eScan Blog
eScan Website
eScan Forum
eScan Feeds From eScan Wiki
(Difference between revisions)
| Revision as of 05:02, 3 April 2012 Webmktg (Talk | contribs) (→Creating and Deploying New Policy) ← Previous diff |
Current revision Webmktg (Talk | contribs) (→Creating and Deploying New Policy) |
||
| Line 1: | Line 1: | ||
| + | <h2 id="mp-tfp-h2" style="margin:0; background:#C7E587; font-size:120%; font-weight:bold; | ||
| + | border:10 solid #afa3bf; text-align:left; color:#000; padding:0.2em 0.4em">eScan Version 11 (and above) Online Help</h2> | ||
| + | {| class="wikitable" border="0" | ||
| + | |- | ||
| + | |width="1000pt"| | ||
| + | |} | ||
| + | |||
| + | <span class="plainlinks neverexpand"><div style="text-align: right;">[[Escan/english/escan11|Back]]</div></span><br/> | ||
| + | |||
| <h1>Managing Policies</h1> | <h1>Managing Policies</h1> | ||
| - | |||
| A policy or a rule set is a collection of eScan rules that can be executed on an individual computer or computer group. | A policy or a rule set is a collection of eScan rules that can be executed on an individual computer or computer group. | ||
| + | ==='''Managing Policies for Specific Computers'''=== | ||
| - | In Policies For Specific Computers, you also have an option to create policy for specific computer same as for groups. You can create policy by setting various rule-sets and deploy it on the specific client computer. If you want you can also delete policy and view properties of policy whenever required. You can do the following activities: | + | ::::::::::'''1.'''Click Policies for Specific Computers option present in Navigation Panel of eScan Management Console and click New Policy. |
| - | + | ::::::::::'''2.'''You will be forwarded to the New Policy window. Define the Policy name and Rules. Select and add the computers where you wish to implement those policies.. | |
| - | Policies are also available in Managed Computers, which is divided in to two tabs - General and Policy Details. In General tab, you can view the general policy details and in Policy Details tab, you can configure the policy details. | + | ::::::::::'''3.'''Click Deploy. |
| - | + | ::::::::::'''4.'''The policy will be created and deployed on the selected computers. | |
| - | <ul> | + | |
| - | <li>Creating and Deploying New Policy</li> | + | |
| - | <li>Viewing Policy Properties</li> | + | |
| - | <li>Deleting Policy</li> | + | |
| - | <li>Viewing General Policy Settings</li> | + | |
| - | <li>Configuring Policy Details</li> | + | |
| - | </ul> | + | |
| - | + | ||
| - | ==Creating and Deploying New Policy== | + | |
| - | + | ||
| - | + | ||
| - | + | ||
| - | It enables you to create new policy and deploy it on specific client computer. | + | |
| - | + | ||
| - | <b>To create and deploy new policy</b> | + | |
| - | <ol> | + | |
| - | <li>On the <b>Policies For Specific Computers</b> screen, click the <b>New Policy</b> button</li> The <b>New Policy</b> screen appears. | + | |
| - | <li>Under Select <b>Rules-Sets For Policy</b> section, in the <b>Enter Policy Name</b> field, type the policy name.</li> | + | |
| - | <li>Select an appropriate check box, and then click the icon, if you want to view and configure settings.</li> | + | |
| - | <li>Under <b>Select Computers/ Groups</b> section.</li> | + | |
| - | + | ||
| - | <b>Note:</b>Click the (+) sign to expand the folder and view options and click the (-) sign to collapse the required folder. | + | |
| - | + | ||
| - | <li>Select an appropriate check box, the computer or group on which you want to deploy the policy.</li> | + | |
| - | <li>Click the <b>Add</b> button, to add selected computer or group to the list on right side.</li> | + | |
| - | <li>To remove added computer or group from the list on right side, select an appropriate computer or group name, and then click the <b>Remove</b> button.</li> | + | |
| - | <li>Click the <b>Deploy</b> button.</li> The policy gets deployed. | + | |
| - | </ol> | + | |
| - | ==Viewing Policy Properties== | + | |
| - | It enables you to view the list of created policy and its properties. | + | ==='''One Time Password'''=== |
| + | :::eScan password protection restricts user access from violating a security policy deployed in a network. e.g. administrator has deployed a security policy to block all USB devices, but someone wants to access it for genuine reason. How would an administrator give him an access without violating the current security policy? OTP delivers the answer for the same by generating one time password for a period of time like 10 minute or one hour for that specified user to disable the module without violating existing policy. | ||
| - | <b>To view policy property</b> | + | :::'''Working''' |
| - | <ol> | + | ::::::::::'''1.'''eScan Server Administrator defines a policy for a particular group blocking access to the USB ports through the web console. The USB access is blocked through the endpoint security module through Policies for Specific Computers. |
| - | <li>On the <b>Policies For Specific Computers</b> screen, click the <b>New Policy</b> button</li> The <b>New Policy</b> screen appears. | + | ::::::::::'''2.'''For some specific reason, access to a USB port is required in one of the systems within a group where the security policy has been defined. The administrator is notified of this request manually. |
