Create and manage a device policy

You create and assign device policies to control the features of the Aurora Protect Desktop and Aurora Focus agents, and to configure how you want the agents to detect and respond to threats.

Execution control is enabled by default in all device policies, allowing the Aurora Protect Desktop agent to alert the management console when unsafe or abnormal files attempt to run. After the Aurora Protect Desktop agent is installed, it analyzes all running processes and modules to determine whether there are threats that are already active.

You can create and assign different device policies to meet the needs of various groups within your organization. Each device is assigned to one device policy. The default policy is assigned to a device if no other policy is assigned.

  1. In the management console, on the menu bar, click Policies > Device Policy.
  2. Do any of these actions:

    Task

    Steps

    Create a new device policy.
    1. Click Add Policy.
    2. On the General Info tab, specify a name for the policy.
    3. Configure the settings for the device policy (see the device policy settings links below).
    4. Click Save.

    Edit a device policy.
    1. Click the name of the device policy that you want to edit.
    2. Configure the settings for the device policy (see the device policy settings links below).
    3. Click Save.

    Copy a device policy.
    1. Click the name of the device policy that you want to copy.
    2. Click CylancePROTECT Copy Icon.
    3. On the General Info tab, specify a name for the copied policy.
    4. Configure the settings for the device policy (see the device policy settings links below).
    5. Click Save.

    Configure device policy settings.

    For more information about the available settings, see:

    For more information about enabling and configuring Aurora Focus using the Aurora Focus Settings tab, see Enable and configure Aurora Focus.

    Automatically assign a device policy to devices in a zone.

    You can associate a device policy with a zone so that when devices are added to that zone, they are automatically assigned that device policy. For more information, see Add and configure a zone.

    Manually assign a device policy to a device
    1. In the management console, on the menu bar, click Assets > Devices.
    2. Select the devices that you want to assign a device policy to.
    3. Click Assign Policy
    4. Select the device policy that you want to assign.
    5. Click Save

    Filter table values within the device policy.
    1. Hover over a column heading to display the available filters.
    2. Filter and sort using the column headings, as necessary.