getPolicyDetails
This method retrieves all information related to a security policy.
Important
This method has been updated to version 1.1. For information applicable to version 1.0, refer to this section.
Parameters
Parameter | Description | Included in request | Type | Values |
---|---|---|---|---|
| The settings applied to the policy. | Mandatory | Object | Refer to |
Objects
settings
Parameter | Description | Included in request | Type | Values |
---|---|---|---|---|
| You can use this object to manage user interface display options, password protection, proxy settings, power user settings, communication options and update preferences for the target endpoints. | Mandatory | Object | For more information, refer to General. |
| This object contains settings for the antimalware feature, which protects the system against all kinds of malware threats such as viruses, Trojans, spyware, rootkits, and adware. | Mandatory | Object | For more information, refer to Antimalware. |
| This object allows you to configure the settings for the Sandbox Analyzer, which provides a powerful layer of protection against advanced threats by performing automatic, in-depth analysis of suspicious files that are not identified by Bitdefender antimalware engines yet. | Mandatory | Object | For more information, refer to Sandbox Analyzer. |
| Indicates if EDR is enabled for the company. | Mandatory | Boolean | No additional requirements. |
| This setting alows you to configure the Firewall feature, including network profiles and trust levels. The Firewall protects endpoints from inbound and outbound unauthorized connection attempts. The Firewall detects each new connection, compares the adapter information for that connection with the information from the existing profiles and applies the correct profile. | Mandatory | Object | For more information, refer to Firewall. |
| You can use this object to configure your preferences regarding content filtering, data protection for user activity including web browsing, email and software applications, and detection of network attack techniques that try to gain access on specific endpoints. You can restrict or allow web access and application usage, configure traffic scan, antiphishing and data protection rules. | Mandatory | Object | For more information, refer to Network Protection. |
| This object contains the policy settings for Security for Exchange. The feature comes with highly configurable settings, securing the Microsoft Exchange Servers against threats such as malware, spam and phishing. With Exchange Protection installed on your mail server, you can also filter emails containing attachments or content considered dangerous according to your company's security policies. | Mandatory | Object | For more information, refer to Security for Exchange. |
| You can use this object to configure the Device Control feature, which allows preventing the sensitive data leakage and malware infections via external devices attached to endpoints, by applying blocking rules and exclusions via policy to a vast range of device types. | Mandatory | Object | For more information, refer to Device Control. |
| This object contains the settings for the Integirty Monitoring feature. Integrity Monitoring operates based on default rules, provided by Bitdefender, and custom rules. Based on these rules, Integrity Monitoring takes action when events are generated for files, folders, registry entries, users, services and installed software. | Mandatory | Object | For more information, refer to Integrity Monitoring. |
| This object allows you to define communication and update settings for target endpoints assigned with relay role. | Mandatory | Object | For more information, refer to Relay. |
| You can use this object to configure the Full Disk Encryption feature. It manages full disk encryption on endpoints by leveraging BitLocker on Windows, and FileVault and the diskutil command-line utility on macOS, respectively. | Mandatory | Object | For more information, refer to Encryption. |
| This object contains the settings for how the Patch Management feature automatically distributes and installs patches for a vast variety of products. | Mandatory | Object | For more information, refer to Patch Management. |
| You can use this object to configure the Security for Storage feature, and set up Security Servers as scanning service for Network-Attached Storage (NAS) devices and file-sharing solutions compliant with Internet Content Adaptation Protocol (ICAP), such as Nutanix Files and Citrix ShareFile. | Mandatory | Object | For more information, refer to Security for Storage. |
| This object contains the settings for the Risk Management feature. It helps you identify and remediate a large number of network and operating system risks at the endpoint level via risk scan tasks that can be configured in policy to run recurrently on target endpoints. You can choose from a large list of indicators of risks for scanning your endpoints and determine if they are vulnerable. | Mandatory | Object | For more information, refer to Risk Management. |
| Indicates if the Live Search is enabled for the company. | Mandatory | Boolean | For more information, refer to this KB article. |
Return value
Attribute | Type | Description |
---|---|---|
| String | The ID of the queried policy. |
| String | The name of the queried policy |
| String | The username used to created the policy. |
| Timestamp | The date and time when the policy was created. |
| Timestamp | The date and time when the policty was last edited. |
| Object | Indicates the settings applied to the policy. |
| Object | Provides information on the last scan that was performed using the settings applied to this policy. |
| String | The name of the scan. |
| String | The date when the scan was performed. |
Version 1.0
Parameters
Parameter | Type | Optional | Description |
---|---|---|---|
| String | No | The ID of the policy to be queried. |
Return value
This method returns an Object containing the details of the queried policy:
id
- the ID of the queried policyname
- the name of the queried policycreatedBy
- the username who created the policycreateDate
- the date when the policy was createdlastModifyDate
- the date when the policy was last modifiedsettings
- the settings of the policy.lastSuccessfulScan
, object. Includes the following details:name
- the name of the scan.date
- the date on which the scan was performed.