| - | <b>Note:</b>The <b>Properties</b> button is available only when you select an appropriate policy check box for which you want to view properties. | + | ::::::::::'''3.'''The administrator generates a one-time password on the server and manually notifies the user who requires access to the USB port for a specific time period. |
| - | To view properties, you can select only one check box at a time. | + | ::::::::::'''4.'''The user utilizes the one-time password within the group for accessing the USB port for the specified time period defined by the administrator. Other systems within the group cannot access the USB ports as the security policy is set for them thus ensuring that the group policy is not infringed. |
| - | <li>Select an appropriate policy check box, and then click the <b>Properties</b> button.</li> The <b>Properties</b>. screen appears. | + | :::'''How to Access''' |
| - | <li>Click the <b>General</b> tab.</li> The <b>General</b> tab appears. | + | :::Use the following simple steps to access OTPass.EXE. |
| - | <li>View the field details as required. | + | ::::::::::'''1.'''Open Windows Explorer. |
| - | <li>Click the <b>Policy Details</b> tab.</li> The <b>Policy Details</b> tab appears. | + | ::::::::::'''2.'''Go to the path where eScan is installed. |
| - | <li>Select an appropriate check box, and then click the icon, if you want to view settings.</li> View the field details as required. | + | ::::::::::'''3.'''Open eScan Folder. |
| - | <li>Click the <b>Machines</b> tab.</li> The <b>Machines</b> tab appears. | + | ::::::::::'''4.'''Find and open OTPass.exe. |
| - | <li>View the field details as required.</li> | + | ::::::::::'''5.'''Now type the Computer Name for which you wish to generate the password in the respective field. |
| + | ::::::::::'''6.'''Select the time for which the password will be valid on the selected computer using the Valid for drop down present on the interface. | ||
| + | ::::::::::'''7.'''Select the Module that you wish to enable or disable usingcheck boxes present on the interface and click on Generate Passowrd button. | ||
| + | ::::::::::'''8.'''Send this password to the user. | ||
| + | ::::::::::'''9.'''To Pause the selected module on his computer, the user should open eScan Corporate Client using right click on eScan Corporate for Windows icon and click on Pause Protection from the task bar. | ||
Current revision
Contents |
[edit]
eScan Version 11 (and above) Online Help
[edit]
Managing Policies
A policy or a rule set is a collection of eScan rules that can be executed on an individual computer or computer group.
[edit]
Managing Policies for Specific Computers
- 1.Click Policies for Specific Computers option present in Navigation Panel of eScan Management Console and click New Policy.
- 2.You will be forwarded to the New Policy window. Define the Policy name and Rules. Select and add the computers where you wish to implement those policies..
- 3.Click Deploy.
- 4.The policy will be created and deployed on the selected computers.
[edit]
One Time Password
- eScan password protection restricts user access from violating a security policy deployed in a network. e.g. administrator has deployed a security policy to block all USB devices, but someone wants to access it for genuine reason. How would an administrator give him an access without violating the current security policy? OTP delivers the answer for the same by generating one time password for a period of time like 10 minute or one hour for that specified user to disable the module without violating existing policy.
- Working
- 1.eScan Server Administrator defines a policy for a particular group blocking access to the USB ports through the web console. The USB access is blocked through the endpoint security module through Policies for Specific Computers.
- 2.For some specific reason, access to a USB port is required in one of the systems within a group where the security policy has been defined. The administrator is notified of this request manually.
- 3.The administrator generates a one-time password on the server and manually notifies the user who requires access to the USB port for a specific time period.
- 4.The user utilizes the one-time password within the group for accessing the USB port for the specified time period defined by the administrator. Other systems within the group cannot access the USB ports as the security policy is set for them thus ensuring that the group policy is not infringed.
- Working
- How to Access
- Use the following simple steps to access OTPass.EXE.
- 1.Open Windows Explorer.
- 2.Go to the path where eScan is installed.
- 3.Open eScan Folder.
- 4.Find and open OTPass.exe.
- 5.Now type the Computer Name for which you wish to generate the password in the respective field.
- 6.Select the time for which the password will be valid on the selected computer using the Valid for drop down present on the interface.
- 7.Select the Module that you wish to enable or disable usingcheck boxes present on the interface and click on Generate Passowrd button.
- 8.Send this password to the user.
- 9.To Pause the selected module on his computer, the user should open eScan Corporate Client using right click on eScan Corporate for Windows icon and click on Pause Protection from the task bar.
