Support

Support for business applications

Kaspersky Endpoint Security 10 for Linux ARM Edition

Remote administration of the application through Kaspersky Security Center

Managing policies

About policies

Kaspersky Endpoint Security 10 for Linux ARM Edition
Knowledge Base Online Help
FAQ System requirements Forum Contact support Recovery tools Product videos

About policies

January 20, 2022

ID 194554

You can use policies to apply identical Kaspersky Endpoint Security settings to all client computers within an administration group.

You can remotely change the values of settings specified by a policy for individual computers in an administration group using Kaspersky Endpoint Security. You can locally change only those settings modification of which is not prohibited by the policy.

The "lock" status of a setting within a policy determines whether or not an application setting on a client computer can be edited:

  • When a setting is "locked" (sc_changes locked), you cannot edit this setting locally. The setting value specified by the policy is used for all client computers within the administration group.
  • When a setting is "unlocked" (sc_changes locked), you can edit the setting locally. A locally configured setting is applied to all client computers within the administration group. The policy-configured setting is not applied.

After the policy is applied for the first time, local application settings change in accordance with the policy settings.

You can use policies to configure the settings of the File Threat Protection, Firewall, Anti-Cryptor, on-access File Integrity Monitoring, Storage task of Kaspersky Endpoint Security, and other.

The rights to access policy settings (read, write, execute) are specified for each user who has access to the Kaspersky Security Center Administration Server and separately for each functional scope of Kaspersky Endpoint Security. To configure the rights to access policy settings, go to the Security section of the properties window of the Kaspersky Security Center Administration Server.

You can perform the following operations with a policy:

  • Create a policy.
  • Edit policy settings.

    If the user account under which you accessed the Administration Server does not have rights to edit settings of certain functional scopes, the settings of these functional scopes are not available for editing.

  • Delete a policy.
  • Change policy status.

Consult the Kaspersky Security Center documentation for details on using policies that are unrelated to interaction with Kaspersky Endpoint Security.

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.