Security Level Management
Security levels are sets of actions performed on a host in response to security events. A security event occurs when a host fails a security check: health, anti-virus software, anti-spyware software, firewall software, anti-phishing software, hard disk encryption software, PC software, Windows patch, registry, folder sharing, asset registration status, Windows System Settings, operating system password, or MDM collaboration policy check. A security level takes effect after it is referenced in a security policy.
Functions
Parameters
- Block and Kick Out: The system blocks and kicks out noncompliant users, and generates security logs for violations.
- Guest: When the security check fails, the system informs/kicks out the user and records the result in security logs.
- Kick Out: When the security check fails, the system kicks out the user and records the result in security logs.
- Isolate: When the security check fails, the system isolates the user, performs informing/remediation, and records the result in security logs.
- VIP: When the security check fails, the system performs informing/remediation and records the result in security logs.
- Monitor: When the security check fails, the system records the result in security logs only without isolating or informing the user.
- Service Group: Select a service group for the security level. The service group ensures privilege management of the security level. The administrators and maintainers can add the security level to one of the service groups to which they have the management privilege.
Precautions
- A security policy with the security level set to Block and Kick Out Mode cannot be set as the default policy for roaming users.
Related Topics