Configure a Policy Rule
Traps management service provides out-of-the-box protection for all registered endpoints with a default security policy for each type of platform. To fine-tune your security policy, you customize settings in a security profile and attach that profile to a policy rule. Each policy rule that you create must apply to one or more endpoints, endpoint groups, or Active Directory (AD) objects.
Traps discards any policy rules that do not match the endpoint platform. For example, if you create a rule for Mac endpoints but select an endpoint group containing both Windows and Mac endpoints, Traps applies the rule only to the Mac endpoints.
- From Traps management service, select SecurityPolicy Rules.
- Select the platform for which you want to create a new policy rule: Windows, macOS, Linux, or Android.
- Create a new policy rule.
- Select one or more endpoints, endpoint groups, or AD
objects to which the rule applies.
- + Add host.
- Use the search field and endpoint filters to narrow
You can also use a wildcard to search for endpoints or groups that match a partial name. Use ? to match any single character or * to match any string of characters. Traps management service filters the results to match your search term as you type.
- Type—By default, Traps management service displays all Agent hostnames that match your search term and selected platform type. You can also narrow the results by:
If you select Group or an AD object as the type, Traps management service displays all results that match the Type and your search term regardless of the platform you selected.
- Group—Select an endpoint group to which to apply the rule and modify, or Define Endpoint Groups. You can also use search to display endpoint groups that match your search term.
- AD object—AD Computer, AD OU (organizational unit), AD User, or AD Group. To assign policy rules to AD objects, you must associate Traps management service with a Directory Sync Service instance. AD objects also require you to select a Domain and are available for Windows endpoints only.
- Domain—By default, Traps management service displays results for all domains. To see results for a specific domain, select one from the list. The Domain filter is not available if you also filtered by endpoint Group.
- To add multiple endpoints or endpoint groups, + Add host again to return to the add endpoints dialog.
- Select the profile to use for each type of policy.When there are no customized profiles available, Traps management service automatically selects the default policy.
- Save ( ) the rule.
- Change the rule position, if needed, to order the rule
relative to other rules.Traps evaluates rules from top to bottom. When Traps finds the first match it applies that rule as the active policy. Use one of the following methods to change the rule order:
- Hover over the rule, select the anchor on the left, and drag the rule to a new place in the rule hierarchy.
- Select the edit icon next to the policy rule, and then select Move Up to precede the rule below it or Move Down to follow the rule above.
- Next steps...Assess Security Events triggered by security profile rules.
Features Introduced in 2018
Introducing new features in the Traps management service by month during 2018. ...
Define Endpoint Groups
Define Endpoint Groups To easily apply policy rules to specific endpoints, you can define an endpoint group. There are two methods you can use to ...
Filter the Endpoints
Filter the Endpoints From Traps management service, you can view all endpoints that have registered with Traps management service. To reduce the number of results ...
Create a Policy Exception
Create a Policy Exception In some cases, you may need to override the applied security policy to change whether Traps allows a process or file ...
Scan an Endpoint for Malware
Scan an Endpoint for Malware In addition to blocking the execution of malware, Traps can scan your Windows endpoints and attached removable drives for dormant ...
Migrate from the Traps Endpoint Security Manager to the Tra...
Migrate from Traps Endpoint Security Manager to Traps Management Service You can easily migrate the Traps agent from management by the Endpoint Security Manager (ESM) ...
Traps™ Endpoint Security Manager 4.1 Release Notes
Traps™ Endpoint Security Manager 4.1 Release Notes ...