Chapter 42 Endpoint Security

The following table gives an overview of the objects you can configure.

Table 189 Configuration > Object > Endpoint Security > Add

LABEL

 

DESCRIPTION

Show Advance

 

Click this button to display a greater or lesser number of configuration

Settings / Hide

 

fields.

Advance

 

 

Settings

 

 

 

 

 

General Settings

 

 

 

Object

 

Specify a descriptive name for identification purposes. You can enter up

Name

 

to 31 characters (“0-9”, “a-z”, “A-Z”, “-”, “_” with no spaces allowed).

 

 

 

Description

 

Enter a description of this object. It is not used elsewhere. You can use

 

 

alphanumeric and ()+/:=?!*#@$_%- characters, and it can be up to 60

 

 

characters long.

Endpoint

 

Select the type of operating system the user’s computer must be using.

Operating

 

The checking items in the rest of the screen vary depending on the

System

 

selected operating system. If you select Mac OSX, there are no other

 

 

 

 

checking items.

 

 

Others allows access for computers not using Windows, Linux, or Mac

 

 

OSX operating systems. For example you create Windows, Linux, and

 

 

Mac OSX endpoint security objects to apply to your LAN users. An

 

 

“others” object allows access for LAN computers using Solaris, HP,

 

 

Android, or other operating systems.

 

 

 

Windows

 

If you selected Windows as the operating system, select the version of

Version

 

Windows here.

 

 

 

Endpoint

 

If you selected Windows as the operating system, you can enter the

must

 

minimum Windows service pack number the user’s computer must have

update to

 

installed. The user’s computer must have this service pack or higher. For

Windows

 

example, “2” means service pack 2. Leave the field blank to have the

Service

 

ZyWALL ignore the Windows service pack number.

Pack

 

 

 

 

 

 

Passing

 

Select whether the user’s computer has to match just one of the

Criterion

 

endpoint security object’s checking criteria or all of them.

 

 

 

Checking Item

 

If you selected Windows as the operating system, you can select whether

- Windows

 

or not the user’s computer must have the Windows Auto Update feature

Update

 

activated.

 

 

 

Checking Item

 

Use the table to list Windows security patches that the user’s computer

- Security

 

must have installed. The user’s computer must have all of the listed

Patch

 

Windows security patches installed to pass this checking item. Click Add

 

 

to create a new entry. Select one or more entries and click Remove to

 

 

delete it or them.

 

 

 

Checking Item

 

If you selected Windows as the operating system, you can select whether

- Personal

 

or not the user’s computer is required to have personal firewall software

Firewall

 

installed. Move the permitted personal firewalls from the Available list

 

 

to the Allowed Personal Firewall List. Use the [Shift] and/or [Ctrl]

 

 

key to select multiple entries. The user’s computer must have one of the

 

 

listed personal firewalls to pass this checking item. For some personal

 

 

firewalls the ZyWALL can also detect whether or not the firewall is

 

 

activated; in those cases it must also be activated.

 

 

 

626

 

ZyWALL USG 20/20W User’s Guide