Configuring Windows Security Settings

Policy Server communicates with the Agent to configure the Windows Security Settings on end users Windows devices. You can disable Guest Accounts, turn on Windows Firewall, block specific inbound ports (e.g. UDP/5355), turn off Remote Desktop, control Autorun settings, and setup sync with NTP.

  1. Go to Policy in the top panel.
  2. Go to Policy > Node Policy > Agent Action in the left Policy panel.
  3. Find and click Configure Windows Security Settings in the Agent Action window.

Under General section:

  1. For CWP Message, add message to be displayed in accordance with the Policy.
  2. For Label, add labels to help categorize your plugins with custom labels that appear in the "Description" field.

Under Agent Actions section:

  1. For Boolean Operator, choose AND or OR to add optional conditions.
  2. For Settings, click Add and select your optional conditions. Criteria/Operator/Value

Under Plugin Settings section:

  1. For Firewall Control, select Turn On to enable Windows Firewall, and enter inbound connection Protocols/Ports for blocking.
  2. For Remote Desktop, select Disable to disable to use of Remote Desktop.
  3. For Recovery Console Auto Logon select Disable or Do Nothing
  4. For Autorun, select Disable to disable autorun on external devices. (Media, External Device, Others)
  5. For Internet Time Synchronization, select Turn On to synchronize with NTP server. Enter IP Address and specify Synch Interval.
  6. For Scheduled Task for Windows XP, select Disable to control scheduled tasks for Windows XP only.
  7. For Disabling Guest Account, turn On to disable the use of Guest Accounts.
  8. For Require a password on wakeup, select Turn On to enable a password to be required upon wakeup.
  9. For Screen, select an inactivity period after which to turn off the screen.
  10. For Sleep, select an inactivity period after which to put the machine to sleep.
  11. For Turn on fast startup, choose to Turn on, Turn off, or to Do Nothing (For Windows 8 and later)
  12. Click Update.
  13. Go to Node Policy in the left Policy panel.
  14. Click the Default Policy in Node Policy window.
  15. Find Agent Action. Click Assign.
  16. Find Configure Windows Settings in the Available section. Select and drag it into the Selected section.
  17. Click Add.
  18. Click Update.