Traps Agent Settings Rules
Agent settings rules enable you to change preferences related to Traps from a central location. From the
page, you can create rules to manage the following Traps settings:
Determine the frequency at which the Traps agent sends a heartbeat message to the ESM Server. The optimal frequency is determined according to the number of endpoints in the organization and the typical network load. For more information, see Define Heartbeat Settings Between the Agent and the ESM Server.
Configure the amount of time, known as the timeout value, after which Traps stops initiating attempts to reconnect to the ESM Server when the server becomes unreachable. Configure the grace period to specify when Traps should attempt to reestablish communication. For more information, see Define Communication Settings Between the Agent and the ESM Server.
Configure Traps agents to collect new processes from endpoints. When this option is enabled, Traps reports every new process that runs on an endpoint to the ESM Server. You can view the processes in the Process Management view of the ESM Console and choose whether to create security rules related to the processes. For more information, see Collect New Process Information.
User Visibility and Access
Determine whether and how end users can access the Traps Console application. Optionally, you can configure the console so that only administrators can access it. For more information, see Hide or Restrict Access to the Traps Console.
Customize the general settings for all user alerts, including the display image and footer. You can also configure the title that appears on user alerts related to protection modules, restrictions, and unknown files. For more information, see Create a Custom User Alert Message.
Agent Tampering Protection
Windows only) Provides granular control over service protection settings. Prevent attempts to disable or make changes to the Traps processes, services, registry keys and values, and files. When enabled, users cannot tamper with the Traps components for which you enabled tamper protection. For more information, see Manage Agent Tampering Protection.
Windows only) By default, users and administrators must enter a password to uninstall the Traps application. Use this option to change the password. For more information, see Change the Uninstall Password.
Traps does not apply agent setting rules until the Traps agent receives the updated security policy, typically with the next heartbeat communication with the server. To manually retrieve the latest security policy from the ESM Server, select
Check In Nowon the Traps Console.
Select a rule on the Settings page to display additional information about that rule and other actions that you can perform to manage the rule (
Edit). For more information, see Manage Agent Settings Rules.