Announcement: New Knowledge Base

4 June 2020: We are pleased to announce the launch of a new Knowledge Base, Changelogs for Business Security Products, where you can find more details, such as bugfixes or new features, about the most recent releases of our business-related products.

Firewall configuration

Hi sir, after upgrade to 14.00 windows firewall is turned on. Now user can create new firewall rule beside f-secure firewall rule. How to configure that local admin could not configure any windows firewall rule through policy manager server.

Answers

  • MJ-perCompMJ-perComp Posts: 1,098


    A) Withdraw local admin rights, which is MOST important to secure your systems. Otherwise all other atempts are void from the beginning.
    B) enable "Ignore all Firewall rules not listed in this profile".

     

  • etomcatetomcat Posts: 1,312

    Hello,

     

    > Withdraw local admin rights, which is MOST important to secure your systems

     

    I think that is a hard-liner approach. Many companies use legacy applications, old in-house developed apps which may require local admin rights. People travelling far with company notebooks may also require a degree of autonomy, so local admin right isn't such an outrageous demand.

     

    BR, Tamas Feher, Hungary.

  • MJ-perCompMJ-perComp Posts: 1,098

    True,
    but if you are local admin you are in control of the system and thus you (and and a malware running under your account) can do anything you want.

    If there are legacy applications that can not be replaced by secure ones (mostly it is a question of money only) operate them in a secured environment, but nowhere with access to the world.

     

    M.

This discussion has been closed.