Reference Guide

ManualsBrandsDell ManualsConverged InfrastructureEndpoint Security Suite Pro

211

212

213

214

215

216

217

218

219

220

Security Management Server Virtual - AdminHelp v9.8

205

Quarantine

List

(available only

in Disconnected

mode)

String

This policy will NOT be sent to the client if the Server does

not detect a Disconnected mode install token. The token is

prefixed with *DELLAG*.

The value of this policy includes a collection of hashes,

represented by these JSON examples

Safe List

(available

only in

Disconnected

mode)

String

This policy will NOT be sent to the client if the Server does

not detect a Disconnected mode install token. The token is

prefixed with *DELLAG*.

The value of this policy includes a collection of hashes,

represented by these JSON examples

Agent Settings

Suppress Popup

Notifications

Not Selected

Selected

Not Selected

If Selected, popup notifications for Advanced Threat

Prevention events do not display on the client computer.

Minimum Popup

Notification Level

High

Medium

Low

Severity level of events that result in popup notifications that

display on the client computer.

A setting of High allows onl

y notifications of critical events to

display. A setting of Low displays all on-screen notifications

for all events. Listed below are examples of events that fall

into the severity levels:

High

1) Protection status has changed. (Protected means that the

Advanced Threat Prevention service is running and protecting

the computer and needs no user or administrator interaction.)

2) A threat is detected and policy is not set to automatically

address the threat.

Medium

1) Execution Control blocked a process from starting because

it was detected as a threat.

2) A threat is detected that has an associated mitigation (for

example, the threat was manually quarantined), so the

process has been terminated.

3) A process was blocked or terminated due to a memory

violation.

4) A memory violation was detected and no automatic

mitigation policy is in effect for that violation type.

Low

1) A file that was identified as a threat has been added to the

Global Safe List or deleted from the file system.

2) A threat has been detected and automatically quarantined.

3) A file has been identified as a threat but waived on the

computer.

4) The status of a current threat has changed (for example,

Threat to Quarantined, Quarantined to Waived, or Waived to

Quarantined).

Enable BIOS

Assurance

Selected

Not Selected

If selected, BIOS integrity checks are performed on end user

computers to validate that the BIOS has not been modified

from the Dell factory version. A custom factory image cannot

be used with this feature, as the BIOS has

been modified. This

feature is available only on Dell platforms.

Platforms available with this feature include the newest

release of select XPS, Latitude, Optiplex, Precision

Workstations, and Venues. Speak to your Sales Associates for

details or contact Dell ProSupport.