Example
Request:
{ "params": { "policyId" : "55828d66b1a43de92c712345" }, "jsonrpc": "2.0", "method": "getPolicyDetails", "id": "98409cc1-93cc-415a-9f77-1d4f681000b3" }
Response:
"settings": { "general": { "display": { "silentMode": { "enable": false, "iconNotificationArea": true, "showPopups": { "enable": false }, "displayAlertsPopups": false, "showBrowserToolbar": false, "issuesVisibility": { "enable": true, "profile": 1, "general": true, "antimalware": true, "firewall": true, "contentControl": false, "update": true, "installationRestartNotifications": 2, "onAccessNotifications": 3, "onDemandNotifications": 2, "dissinfectionRestartNotification": 3, "updateRestartNotifications": 3, "showAfter": 7, "cloudConnectionNotifications": 3 }, "endpointRestartPopup": { "enable": false, "update": false, "patchManagement": false } }, "supportInformation": { "website": "https://www.bitdefender.com/business/customer-portal/enterprise-standard-support.html", "email": "https://www.bitdefender.com/support/contact-us.html", "phone": "(+1) 954 414 9621" } }, "advanced": { "settings": { "scanSsl": { "enabled": false, "protocols": { "incoming": { "rdp": false }, "outgoing": { "http": false, "ftp": false, "ssh": false } } }, "excludeFinanceDomains": false, "browserSearchAdvisor": true, "removeEvents": { "settings": { "days": 30 } }, "submitReports": true, "submitSuspicious": true, "sendTelemetry": true, "useGlobalProtectiveNetwork": true, "reportActiveSessions": false }, "passwordConfig": { "profile": 1, "value": "" }, "powerUser": { "enabled": false, "password": "" } }, "communication": { "ecsAssignments": [], "ecsProxy": { "profile": 1 }, "cloudServicesProxy": { "profile": 1 }, "remoteShell": { "enabled": false } }, "update": { "settings": { "productUpdateScheduler": { "enabled": true, "occurrence": 1, "updateInterval": 1, "weekDays": { "days": [ 0, 1, 2, 3, 4, 5, 6 ], "startHour": 0, "startMinute": 0, "endHour": 23, "endMinute": 59 }, "postponeReboot": true, "rebootAfterInstalling": { "enable": false, "settings": { "day": 7, "hour": 21, "minutes": 0 } } }, "signatureUpdateScheduler": { "enabled": true, "occurrence": 1, "updateInterval": 1, "weekDays": { "days": [ 0, 1, 2, 3, 4, 5, 6 ], "startHour": 0, "startMinute": 0, "endHour": 23, "endMinute": 59 } }, "updateRing": 0, "proxy": { "enable": false, "profile": 1, "settings": { "server": "http://proxy", "port": 12, "username": "username", "password": "" } }, "defaultLocation": true }, "updateLocations": [ { "server": "/RELAY/", "useProxy": false } ] }, "securityTelemetry": { "enabled": false, "siem": 1, "protocol": 1, "format": 1, "allowSelfSignedCertificate": false, "proxy": { "profile": 3 }, "config": { "url": "", "key": "" } }, "allowChangeByOtherUsers": false }, "antimalware": { "onAccess": { "onAccessScanning": { "enable": true, "profile": 2, "settings": { "general": { "fileTypes": { "scanLocalFile": { "enable": true, "settings": { "fileType": 1, "extensions": "" } }, "scanNetworkFile": { "enable": true, "settings": { "fileType": 1, "extensions": "" } }, "limitFile": { "enable": false, "size": 20 } }, "archives": { "enable": false, "limitArchiveSize": 10, "maximumArchiveDepth": 2 }, "miscellaneous": { "scanBootSectors": true, "scanProcessMemory": false, "scanOnlyNewChangeFiles": true, "scanForKeyloggers": true, "scanPUA": true, "deferredScanning": true }, "scanAction": { "infectedFiles": { "action": 