One small query, We want to integrate Crowdstrike EDR in IGEL OS using custom partitioning(Management pack). is it possible to import EDR solution in IGEL OS ?
Also can anybody tell me what the limitations will be if we integrate EDR solution in IGEL OS ?
Hi Onkar, you mean from trendmicro or another solution?
No,it’s not from trendmicro.
It is different one OEM name is Crowdstrike EDR (Endpoint detection and response) kind of security one
Is there a Linux Client for Ubuntu x64 18.04?
Btw.: the Anitivirus topic is a tough one, and I would assume that we will not close it…
An antivirus could be integrated as a custom partition , but it isn‘t something wo do often. Some thoughts about that:
On our Igel own equipment: in our UD series, we use SSD DOMs that must at least cover our warranty period of 5 years. We rely on our own measurements on R / W cycles, which makes an antivirus incalculable
The construction of our operating system ensures that no changes to existing partitions can be made. Currently only two partitions are in RW mode. These are not systemically relevant
If a malware tries to root itself into another system partition, the checksum of the respective partition would change and prevent the device from starting.
If a malware tries to anchor itself in another user partition, the checksum of the respective partition would change and deactivate the defective part.
At the latest after a restart, the original state is restored
Changing the bootloader is almost impossible thanks to Secure Boot
SSH or console accesses are disabled (our recommendation)
The connection of Bad USB devices can be limited either by policies or third party software
In addition, if you need some more detailled stuff, we have an internal Presentation where the security features are highlighted; please ask your Igel Sales rep. for it, if needed.
Hope it helps a bit.
This helps alot !!! Thanks for the information.
Furthermore, PFA where I can see client/agent for Ubuntu OS so is still possible check by install it with custom partition
Great!! This documentation might help then for a first try:
Here is link with details / docs on security built into IGEL OS: www.igel.com/security-at-the-edge/
Continue reading and comment on the thread ‘Is it possible to create a custome partition for Crowdstrike EDR in IGEL OS?’. Not a member? Join Here!
Learn more, search the IGEL Knowledge Base
Ask a question or comment on the above message thread?Join or log in to the IGEL Community to ask us anything and meet other IGEL customers, partners, and EUC enthusiasts.
Submit a question, or Join Today!