ENGINSIGHT
WebsiteLoginKostenloser Testzugang
English
English
  • Overview
  • Features
  • Operation
    • Platform overview
    • Start Guide
    • Platform
      • Dashboard
        • Vulnerability Management
        • Operation Centers
        • My Dashboards
        • Configurations
      • Issues
      • Hosts (Pulsar Agent)
        • Pulsar Agent
        • Host details
        • Policy Manager
        • Software Inventory
        • Intrusion Detection System
        • File Integrity Monitoring
        • System events
        • Update Manager
        • Plugins
        • Machine Learning
      • Host (Pulsar-Agent) BETA
        • Pulsar Agent
        • Hostdetails
        • Softwareinventar
        • Plugins
        • Policies
        • Globale Tags
        • Tag Manager
        • System Events
        • Vulnerability Manager
        • Compliance
        • Intrusion Detection System
        • File Integrity Monitoring
        • Advanced Persistent Threats
      • Endpoints (Observer)
        • Endpoint details
        • Domains
        • Certificate Manager
        • Observer
      • Observations
      • Shield
      • Penetration Testing (Hacktor)
        • Run pentest
        • Audits
        • Audit Definitions
        • Target Groups
        • Auth-Providers
        • Hacktor
        • Custom Scripts
      • Discoveries
      • SIEM
        • Data Lake
        • Cockpits
        • Obfuscators
        • Workflows
        • Incidents
        • Extractors
        • Collectors
        • Loggernaut
        • Advanced Settings
        • Models
      • Alerts
      • Settings
      • Organisations
      • Tags
      • Searchbar
  • On-Premises
    • Requirements
    • Installation
      • Automatic Installation
      • Manual Installation
      • Load Balancing
      • SIEM
      • Deinstallation
    • Update
    • Configuration
      • HTTPS and Certificates
      • Licences and Organisations
      • Mail Server
      • 2-Factor Authentication
      • SSO via Office 365
      • Storage Times
      • White Label
      • NGINX Extractor
      • Field Level Encryption
      • Loggernaut-Configurations
  • Technical Details
    • System Requirements
      • Pulsar: Operating Systems
    • Current version numbers
    • Pentest Vectors
    • API
  • Partner section
    • Licenses and organizations
Powered by GitBook
On this page
  • Add Policy
  • Add Policy

Was this helpful?

  1. Operation
  2. Platform
  3. Host (Pulsar-Agent) BETA

Policies

Add Policy

In the Policy Manager, you can manage the settings of multiple hosts collectively. You can:

  • allow monitoring of Advanced Persistent Threats.

  • enable the Enginsight Tray Icon.

  • subject your hosts or all drives to extended software monitoring.

  • restrict network traffic using Shield and block connections.

  • define the execution of custom plugins.

  • activate File Integrity Monitoring.

  • manage AutoUpdates.

  • activate SIEM functions for individual hosts.

The settings are immediately applied to all selected hosts.

Add Policy

To add a new policy, please follow these steps:

  1. Click on Add Policy.

  2. Enter a Name and a Description.

  3. Set the Priority of your policy.

  4. Under Assigned Hosts, specify the hosts to which the settings should be applied. You can either select the hosts directly or use Tags, which we recommend.

  5. You will find grouped settings under Availlable Settings. Click on a field to reveal and manage the grouped settings yourself. The options include:

    1. Enginsight Shield: Enable Shield to restrict network traffic and block connections.

    2. Plugins: Allow the host to execute custom plugins.

    3. File Integrity Monitoring: Enable File Integrity Monitoring.

    4. Advanced Settings

      1. Recording of security relevant events.

      2. Extended software monitoring.

      3. Extended software monitoring on all disks.

      4. Customize API URL.

    5. Automatic OS Updates

      1. Enable automated system updates.

      2. Only Security relevant updates

      3. Restart the system after the update if necessary.

      4. OS update schedule

      5. OS update timezone

    6. Tray

      1. Enable Enginsight Tray Icon.

      2. Show notifications for logged-in users, including security status information.

    7. Advanced Persistent Threats: Enable the detection of Advanced Persistent Threats.

    8. SIEM: Enable log collection through SIEM.

  6. Finally, click on Save Changes to add the policy.

If you create a policy, the settings of the assigned hosts are overwritten. If you delete a policy, the settings are therefore initially retained in the settings of the individual host.

If you want to undo a setting that you have made via a policy, you must therefore also either delete the policy or adjust the settings of the individual host:

  • Adjust the settings of the individual host.

  • Create a new policy that adopts the changed settings for the hosts.

If several policies exist that are assigned to the same host and where the same settings are managed via the policy, Enginsight selects the settings of the last policy created.

PreviousPluginsNextGlobale Tags

Last updated 1 month ago

Was this helpful?