Configuring and applying NSX Policy for File Threat Protection in the Infrastructure managed by VMware NSX-T Manager
To configure NSX policy for File Threat Protection in the infrastructure managed by VMware NSX-T Manager:
Create an NSX Service Profile for the Kaspersky File Antimalware Protection service as follows:
In the VMware NSX Manager Web Console, in the Security → Endpoint Protection Rules section, go to the Service Profiles tab and select the Kaspersky File Antimalware Protection service in the Partner Service drop-down list.
Click the Add Service Profile button and specify the following settings:
Service Profile Name – an arbitrary name for the profile.
Vendor Template – Default Configuration.
Save the profile of the Kaspersky File Antimalware Protection service (the Save button).
Create an NSX Policy for file threat protection as follows:
In VMware NSX Manager Web Console, in the Security → Endpoint Protection Rules section, on the Rules tab, click the Add Policy button and specify the policy name.
Select the created policy and click the Add Rule button to create a new rule.
Enter an arbitrary name for the rule and specify the following settings:
Groups – one or several NSX Groups that include protected virtual machines. The window for selecting groups is opened by clicking the button on the right side of the field.
Service Profiles – NSX Service Profile for which the policy is created. Select the NSX Service Profile created at the previous step of the procedure (Kaspersky File Antimalware Protection service profile). The window for selecting NSX Service Profile is opened by clicking the button on the right side of the field.