Host Intrusion Prevention 7.0.0 for ePO 4.0 Product Guide - McAfee

More documents

Recommendations

Info

Configuring General Policies Working with Trusted Applications policies To... Perform an action on one or more applications at the same time To perform an action on a single application Do this... Select them and click: Enable to enable a disabled application. Disable to disable an enabled application. Deleteto delete applications. Copy to to copy applications to another policy. You are prompted to indicate the policy. Click: Edit to edit an existing application. See Creating and editing Trusted Application rules for details. Duplicate to make a copy of the application within the same policy and named ‘copy of’ the original application. Delete to remove the application from the list. 4 Click Save to save changes. 5 To assign more than one instance of the Trusted Applications policy do either of the following: • For a group, go to Systems | System Tree, select a group, and then on the Policies tab click Edit Assignment. • For a system, go to Systems | System Tree, select a group that contains the system, and then on the System tab, select the system and select More Actions | Modify Policies on a Single System. 6 On the Policy Assignment page, click New Policy Instance to assign the additional policy instance, Select Disabled to disable the additional policy instance. Figure 35: Assigning multiple instances of the policy 84 McAfee Host Intrusion Prevention 7.0 Product Guide for use with ePolicy Orchestrator 4.0
Configuring General Policies Working with Trusted Applications policies 7 Click Save to apply all changes. Creating and editing Trusted Application rules Use this task to create a new trusted application or edit an existing one from the Trusted Applications policy page. Task For option definitions, click ? on the page displaying the options. 1 On the Trusted Applications policy page, click Add Rule to create a new rule; click Edit under Actions to edit an existing rule. NOTE: You can also create trusted applications based on an event. For details, see Creating event-based exceptions and trusted applications. 2 Type or edit the name and status of the application, including whether the application is trusted for IPS, firewall and application hooking. Figure 36: Trusted Application 3 Type or edit the processes for the trusted application. 4 Click OK to save changes. McAfee Host Intrusion Prevention 7.0 Product Guide for use with ePolicy Orchestrator 4.0 85
Page 1 and 2:
McAfee Host Intrusion Prevention 7.
Page 3 and 4:
Contents Introducing Host Intrusion
Page 5 and 6:
Contents Creating firewall rule gro
Page 7 and 8:
Introducing Host Intrusion Preventi
Page 9 and 10:
Page 11 and 12:
Page 13 and 14:
Managing Your Protection Management
Page 15 and 16:
Page 17 and 18:
Page 19 and 20:
Page 21 and 22:
Page 23 and 24:
Page 25 and 26:
Configuring IPS Policies Overview o
Page 27 and 28:
Configuring IPS Policies Working wi
Page 29 and 30:
Page 31 and 32:
Page 33 and 34: Configuring IPS Policies Working wi
Page 45 and 46: Configuring Firewall Policies The F
Page 47 and 48: Configuring Firewall Policies Overv
Page 57 and 58: Configuring Firewall Policies Worki
Page 69 and 70: Configuring Application Blocking Po
Page 77 and 78: Configuring General Policies Workin
Page 83: Configuring General Policies Workin
Page 87 and 88: Working with Host Intrusion Prevent
Page 107 and 108: Index clients (continued) updating
Page 109 and 110: Index McAfee Default policy (contin
Page 111 and 112: Index T troubleshooting, Host IPS C
show all

Host Intrusion Prevention 7.0.0 for ePO 4.0 Product Guide - McAfee

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?