1, "then": 4 }, "suspectFiles": { "action": 0, "then": 0 } } }, "advanced": { "onAccessUnix": true, "onAccessUnixPaths": [ "/home", "/bin", "/sbin", "/usr", "/etc" ] } } }, "ransomwareProtection": { "enable": false }, "virusControl": { "enable": true, "profile": 2, "defaultAction": 3 } }, "onExecute": { "commandLineScanning": { "filelessAttackProtection": true, "enable": true, "amsi": { "enable": true, "reportDetectionsToCaller": true } }, "ransomwareRemediation": { "enable": false, "localAttack": { "enable": true }, "remoteAttack": { "enable": false }, "restore": { "mode": 2 } }, "theta": { "enabled": true }, "sensitiveRegistryProtection": { "enable": true, "action": 1 } }, "onDemand": { "scanTask": [], "deviceScanning": { "enable": true, "settings": { "automaticallyScanCdDvd": true, "automaticallyScanUsb": true, "scanDevices": { "enable": false, "maxim": 0 } }, "scanProfile": 2, "scanSettings": { "fileTypes": 1, "extensions": [], "archives": { "enable": true, "settings": { "limitArchiveSize": 10, "maximumArchiveDepth": 16 }, "scanEmail": true }, "miscellaneous": { "scanBoot": false, "scanRegistry": false, "scanRootkits": true, "ignoreKeyloggers": true, "scanMemory": false, "scanCookie": false, "scanNewChanged": true, "scanPUA": true, "scanNetworkFiles": true }, "action": { "whenInfected": { "action": 2, "then": 4 }, "whenSuspect": { "action": 1, "then": 1 }, "whenRootKitAction": 2 } } }, "contextualScan": { "scanProfile": 4, "scanSettings": { "miscellaneous": { "scanBoot": false, "scanRegistry": false, "scanRootkits": false, "ignoreKeyloggers": false, "scanMemory": false, "scanCookie": false, "scanNewChanged": true, "scanPUA": true, "scanNetworkFiles": true }, "action": { "whenInfected": { "action": 2, "then": 4 }, "whenSuspect": { "action": 4, "then": 1 }, "whenRootKitAction": 2 }, "archives": { "enable": true, "settings": { "limitArchiveSize": 10, "maximumArchiveDepth": 16 }, "scanEmail": true } } } }, "antiTampering": { "enabled": true, "vulnerableDrivers": { "enabled": true, "action": 1 }, "callbackEvasion": { "enabled": true, "actions": { "isolateEndpoint": false, "rebootEndpoint": false, "rebootTime": 0 } } }, "antiExploit": { "enable": true, "predefinedApplications": [ { "details": { "applicationName": "7-Zip Archiver Console", "status": 1, "processName": [ "7z.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "7-Zip Archiver GUI", "status": 1, "processName": [ "7zG.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Acrobat Reader", "status": 1, "processName": [ "Acrobat.exe", "Acrord32.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Foxit Reader", "status": 1, "processName": [ "FoxitReader.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Libre Office, Open Office", "status": 1, "processName": [ "Soffice.bin" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Microsoft Office, Microsoft Word", "status": 1, "processName": [ "Winword.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Microsoft Office, Microsoft Excel", "status": 1, "processName": [ "Excel.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Microsoft Office, Microsoft PowerPoint", "status": 1, "processName": [ "Powerpnt.exe", "Pptview.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Microsoft Office, Microsoft Outlook", "status": 1, "processName": [ "Outlook.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Microsoft Office, Microsoft Equation Editor", "status": 1, "processName": [ "Eqnedt32.