McAfee MSA09EMB1RAA Product Guide - Page 17

Configuring Policies Types of policy categories of the ePO group in which the system is placed. For more information, see How Policy Assignment Rules Work in the ePolicy Orchestrator4.5 Product Guide. NOTE: Policy assignment rules are enforced only if the user logs on as the interactive user. If a user logs on with a runas command, or logs on to a remote desktop or terminal service where the user's logon is not set to interactive, the policy assigned to the system and not the one assigned to the user is enforced. For recommendations on selecting and implementing SiteAdvisor Enterprise Plus policy settings, see Setting up a Browsing Security Strategy. For more information about using policies with ePolicy Orchestrator, see Managing Products with Policies and Client Tasks in the ePolicy Orchestrator Product Guide. Types of policy categories For the SiteAdvisor Enterprise Plus software, configure these policy categories: • Authorize List - Sites that users are authorized to access, and rules for accessing the individual resources on the sites. Several instances of this policy can be applied, resulting in one combined, effective policy. • Enforcement Messaging - Text displayed to users who attempt to access a site, phishing page, or file download that has been blocked, warned, or allowed. • Enable/Disable - Whether the SiteAdvisor Enterprise Plus client software is disabled or enabled for all managed systems assigned this policy, and whether it can be disabled on individual systems. • General - Settings required for managed systems to access the Internet through a proxy server, to turn on Observe mode to tune enforcement rules, and to allow SiteAdvisor Enterprise Plus to be removed with Add or Remove Programs. • Event Tracking - Settings to track domain visits and downloads. If the Web Filtering for Endpoint extension and Web Reporter are installed, you can also track pages views and downloads within a domain and send information to Web Reporter for reports. • Prohibit List - Sites that users are blocked from accessing. Several instances of this policy can be applied resulting in one combined, effective policy. • Rating Actions - Rules for user access based on the safety ratings and threat factors SiteAdvisor assigns to sites, pages on a site, or file downloads. NOTE: A Content Actions policy appears if the Web Filtering for Endpoint extension is installed. See the Web Filtering for Endpoint and Web Reporter Appendix for details. For more information about using policies with ePolicy Orchestrator, see Managing Products with Policies and Client Tasks in the ePolicy Orchestrator Product Guide. Default policy settings During installation, a default SiteAdvisor Enterprise Plus policy is added to the ePO master repository and listed in the Policy Catalog. The default policy settings are: Policy Authorize List Default policy settings No Authorize list is set up. McAfee SiteAdvisor Enterprise Plus 3.0 Product Guide 17