[KB7276] Add and modify Device control rules using ESET Security Management Center (7.x)

Issue

ESET business product in Limited Support status

This content applies to an ESET product version that is currently in Limited Support status and is scheduled to reach End of Life status soon.

For a complete list of supported products and support level definitions, review the ESET End of Life Policy for business products.

Upgrade ESET business products.

Solution

 Endpoint users: Perform these steps on individual client workstations

Add a Device control rule using a policy

In this example, we block access to all Bluetooth devices for all users.

  1. Open ESET Security Management Center Web Console (ESMC Web Console) in your web browser and log in.
     
  2. Click Policies New Policy.

Figure 1-1
Click the image to view larger in new window

  1. In the Basic section, type the name of the new policy under Name. Under Description, type the description of the new policy.

Figure 1-2
Click the image to view larger in new window

  1. Click Settings and select ESET Endpoint for Windows from the drop-down menu.
     
  1. Select Device Control and click the slider bar next to Integrate into system. Restart the client computer for this change to take effect.
     
  1. Click Edit next to Rules.

Figure 1-3
Click the image to view larger in new window

  1. Click Add.

Figure 1-4

  1. Next to Name, type a name for the new rule. Next to Device type, select Bluetooth Device from the drop-down menu. Next to Action, select Block from the drop-down menu. To make the rule more specific, enter the VendorModel and Serial of devices you want to target. Next to Logging severity, select an option from the drop-down menu and click OK.

Figure 1-5

  1. Click Save. The new rule will be displayed in the Rules list.

Figure 1-6

  1. Click the Assign section and click Assign.

Figure 1-7
Click the image to view larger in new window

  1. Select the check box next to each computer or group you want to assign this rule to and click OK. Click Finish to apply the policy on the selected computers.

Figure 1-8
Click the image to view larger in new window

 


Edit or remove an existing rule
  1. Click Policies and expand Custom Policies.
  1. Expand ESET Endpoint for Windows, select the policy you want to edit, click the gear icon next to policy name and click Edit.

Figure 2-1
Click the image to view larger in new window

  1. Click Settings, select Device control and next to Rules, click Edit.

Figure 2-2
Click the image to view larger in new window

  1. To edit or remove a rule:
    1. Edit a rule — Select the rule and click Edit. After the edits are made, click OK, then click OK again to confirm the changes in Advanced setup.
       
    2. Remove a rule — Select the rule and click Remove. Click OK, then click OK again to confirm the changes in Advanced setup.

Figure 2-3

  1. Click Finish.

Figure 2-4
Click the image to view larger in new window