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Microsoft Office, Conflict Resolution for Access", "status": 1, "processName": [ "Acecnflt.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Microsoft Office, Filter Loader", "status": 1, "processName": [ "Fltldr.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Microsoft Internet Explorer", "status": 1, "processName": [ "Iexplore.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Mozilla Firefox", "status": 1, "processName": [ "Firefox.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Google Chrome", "status": 1, "processName": [ "chrome.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Mozilla Thunderbird", "status": 1, "processName": [ "Thunderbird.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Opera Browser", "status": 1, "processName": [ "Opera*.exe", "Launcher*.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Apple Safari", "status": 1, "processName": [ "Safari.exe", "WebKit2WebProcess.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "Flash Player Container", "status": 1, "processName": [ "FlashPlayerPlugin*.exe", "Plugin-container.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] }, { "details": { "applicationName": "WinRAR Archiver GUI", "status": 1, "processName": [ "WinRAR.exe" ] }, "exploitDetectionTechniques": [ { "enable": true, "name": 1, "action": 1 }, { "enable": true, "name": 2, "action": 1 } ] } ], "customApplications": [], "systemWideDetections": { "privilegeEscalationStatus": true, "privilegeEscalation": 1, "dpiDetectionsStatus": true, "dpiDetections": 1, "lsassMemoryAccessFromUnknownProcess": 3, "lsassMemoryAccessFromUnknownProcessStatus": true }, "linux": { "systemWideDetections": { "credentialsStatus": true, "credentials": 0, "ptraceStatus": true, "ptrace": 0, "namespaceStatus": true, "namespace": 0, "corruptionStatus": true, "corruption": 0, "permissionsStatus": true, "permissions": 0 } } }, "dynamicThreatDefense": { "enable": true, "enableGlobalReportingForFiles": false, "enableGlobalReportingForNetwork": false, "actionforLocal": 5, "actionforNetwork": 2, "targetedAttack": { "enable": true, "detectionLevel": 2 }, "suspiciousFilesAndNetworkTraffic": { "enable": true, "detectionLevel": 2 }, "exploits": { "enable": true, "detectionLevel": 2 }, "ransomware": { "enable": true, "detectionLevel": 2 }, "grayware": { "enable": true, "detectionLevel": 2 } }, "settings": { "activateExclusions": { "enable": false, "exclusionsItems": [], "useVendorExclusionLists": false, "selectedVendorExclusionLists": [], "exclusionsLists": [ { "id": "66a0c6fd1889de5a2b006362", "name": "p list 1", "items": [ { "type": 1, "path": "C:\\folder\\file1", "modules": [ 1, 2 ] } ] }, { "id": "66a0c71a5725c4d79b0273e2", "name": "p list 2", "items": [ { "type": 1, "path": "C:\\folder\\file2", "modules": [ 1, 2 ] } ] } ], "useExclusionLists": true }, "useBuiltInExclusions": true, "deleteFilesOlderThan": 30, "submitQuarantined": { "enable": true, "hours": 1 }, "rescanQuarantine": true, "copyFilesToQuarantineBeforeDisinfect": true, "allowUserQuarantineActions": true }, "securityServers": { "affinityRule": false, "svaIps": [], "useSSL": false, "enableOnDemandSlots": false, "svaProxy": { "profile": 1 }, "serverOrder": "priority", "svaMpAffinityRules": false } }, "networkSandboxing": { "enabled": false, "analysisMode": 