How to use new ITSM profiles

Release Time
07/10/2018
Views
154 times
Category
profiles
Tags

 "ITSM" now includes newer profiles which concentrates more on security and are user-friendly. A new naming convention is used for "ITSM" profiles based on three levels of security and the profiles are categorized as follows:

  • ‘'Windows - Security Level 1 Profile'’ replaces ‘'Optimum Windows Profile’'
  • '‘Windows - Security Level 2 Profile'’ replaces '‘Hardened Windows Profile’'
  • '‘Windows - Security Level 3 Profile’'
  • “Windows - Security Level 1 Profile [Former Standard Profile]” replaces "Standard Windows"  Profile

Step [1] : Go to "ITSM"→ "CONFIGURATION TEMPLATES"→ "Profiles".

Windows - Security Level 1 Profile

‘'Optimum Windows Profile’' is now replaced with ‘'Windows - Security Level 1 Profile'’ in the latest release of "ITSM".  ‘'Windows - Security Level 1 Profile'’ will now be considered as the default profile in"ITSM" until a particular profile is set as default by the user.

Features added:

  ‘'Windows - Security Level 1 Profile'’ now includes an additional setting in "HIPS" that are "Safe Mode" + "Allow Request" both the settings are enabled by default, which now enables the profile to check the critical operating system activities to protect endpoints against malicious actions.

Windows - Security Level 2 Profile

'‘Windows - Security Level 2 Profile'’ replaces'‘Hardened Windows Profile’'  in the latest release of "ITSM"

Features added:

  • '‘Windows - Security Level 2 Profile'’ now includes an additional settings in "HIPS" that are "Safe Mode" + "Block Request" both the settings are enabled by default.
  • '‘Windows - Security Level 2 Profile'’ now also includes a setting ‘Log when this action is  performed’  in Containment sections that is  enabled with active. 

Windows - Security Level 3 Profile

It is the newer highest security profile added in the  "ITSM" which is based on "Windows - Security Level 2 Profile" with additional settings.

Features added :

  • In "HIPS" Settings –> Certain applications , All interpreters are enabled under ‘Heuristic Command Line Analysis’ and ‘Embedded Code Detection’. This provides close monitoring of suspicious activities."

  • Under  "Antivirus Settings"  In "Full Scan" "Use Cloud While Scanning " is enabled by default so that even if the local database is not updated the cloud database which is an up to date virus data base helps in detecting the latest malware.

Windows - Security Level 1 Profile [Former Standard Profile]

"Standard Windows Profile" is now replaced with the “Windows - Security Level 1 Profile [Former Standard Profile]”

It contains same protection level as "Windows - Security Level 1 Profile" for endpoints with former "Standard Windows Profile".