.png?sv=2019-07-07&sig=xray22n4kkkk%2BaMN2eANerBMVHzcaf4PnIi%2Br9TMSsM%3D&spr=https%2Chttp&st=2023-03-25T11%3A26%3A55Z&se=2023-03-25T11%3A36%3A55Z&srt=o&ss=b&sp=r){kind=logo}
VMware Carbon Black EDR - Change Policy By Policy ID
- 16 Mar 2023
- 1 Minute to read
-
Print
-
DarkLight
-
PDF
VMware Carbon Black EDR - Change Policy By Policy ID
- Updated on 16 Mar 2023
- 1 Minute to read
-
Print
-
DarkLight
-
PDF
NOTE
This Enforcement Action was previously named Change VMware Carbon Black Cloud Policy.
VMware Carbon Black EDR - Change Policy By Policy ID changes the VMware Carbon Black Cloud (Carbon Black CB Defense) policy assigned to each entity that are the result of the saved query supplied as a trigger (or devices selected in the asset table).
NOTE
To use VMware Carbon Black EDR - Change Policy By Policy ID, you must successfully configure a VMware Carbon Black Cloud adapter connection.
See Creating Enforcement Sets to learn more about adding Enforcement Actions to Enforcement Sets.
General Settings
- Enforcement Set name (required) - The name of the Enforcement Set. A default value is added by Axonious. You can change the name according to your needs.
- Add description (optional) - Click to add a description of the Enforcement Set. It is recommended to describe what the Enforcement Set does.
- Run action on assets matching following query (required) - Select an asset category and a query. The Enforcement Action will be run on the assets that match the query parameters.
- A query only returns results for the asset type it was created for.
- Not all asset categories are supported for all Enforcement Actions.
- See Actions supported for Activity Logs and Adapter Fetch History Modules
- Action name - The name of the Main action. A default value is added by Axonious. You can change the name according to your needs.
- Configure Action Conditions - Toggle on to enter a condition statement. See Configuring Enforcement Action Conditions to learn more about condition statement syntax.
Action Settings
- Policy ID (required) - Specify the policy ID to be assigned to the endpoint.
For more details about other Enforcement Actions available, see Action Library.