1, "remediationActions": { "defaultAction": 3, "fallbackAction": 2 }, "settings": { "isCloudSandbox": true, "ip": "", "hostname": "", "endpointId": null }, "proxy": { "enabled": false, "settings": { "server": "http://proxy", "port": 12, "username": "", "password": "" } }, "contentPrefiltering": { "categories": { "applications": { "enabled": true, "level": 2 }, "documents": { "enabled": true, "level": 2 }, "scripts": { "enabled": true, "level": 2 }, "archives": { "enabled": true, "level": 2 }, "emails": { "enabled": true, "level": 2 } }, "excludeExtensions": [], "sizeFilter": { "enabled": false, "fileMinSizeKB": 100, "fileMaxSizeMB": 3 } } }, "edrSensor": { "general": { "enabled": true } }, "firewall": { "settings": { "enable": true, "blockPortScan": true, "allowInternetConnectionSharing": false, "monitorWiFiConnections": false, "logVerbosity": { "enable": true, "level": 1 }, "instructionsDetectionSystem": { "enable": false, "profile": 2 }, "exclusions": { "enable": false, "duplicateToNetworkProtection": true, "items": [] } }, "network": { "adapters": [ { "type": "Wired", "networkType": 2, "stealthMode": 2 }, { "type": "Wireless", "networkType": 3, "stealthMode": 2 }, { "type": "Virtual", "networkType": 1, "stealthMode": 2 } ] }, "advanced": { "protectionLevel": 4, "createAgresiveRules": false, "createRulesForAppsBlockedByIDS": true, "monitorProcessChanges": true, "ignoreSignedProcesses": true, "rule": [ { "ruleId": "ca0ef9c7-6a47-484e-9dd9-13098b264c51", "defaultRule": 1, "type": 1, "ruleType": 1, "details": { "name": "Incoming ICMP", "applictionPath": "system", "commandLine": "", "applicationMd5": "" }, "settings": { "localAddress": { "any": true, "portRange": "" }, "remoteAddress": { "any": true, "portRange": "" }, "directlyConnected": { "enable": false }, "protocol": 4, "customProtocol": "1", "direction": 1, "ipVersion": 2 }, "permission": { "home": true, "public": true, "setPermission": 1 }, "enabled": true }, { "ruleId": "055fa434-1673-4b79-bffa-beb24f4d97c1", "defaultRule": 1, "type": 2, "ruleType": 1, "details": { "name": "Incoming ICMPV6", "applictionPath": "system", "commandLine": "", "applicationMd5": "" }, "settings": { "localAddress": { "any": true, "portRange": "" }, "remoteAddress": { "any": true, "portRange": "" }, "directlyConnected": { "enable": false }, "protocol": 4, "customProtocol": "58", "direction": 1, "ipVersion": 3 }, "permission": { "home": true, "public": true, "setPermission": 1 }, "enabled": true }, { "ruleId": "b5f950e4-bdf8-47a7-bc8a-f6bab22e0d80", "defaultRule": 1, "type": 3, "ruleType": 2, "details": { "name": "Incoming Remote Desktop Connections", "applictionPath": "", "commandLine": "", "applicationMd5": "" }, "settings": { "localAddress": { "any": true, "portRange": "3389" }, "remoteAddress": { "any": true, "portRange": "" }, "directlyConnected": { "enable": false }, "protocol": 2, "direction": 2, "ipVersion": 1 }, "permission": { "home": true, "public": true, "setPermission": 1 }, "enabled": true }, { "ruleId": "360be232-46e8-49df-bed7-c42e0e5c5b4a", "defaultRule": 1, "type": 4, "ruleType": 2, "details": { "name": "Sending E-mails", "applictionPath": "", "commandLine": "", "applicationMd5": "" }, "settings": { "localAddress": { "any": true, "portRange": "" }, "remoteAddress": { "any": true, "portRange": "25;143;465;587;993" }, "directlyConnected": { "enable": false }, "protocol": 