Reset the Endpoint Security policy without ePO
Last Modified: 2023-07-04 05:01:34 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
Reset the Endpoint Security policy without ePO
Technical Articles ID:
KB90523
Last Modified: 2023-07-04 05:01:34 Etc/GMT Environment
Endpoint Security (ENS) 10.x
Problem
You want to revert the policy changes after you deploy a policy that does the following:
Solution
To remediate such situations, you can use the The Access Protection rule To access the help for the executable, issue the command USAGE: ESConfigTool.exe /export <filename> [/module <TP|FW|WC|ESP> ] [/unlock <password> ] [/plaintext ] ESConfigTool.exe /import <filename> [/module <TP|FW|WC|ESP> ] [/unlock <password> ] [/policyname <name> ] ESConfigTool.exe /help "encrypted file" in the Description means a file that has been created using the Minimal information is logged in We recommend that the administrator locks the client interface with a strong password to avoid unauthorized access and configuration of policies. The To replace the problematic ENS policy with a known good policy:
Previous Document ID (Secured)
TN301129
Affected ProductsLanguages:This article is available in the following languages: |
|