Trust Lockdown Components
Trust Lockdown Service Components
- Organizations
- Login Accounts
- Deleted Login Accounts
- Admin Groups
- Authorized Administrators
- Security Groups
- Endpoints
- Events
- Blocked Apps
- Policy Exceptions
- Run History
- Host Events
- Events
- Endpoints
- Organization Policies
- Organization Members
- Password Requirements
- 2-FA Usage
- Login Accounts
Organization Components Diagram
graph
subgraph Organizations
org[Organization]
subgraph op[Org Policies]
members[Members]
pass[Password\nRequirements]
mfa[2-FA Usage]
end
org --> op
u[Login Accounts]
du[Disabled Login Accounts]
ag[Admin Groups]
members --> u
org --> sgs
u --> ag
u -. Disable .-> du
ag -.-> sgs
org --> ag
subgraph sgs[Security_Groups Tree]
subgraph sg[Security Groups ...]
subgraph eps[Endpoints ...]
subgraph events[Events ...\n\nBlocked Events\nPolicy Exceptions\nRun History\nHost Events\n]
end
end
end
end
end
Security Policy Components Diagram
Policy Components
- Software Sources
- App Security Policies
- Policy Profile
- Code-Signing Certificates
- App Handprints
- Trusted or Monitored Children
- Secure Folder Management
- Policy Profile
- App Security Policies
Security Policy Component Relationships
graph TD
ss[Software Sources]
aps[App Security Policies]
subgraph ap[Policy Profile]
certs[Code-Signing Certificates]
hands[App Handprints]
tcm[Trusted or MonitoredChildren]
fold[Secure Folder Management]
end
ss --> aps
aps --> ap
System Activity Information
-
Org Admins
- Manage Org Policies
- Add and Remove Org Members
- All Org Viewing Privileges
- Manage Org Policies
-
Org Viewers
- View Org Reports
- View Security Group Events
- View Pivot Tables
-
Group Admins
- All Viewing Operation for Security Groups they access
- Security Group Management
- Trust and Untrust Profiles
- Add and Remove App Policies
- Change Security Controls and Inheritance
- Change Security Group Name and Alert Email Address
- Manage Endpoint Agent Deployment
- Host Management
- Override Security Groups Settings for Host
- Disable and Enabled Hosts
- Start and Stop Learn Mode for Host
- Archive and Unarchive Hosts
- Event Management
- Create Polcies from Events
- Export Events
- Archive/Restore Events
System Activity Visibility
graph BT
subgraph ga[Group Admins]
subgraph em[Event Management]
subgraph policies[App Policies for Events]
hands[Policies for Handprints]
certs[Policies for Code-Signing Certificates]
tc[Policies for Trusted and Monitored Children]
mc[Policies for Securely Managed Folders]
end
archive[Archiving Events]
end
end
subgraph oa[Org Admin]
op[Manage\nOrg Policies]
om[Add and Remove\nOrg Members]
subgraph ov[Org Viewer]
reports[Org Reports]
sg[Security Group Events]
pt[View Pivot Tables]
end
end