2, "direction": 3, "ipVersion": 1 }, "permission": { "home": true, "public": true, "setPermission": 1 }, "enabled": true }, { "ruleId": "ac668a0f-1a1c-467e-8415-3a9f158288b9", "defaultRule": 1, "type": 5, "ruleType": 1, "details": { "name": "Web Browsing HTTP", "applictionPath": "", "commandLine": "", "applicationMd5": "" }, "settings": { "localAddress": { "any": true, "portRange": "" }, "remoteAddress": { "any": true, "portRange": "80;443" }, "directlyConnected": { "enable": false }, "protocol": 2, "direction": 3, "ipVersion": 1 }, "permission": { "home": true, "public": true, "setPermission": 1 }, "enabled": true }, { "ruleId": "789e0858-690b-4bae-a204-c7416516882c", "defaultRule": 1, "type": 6, "ruleType": 1, "details": { "name": "Network Printing", "applictionPath": "%system%\\spoolsv.exe", "commandLine": "", "applicationMd5": "" }, "settings": { "localAddress": { "any": true, "portRange": "" }, "remoteAddress": { "any": true, "portRange": "20;21;35;80;92;161;162;170;515;631;1314;1392;2081;2291;3096;3396;3800;3910;3911;4088;4168;4391;4392;4393;4394;5309;6716;7228;8033;8100;8609;9100;10631;40404" }, "directlyConnected": { "enable": false }, "protocol": 1, "direction": 3, "ipVersion": 1 }, "permission": { "home": true, "public": true, "setPermission": 2 }, "enabled": true }, { "ruleId": "b0b73273-db41-413a-ac03-36d969cd290b", "defaultRule": 1, "type": 7, "ruleType": 1, "details": { "name": "Windows Explorer Traffic on FTP", "applictionPath": "%windir%\\explorer.exe", "commandLine": "", "applicationMd5": "" }, "settings": { "localAddress": { "any": true, "portRange": "" }, "remoteAddress": { "any": true, "portRange": "20;21" }, "directlyConnected": { "enable": false }, "protocol": 2, "direction": 1, "ipVersion": 1 }, "permission": { "home": true, "public": true, "setPermission": 2 }, "enabled": true }, { "ruleId": "d15889dd-5528-455f-8f3f-2a0fa2226ab2", "defaultRule": 1, "type": 8, "ruleType": 1, "details": { "name": "Windows Explorer Traffic on HTTP", "applictionPath": "%windir%\\explorer.exe", "commandLine": "", "applicationMd5": "" }, "settings": { "localAddress": { "any": true, "portRange": "" }, "remoteAddress": { "any": true, "portRange": "80;443" }, "directlyConnected": { "enable": false }, "protocol": 2, "direction": 3, "ipVersion": 1 }, "permission": { "home": true, "public": true, "setPermission": 2 }, "enabled": true } ] } }, "contentControl": { "webAccess": { "enable": true, "profileType": 3, "useExceptions": true, "webRules": [], "scheduler": [] }, "webCategoriesFilter": { "profileType": 3, "schedule": { "id": "669fa9fa2e5ac2030cafc395", "name": "p schedule 10", "subschedules": [ { "name": "1", "enableDetailedAlerts": true, "action": 2, "days": [ 1 ], "categories": [], "timeInterval": { "startHour": 0, "startMinute": 0, "endHour": 23, "endMinute": 59 } } ] }, "enableDetailedAlerts": true, "treatAsExceptions": false, "enable": true, "settings": { "ads": 1, "advice": 1, "alcohol": 1, "astrology": 1, "auto": 1, "blogs": 1, "business": 1, "computersAndSoftware": 1, "education": 1, "entertainment": 1, "fileSharing": 1, "banks": 1, "food": 1, "gambling": 1, "games": 1, "government": 1, "hacking": 1, "violence": 1, "healthMedicine": 1, "hobbies": 1, "hosting": 1, "illegal": 1, "im": 1, "jobSearch": 1, "kids": 1, "lifeStyle": 1, "matureContent": 1, "narcotics": 1, "news": 1, "occult": 1, "onlineDating": 1, "onlinePayment": 