ZyXEL Communications ZLD 35.1.1 Endpoint Security Commands Summary, 35.1.2 Endpoint Security Object Commands, Requirements

Chapter 35 Endpoint Security

Requirements

User computers must have Sun’s Java (Java Runtime Environment or ‘JRE’) installed and enabled with a minimum version of 1.4.

35.1.1 Endpoint Security Commands Summary

The following table describes the values required for many endpoint security object commands. Other values are discussed with the corresponding commands.

Table 160 Input Values for Endpoint Security Commands

LABEL	DESCRIPTION
profile_name	The name of the endpoint security object. You may use 1-31 characters (“0-9”, “a-z”, “A-
	Z”, “-”, “_” with no spaces allowed).

file_path	This is a file with the full directory path in quotation marks ““. For example, “C:\Program
	Files\Internet Explorer\iexplore.exe”.

The following sections list the endpoint security object commands.

35.1.2 Endpoint Security Object Commands

This table lists the commands for creating endpoint security objects. You must use the configure terminal command to enter the configuration mode before you can use these commands.

Table 161 Endpoint Security Object Commands

COMMAND	DESCRIPTION
[no] eps failure-messages	Specify a message to display when a user’s computer fails the endpoint security
failure_messages	check. Use up to 1023 characters (0-9a-zA-Z;/?:@=+$\.-_!*'()%,”). For example,
	“Endpoint Security checking failed. Please contact your network administrator for
	help.”. The no command removes the setting.
show eps failure-messages	Displays the message to display when a user’s computer fails the endpoint security
	check.

[no] eps profile profile_name	Enters the sub-command mode. The no command removes an endpoint security
	object.
[no] {anti-virus	If you set windows as the operating system (using the os-typecommand), you can
personal-firewall}	set whether or not the user’s computer is required to have anti-virus or personal
activate	firewall software installed.
[no] anti-virus	Sets a permitted anti-virus software package. If you want to enter multiple anti-virus
anti_virus_software_name	software packages, use this command for each of them. Use the list signature
detect-auto-protection	anti-viruscommand to view the available anti-virus software package options.
{enable disable	detect-auto-protection: Set this to enable if the specified anti-virus software is
ignore}
	not only detectable for the installation but also detectable for the activation status.
	You can check the settings for each anti-virus software by using the show eps
	signature anti-virus command.
	The user’s computer must have one of the listed anti-virus software packages to pass
	this checking item. For some anti-virus software the ZyWALL can also detect whether
	or not the anti-virus software is activated; in those cases it must also be activated.

270
270	ZyWALL (ZLD) CLI Reference Guide