: “Computers without Embedded Security archived”.

7. Click Apply.

8. Click Next, and set the schedule for the Embedded Security Credentials archive task
to run.

9. Click Finish.

To restore Embedded Security Credentials and Settings

1. On the HP Client Manager Home page, under Management Tasks, click Embedded
Security > HP Embedded Security Wizard.

2. Select the Manage security credentials and settings button, and select Restore
from the drop-down list.

3. Click Next, and enter the Owner password and the Recovery Token password that
were used while archiving the Embedded Security.

4. Click Next.

5. Click Apply to > Quick Apply.

6. Enter the following filter name: “Computers with Embedded Security archived”.

7. Click Apply.

8. Click Next, and set the schedule for the Embedded Security Credentials restore task
to run.

9. Click Finish.

Note
While restoring the Embedded Security credentials and settings for a computer, the
credentials and settings of the owner are restored, and the credentials and settings of
the users are prepared for restoration. The users can restore their credentials and
settings with the help of the Embedded Security Software installed on their computers.
After successful restoration, a message appears on their computers prompting them to
complete the restoration.

Symantec HP Client Manager 7.0 User’s Guide 55

Running Embedded Security Reports
The Embedded Security reports help you gather information related to embedded
security on client computers. You can run, view, or schedule any of the Embedded
Security reports.

To run Embedded Security reports

1. In the HP Client Manager Home page, under Management Tasks, click Embedded
Security > View HP Embedded Security Reports.

2. The first report in the list is run automatically. Click another report in the list in the
left pane to run that report.

3. Some reports have parameters that allow you to customize the report output. Enter
a parameter if desired.

Note
You can also right-click any report and view other report options.

For information on reports, access the online Help.

Symantec HP Client Manager 7.0 User’s Guide 56

Index

A HP client health monitoring softpaq delivery reports 37

settings 40 vista ready reports 32
Alert Manager 39
HP Client Manager 5 requirements, installation 9
Altiris Agent 16, 25
HP Client Manager plug-in 22 restoring Embedded Security
Altiris Agent, deploying 20
HP Instant Support System Health Credentials and Settings data 55
archiving Embedded Security
Scan 29
Credentials and Settings data 55
HP System Software Manager (SSM)
S
security and BIOS settings 38
B SSM 29
HP Tool Update Wizard 29 settings, Altiris Agent 47
BIOS
administration wizard 38 HP tools SoftPaqs
drivers 34 updating 29 delivery reports 37
security settings 38 downloading and storing 36
I filestore configuration and
C installation
update 35
after 12 overview 34
configuring
the softpaq delivery wizard 37
Altiris Agent settings 47 requirements 9
Embedded Security types of 8 start the HPCM quick start 14
Credentials 52 installing support to HP computers 7
creating Password Reset Token File 53 HPCM 8 supported computer list, update 47
Symantec Management Symantec Installation Manager 10
D Platform 10
Symantec Management Platform,
deploying the Altiris Agent 20 Instant Support System Health installing 10
diagnostics Scan 29 system requirements 9
description 44 inventory
reports 46 client inventory information 28 T
data 25
discover computers on the network 19 the softpaq delivery wizard 37
description 27, 27
discovery tools
filter 25, 26 M updating 29
HP computers 22 type of installation 8
non supported computers 22 modifying Security Owner
Password 53
report 25, 26 U
documentation 16 monitoring health 39
updating
downloading and storing softpaqs 36
N HP tools 29
drivers and BIOS 34 supported computer list 47
network, discover computers 19 the softpaq filestore 35
E Notification Server 16 upgrading previous versions of
Embedded Security Configuration 51 Notification Server, upgrading 12 Notification Server 12
using HPCM 13, 27
F P
filter 17 package 18 V
discovery 25, 26 policy 18 Vista ready reports 32
Vista support 32
H Q
health quick start menu, starting 14
health monitoring policy 40
monitoring 39 R
reports 44 report
help 16 discovery 25, 26
how HPCM works 5 reports 18
HP Backup 33 health monitor 44
HP Instant Support
HP BIOS administration wizard 38
Diagnostics 46

Symantec HP Client Manager 7.0 User’s Guide 57