OpenText Extended ECM - Content Server - OpenText Webroot Unity Integration and Automation

Common Integration Use Cases Between OpenText Extended ECM - Content Server and OpenText Webroot Unity

1. Security Incident Evidence Archiving

Data flow: OpenText Webroot Unity ? OpenText Extended ECM - Content Server

When Webroot detects malware, phishing, or ransomware activity on an endpoint, the incident details, alerts, and related forensic artifacts can be automatically archived in Extended ECM as a governed case record. This creates a secure audit trail for security operations, legal, and compliance teams.

• Stores threat alerts, device details, and remediation actions in a controlled repository
• Supports incident review, audit readiness, and post-incident analysis
• Reduces manual collection of evidence from security consoles and email

2. Endpoint Security Policy and Exception Management

Data flow: OpenText Extended ECM - Content Server ? OpenText Webroot Unity

Security policy documents, approved exception requests, and change approvals can be managed in Extended ECM and then used to trigger updates or exception handling in Webroot Unity. This helps security teams maintain consistent policy governance across the organization.

• Centralizes policy approvals, exception forms, and sign-offs
• Links governance documents to endpoint protection actions
• Improves traceability for audits and internal controls

3. Automated Security Case Management

Data flow: Bi-directional

When Webroot flags a high-risk endpoint, Extended ECM can create a security case folder containing the alert, user details, remediation steps, and supporting documents. As analysts update the case, status changes and resolution notes can be synchronized back to Webroot for operational visibility.

• Creates a single case file for each security event
• Improves collaboration between SOC, IT support, and compliance teams
• Speeds resolution by keeping evidence and actions in one governed workspace

4. Compliance Retention for Security Logs and Reports

Data flow: OpenText Webroot Unity ? OpenText Extended ECM - Content Server

Security reports, endpoint health summaries, and threat intelligence exports from Webroot can be retained in Extended ECM according to corporate retention schedules. This is especially useful for regulated industries that must preserve security records for audits and investigations.

• Applies retention and disposition rules to security documentation
• Supports regulatory audits and internal control testing
• Ensures consistent long-term preservation of security evidence

5. Onboarding and Offboarding Security Documentation

Data flow: OpenText Extended ECM - Content Server ? OpenText Webroot Unity

During employee onboarding or offboarding, Extended ECM can manage the required security forms, approvals, and device assignment records. Once approved, the relevant endpoint protection actions can be initiated in Webroot, such as enrolling a device, applying a protection profile, or removing access from retired devices.

• Connects HR, IT, and security workflows
• Reduces delays in securing new or departing users
• Improves control over endpoint provisioning and deprovisioning

6. Security Awareness and Phishing Response Documentation

Data flow: OpenText Webroot Unity ? OpenText Extended ECM - Content Server

When Webroot identifies phishing attempts or malicious links, related alerts and response documentation can be stored in Extended ECM for awareness training and incident follow-up. Security teams can use these records to track recurring threats and document user coaching actions.

• Captures phishing incidents for training and trend analysis
• Supports repeat offender tracking and remediation workflows
• Provides evidence of security awareness program execution

7. Executive Security Reporting and Governance Dashboards

Data flow: OpenText Webroot Unity ? OpenText Extended ECM - Content Server

Webroot security metrics can be exported into Extended ECM and combined with governance documents, risk assessments, and management reports. This gives leadership a controlled repository for security performance reporting and board-level review materials.

• Consolidates endpoint security metrics with governance content
• Supports monthly risk reviews and executive reporting
• Improves visibility into security posture across business units