Jump to content

settings locked on endpoint security clients.

haco
 Share

Recommended Posts

haco

haco 0

Posted
Posted

Hello,

I have deployed era 6 on a new server by import from era5.

 

Now I have the strange behaviour that a lot of the settings on the clients seem te bo locked (see attachment).

 

That makes it impossible to add f.e. firewall rules on some clients locally.

 

Is there somebody who can help me out on this? 

I'm having difficulties finding my way around the new era.

post-5346-0-40066200-1452609830_thumb.png

jimwillsher

jimwillsher 65

Posted
Posted

Find one of your client computers in the ERA 6 console and look at the applied policies - policies may be applied to individual computers or to computer groups. Then for each polocy that's applied, have a look at the settings in that policy.

 

 

Jim

haco

haco 0

Posted
  • Author
Posted

Thank you for your reply. The only applied policy is the policy that was imported from ERA5. Is there a setting to lock applied settings or so in this new version?

  • Administrators
Marcos

Marcos 5,732

Posted
  • Administrators
Posted

Thank you for your reply. The only applied policy is the policy that was imported from ERA5. Is there a setting to lock applied settings or so in this new version?

 

Settings defined in a policy are automatically locked on clients. Those that are not defined (ie. have no Apply nor Force flag) can be modified on clients.

  • ESET Staff
MartinK

MartinK 384

Posted
  • ESET Staff
Posted

Thank you for your reply. The only applied policy is the policy that was imported from ERA5. Is there a setting to lock applied settings or so in this new version?

 

All "applied" settings are automatically locked and there is no way how to disable this functionality. Lock will be removed once policy is no longer assigned to this specific client (remove policy, or remove association between policy and client).

haco

haco 0

Posted
  • Author
Posted

Thanks for the insightfull answers.

 

So If I understand correctly, as soon as I deploy a policy with some firewall rules in to a client, that client is NOT able to add ANY firewall rule anymore?

haco

haco 0

Posted
  • Author
Posted

Just confirmed the above.
I made a policy with only one firewall rule added.

Setting this renders the client unable to add any firewall rule at all.

Is this by design or a bug?

  • Administrators
Marcos

Marcos 5,732

Posted
  • Administrators
Posted

It's by design. A policy is a set of settings and rules that are applied on clients. If a user was able to modify settings set by an administrator, it wouldn't make sense to use policies.

Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...