Performing as-needed maintenance

The following sections describe tasks you must perform at intervals that vary based on conditions in your Tanium environment or based on the policies of your organization.

Rotate certificates for Tanium Console, Module Server, and API access

Transport Layer Security (TLS) certificates secure connections to the Tanium Server, Module Server, and Tanium solution services for Tanium user and solution operations. For example, the SOAPServer.crt certificate secures user access to the Tanium Server for Tanium Console or API activities. If your organization has a certificate rotation policy, replace the TLS certificates at the intervals that the policy specifies. See Tanium Core Platform Deployment Reference Guide: Securing Tanium Console, API, and Module Server access.

Review and update Patch block lists

Review Patch block lists and, if necessary, update them:

  1. Go to Modules > Patch > Block Lists and review the block lists.
  2. Expand Expand each block list that has one or more Targets (computer groups) and verify that the list is Enforced. If a list is Unenforced on endpoints or some endpoints have an Old Version, click the percentage (number) of affected endpoints to analyze the data in Interact.
  3. Edit, create, or delete block lists if necessary to resolve issues. See Tanium Patch User Guide: Managing patches.