In this part of SEPM, we will be reviewing the Policies Panel. At the end of this article, you will be able to configure policies and ensure that they are applied to your seps.
The Policy pane area above allows us to configure the settings that tell our SEPs how to protect them through the SEPM console . There are 3 default policies in the field of Antivirus and Antispyware . See how we can change these policemen, delete them or configure them according to a security policy we will create.
As it can be seen in Figure 2, it is possible to operate on the policies that come by default. Let’s create a new policy for Antivirus and Antispyware.
Creating a new Policy
As seen in the figure above, we right click on the Antivirus and antispyware panel.
We enter a definition information in order not to forget the policy name that we will create in the wizard that comes up, or to avoid confusion if more than one policy is to be created. The created part is the authorized person who created the polic, and the last modified part shows the information of the date it was created. On the right panel, it is possible to configure a set of policies for Windows and Mac. So what are we waiting for, let’s see what happened.
In the Windows Settings area, Administrator-Defined Scans, in this area , the name of the scan for the scan to be done, the date of the scan, how it will perform an antivirus scan, etc. We can develop a separate virus scanning method, such as the configuration we made in Figure 2, in line with our request, the Weekly Scheduled Scan that appears on the screen will come as a default, in case of an error or optional results.
File System Auto-Protect
With File system auto protec , seps can customize file scanning processes, how to follow the path against malicious codes, whether to delete or not to send my quarantine zone, and also to report the results of an error in the file scanning or optional results.
Scan All files enables scanning of the entire file system. Scan only selected extensions will only scan the selected file extensions. In other words, in cases where we need to create a policy other than default policy for certain files, this option will work.
Allows you to add a few more details to your file scans with Advanced Scanning and Monitoring .
Network settings Allows you to specify network options during file scanning for Seps on remote computers.
Internet Email Auto-Protect, this option is for SEPM to let us select the files to be scanned in the Scan Details section or to scan them by default , how should it react if there is a virus found in the Acitons section in line with the settings we have selected in the scan details section, the Notifications part is that it deletes or cannot delete the virus or danger. In order to send an e-mail, it will be sufficient to enter the smpt information in the Email server section in the Send email to the sender section, which appears as below. You can also use the send email to others option to automatically send mail to your administrators.
Internet Email Auto-Protect Pane
When we examine this pane, Microsoft Outlook Auto-Protect allows us to configure the policy that performs the scans related to microsoft outlook.
The Actions section determines which virus and attack types are scanned and how we will follow through against the threats found.
Notifications, this field gives us information about the scans made against threats, and if we want, we can also enter our smpt settings and send it as an e-mail.
Lotus Notes Auto-Protect this pane has the same menus as Microsoft outlook auto-protect. I wanted to show the notifications part in terms of change.
TruScan Proactive Threat Scans ,
Scan Details It is the panel where the risks are determined and the method to be applied in case of a risk is determined.