Overview of Endpoint Security Policy

The Endpoint Security Policy is collection of security rules that define how Software Blades enforce security for Endpoint Security clients. Each installed and licensed Software Blade contains one or more rules.

Each Software Blade can have:

• A Default Rule (required) - Applies to all users and computers in the organization, unless there are Other Rules that match a user or computer.
• Additional Rules - One or more policy rules that apply to subgroups, users, or computers.
  • Other Rules based on Connection or Compliance state - Policy rules that are only enforced when computers included in the rule are in a specified state: Connected, Disconnected, or Restricted.

Edit the Default Rule to make it meet the needs for as much of your organization as possible. Then create Other Rules for subgroups, users, and computers that require different settings.

An Action is a collection of settings that define a specified behavior for a Software Blade. You can use the same Actions in multiple rules. Each Action that is different than the Action in the default rule shows in bold in the Policy Rule Base.

Policy rules are installed on Endpoint Security clients when you click Install.

In the Policy Rule Base:

• Right-click in a cell to:
  • Edit the cell.
  • Add a rule.
  • Remove a rule.
• Right-click an item in the Action column to change it.