Policies
Add Policy
In the Policy Manager, you can manage the settings of multiple hosts collectively. You can:
allow monitoring of Advanced Persistent Threats.
enable the Enginsight Tray Icon.
subject your hosts or all drives to extended software monitoring.
restrict network traffic using Shield and block connections.
define the execution of custom plugins.
activate File Integrity Monitoring.
manage AutoUpdates.
activate SIEM functions for individual hosts.
The settings are immediately applied to all selected hosts.
Add Policy
To add a new policy, please follow these steps:
Click on Add Policy.
Enter a Name and a Description.
Set the Priority of your policy.
Under Assigned Hosts, specify the hosts to which the settings should be applied. You can either select the hosts directly or use Tags, which we recommend.
You will find grouped settings under Availlable Settings. Click on a field to reveal and manage the grouped settings yourself. The options include:
Enginsight Shield: Enable Shield to restrict network traffic and block connections.
Plugins: Allow the host to execute custom plugins.
File Integrity Monitoring: Enable File Integrity Monitoring.
Advanced Settings
Recording of security relevant events.
Extended software monitoring.
Extended software monitoring on all disks.
Customize API URL.
Automatic OS Updates
Enable automated system updates.
Only Security relevant updates
Restart the system after the update if necessary.
OS update schedule
OS update timezone
Tray
Enable Enginsight Tray Icon.
Show notifications for logged-in users, including security status information.
Advanced Persistent Threats: Enable the detection of Advanced Persistent Threats.
SIEM: Enable log collection through SIEM.
Finally, click on Save Changes to add the policy.
If you create a policy, the settings of the assigned hosts are overwritten. If you delete a policy, the settings are therefore initially retained in the settings of the individual host.
If you want to undo a setting that you have made via a policy, you must therefore also either delete the policy or adjust the settings of the individual host:
Adjust the settings of the individual host.
Create a new policy that adopts the changed settings for the hosts.
Last updated
Was this helpful?