Policies and Templates

A policy is made up of one or more items from the following groups:

• Workstyles: A Workstyle is part of a policy. It's used to assign Application Rules for users. You can create Workstyles by using the WorkStyle Wizard or by importing them.
• Application Groups: Application Groups are used by Workstyles to group applications together to apply certain Endpoint Privilege Management for Mac behavior.
• Messages: Messages are used by Workstyles to provide information to the end user when Endpoint Privilege Management for Mac has applied certain behavior you have defined and needs to notify the end user.

Users

Disconnected users are fully supported by Endpoint Privilege Management for Mac. When receiving policies from Trellix ePO, EPM-M automatically caches all the information required to work offline, so the settings will still be applied if the client is not connected to the corporate network. Any changes made to the policy will not propagate to the disconnected computer until the McAfee Agent reestablishes a connection to the ePO Server.

Policies

Policies are applied to one or more endpoints. The Policy Summary screen summaries for the number of Workstyles, Application Groups, and Messages in the policy. As this is a blank policy, all summaries will be zero.

Each item summary includes an Edit <Item> button, which allows you to jump to that section of the policy.

EPM-M incorporates an autosave, autosave recovery, and concurrent edit awareness feature to reduce the risk or impact of data loss and prevent multiple users from overwriting individual polices.

A template is a configuration that is merged with your existing policy. A template also consists of any number of Workstyles, Application Groups, Content Groups, Messages, and Custom Tokens.

Edit Group Policy

To edit policy, we recommend you use the Privilege Management Console.

For more information, see EPM Administration Guide.