Configure Workstations and Servers Security Settings

Applies To: WatchGuard Advanced EPDR This topic applies to the WatchGuard Advanced EPDR endpoint security product., WatchGuard EPDR This topic applies to the WatchGuard EPDR endpoint security product., WatchGuard EDR This topic applies to the WatchGuard EDR endpoint security product., WatchGuard EPP This topic applies to the WatchGuard EPP endpoint security product., WatchGuard EDR Core This topic applies to the WatchGuard EDR Core, available in the Total Security Suite license.

Configure security settings profiles to define how WatchGuard Endpoint Security protects the workstations and servers on your network against threats, malware, and network attacks.

Settings vary for WatchGuard Advanced EPDR, EPDR, EDR, EDR Core, and EPP. Throughout this documentation, WatchGuard Endpoint Security refers generally to all products. If you do not have a setting in the Endpoint Security management UI, it is not supported by your product.

When you allocate WatchGuard EDR or EDR Core to a new account, and the account does not have a workstations and servers settings profile assigned, the default profile assigned to the All group has anti-exploit and decoy files disabled.

To configure a workstations and servers security settings profile:

1. In WatchGuard Cloud, select Configure > Endpoints.
2. Select Settings.
3. From the left pane, select Workstations and Servers.
4. Select an existing security settings profile to edit, copy an existing profile, or in the upper-right corner of the page, click Add to create a new profile.
   The Add Settings or Edit Settings page opens.

5. In the Name text box, type a name for the settings profile.
6. (Optional) In the Description text box, type a brief description of the settings profile.
7. Select General to configure:
   • Local alerts — For more information, go to Configure Local Alerts
   • Updates — For more information, go to Configure Automatic Knowledge (Signature File) Updates
   • Removal of other security products — For more information, go to Automatic Removal of Security Products
   • File exclusions from scans — For more information, go to Exclude Files and File Paths from Scans
8. To configure the behavior of advanced protection and anti-exploit protection against APTs, targeted attacks, and advanced malware, select Advanced Protection. For more information, go to Advanced Protection.
9. To configure parameters that control the antimalware protection against viruses and threats, including decoy files, select Antivirus. For more information, go to Configure Antivirus Scanning.
10. To configure parameters that control the firewall and the intrusion detection system against network attacks, select Firewall.
    For more information, go to Configure Firewall Settings (Windows Computers).
11. To configure parameters that control user access to the peripheral devices connected to the computer, select Device Control.
    For more information, go to Configure Device Control (Windows Computers).
12. To restrict access to Web content categories and unknown pages, select Web Access Control. For more information, go to Configure Web Access Control.
13. To enable global Audit mode, select Audit mode. For more information, go to Configure Audit Mode.
14. Click Save.
15. Select the profile and assign recipients, if required.
    For more information, go to Assign a Settings Profile.

Related Topics

Security Settings in Endpoint Security

Copy a Settings Profile

Edit a Settings Profile