Skip to content

Trust Lockdown Components

Trust Lockdown Service Components

  • Organizations
    • Login Accounts
      • Deleted Login Accounts
    • Admin Groups
      • Authorized Administrators
    • Security Groups
      • Endpoints
        • Events
          • Blocked Apps
          • Policy Exceptions
          • Run History
          • Host Events
    • Organization Policies
      • Organization Members
      • Password Requirements
      • 2-FA Usage

Organization Components Diagram

graph 
    subgraph Organizations
        org[Organization]

        subgraph op[Org Policies]
            members[Members]
            pass[Password\nRequirements]          
            mfa[2-FA Usage]             
        end
        org --> op

        u[Login Accounts]
        du[Disabled Login Accounts]
        ag[Admin Groups]

        members --> u
        org --> sgs
        u --> ag
        u -. Disable .-> du
        ag -.-> sgs
        org --> ag

        subgraph sgs[Security_Groups Tree]
            subgraph sg[Security Groups ...]
                subgraph eps[Endpoints ...]
                    subgraph events[Events ...\n\nBlocked Events\nPolicy Exceptions\nRun History\nHost Events\n]
                    end
                end
            end
        end
    end

Security Policy Components Diagram

Policy Components

  • Software Sources
    • App Security Policies
      • Policy Profile
        • Code-Signing Certificates
        • App Handprints
        • Trusted or Monitored Children
        • Secure Folder Management

Security Policy Component Relationships

graph TD
    ss[Software Sources]
    aps[App Security Policies]
    subgraph ap[Policy Profile]
        certs[Code-Signing Certificates]
        hands[App Handprints]
        tcm[Trusted or MonitoredChildren]
        fold[Secure Folder Management]
    end

    ss --> aps
    aps --> ap

System Activity Information

  • Org Admins

    • Manage Org Policies
      • Add and Remove Org Members
      • All Org Viewing Privileges

  • Org Viewers

    • View Org Reports
    • View Security Group Events
    • View Pivot Tables

  • Group Admins

    • All Viewing Operation for Security Groups they access
    • Security Group Management
      • Trust and Untrust Profiles
      • Add and Remove App Policies
      • Change Security Controls and Inheritance
      • Change Security Group Name and Alert Email Address
      • Manage Endpoint Agent Deployment
    • Host Management
      • Override Security Groups Settings for Host
      • Disable and Enabled Hosts
      • Start and Stop Learn Mode for Host
      • Archive and Unarchive Hosts
    • Event Management
      • Create Polcies from Events
      • Export Events
      • Archive/Restore Events

System Activity Visibility

graph BT
    subgraph ga[Group Admins]
        subgraph em[Event Management]
            subgraph policies[App Policies for Events]
                hands[Policies for Handprints]
                certs[Policies for Code-Signing Certificates]
                tc[Policies for Trusted and Monitored Children]
                mc[Policies for Securely Managed Folders]
            end
            archive[Archiving Events]
        end
    end

    subgraph oa[Org Admin]
        op[Manage\nOrg Policies]
        om[Add and Remove\nOrg Members]

        subgraph ov[Org Viewer]
            reports[Org Reports]

            sg[Security Group Events]
            pt[View Pivot Tables]
        end
    end