A policy is a collection of application settings that are defined for an administration group. The policy does not define all application settings.

For an application, you can configure several policies with different values. However, at any particular moment, only one policy can be active for an application in the administration group.

You can enable a disabled policy when a certain event occurs. It means for example that during virus epidemics, you can enable settings for stronger anti-virus protection.

An application can run under different settings for different administration groups. Each group can have its own policy for an application.

The application settings are defined by the policy settings and the task settings.

Nested groups and secondary Administration Servers inherit the tasks from groups that belong to higher hierarchy levels.

You can find the Inherit settings from parent policy setting in the inherited policy properties window in the Settings inheritance group under the General section. You can disable inheritance from parent policy at any time if this ability is not locked by a higher-level policy.

In the Application settings section, you can lock settings that may not be modified in child policies. Each setting in a policy has a "lock" attribute: KSC_lock_open or KSC_lock_closed. The lock icon shows whether you can modify policy settings for nested groups and subordinate Administration Servers.

See also

Network Agent

Virtual Administration Server

Administration group


Administration Console


Managed device

Scope of the task

Management plug-in

Policy profile

Administration Server


Page top