1, "pets": 1, "pharmacy": 1, "onlinePhoto": 1, "pornography": 1, "portals": 1, "radioMusic": 1, "realEstate": 1, "cultReligions": 1, "scams": 1, "searchEngines": 1, "onlineShopping": 1, "socialNetworks": 1, "society": 1, "sports": 1, "suicide": 1, "tabloids": 1, "timeWasters": 1, "tobacco": 1, "travel": 1, "photosVideos": 1, "weapons": 1, "webMail": 1, "webProxy": 1 } }, "antiphishing": { "enable": true, "defaultAction": 1, "settings": { "protectionAgainstFraud": true, "protectionAgainstPhishing": true } }, "application": { "enable": false, "rules": [] }, "dataProtection": { "enable": false, "rules": [], "exclusions": [] }, "traffic": { "enable": true, "enableExclusions": false, "trafficScan": { "incomingEmails": false, "outgoingEmails": false, "webTraffic": true, "emailTraffic": false }, "exclusions": [] }, "networkMonitor": { "enable": true, "attackTechniques": [ { "enable": true, "name": 1, "action": 3 }, { "enable": true, "name": 2, "action": 3 }, { "enable": true, "name": 5, "action": 3 }, { "enable": true, "name": 3, "action": 3 }, { "enable": true, "name": 4, "action": 3 } ] } }, "exchange": { "blackList": { "enable": false, "list": [] }, "quarantine": { "deleteFilesOlderThan": 15 }, "antimalware": { "enable": true, "settings": { "appendFooter": true, "footerText": "This email was scanned by Bitdefender", "infectedText": "The $FILENAME attachment was infected with $VIRUS. The attachment was deleted by Bitdefender.", "quarantinedText": "The $FILENAME attachment was infected with $VIRUS. The attachment was moved to quarantine by Bitdefender.", "unscannableInfectedText": "The $FILENAME attachment could not be scanned. The attachment was deleted by Bitdefender.", "unscannableQuarantinedText": "The $FILENAME attachment could not be scanned. The attachment was moved to quarantine by Bitdefender." }, "rules": [ { "name": "Default rule", "active": true, "default": true, "scope": { "applyTo": 4, "from": 1, "to": 1 }, "settings": { "scanMode": 1, "extensions": [], "maximumSizeEnabled": false, "maximumSize": 3, "maximumDepthEnabled": true, "maximumDepth": 4, "scanPUA": true }, "actions": { "infected": { "action": 2, "then": 4 }, "suspected": { "action": 1, "then": 1 }, "unscannable": { "action": 1, "then": 1 }, "stopIfMatched": true } } ], "exclusions": [], "scanTasks": [] }, "antispoofing": { "enable": false, "domainIpList": [] }, "antispam": { "enable": true, "settings": { "rblDnsAddress": "", "rblDnsMsTimeout": 500, "rblServers": [] }, "whiteList": { "enable": true, "list": [] }, "rules": [ { "name": "Default rule", "default": true, "active": true, "scope": { "applyTo": 1, "from": 1, "to": 1 }, "aggressivity": 2, "filters": { "asian": false, "cyrillic": false, "fapMaterial": true, "url": true, "rbl": false, "cloud": true, "heuristic": true }, "checkAuthConnections": false, "actions": { "type": 1, "exchangeSCL": true, "modifySubject": true, "modifySubjectText": "[SPAM]", "appendHeader": false, "headerName": "X-Bitdefender-Spam", "headerValue": "Spam", "saveMailToDisk": false, "archiveToAccount": false, "stopIfMatched": true } } ] }, "contentControl": { "attachmentFiltering": { "enable": false, "settings": { "replacementText": "A Bitdefender attachment filtering rule detected the $FILENAME attachment and deleted it. Contact your email administrator for more information." }, "exclusions": { "trustedSenders": [], "trustedRecipients": [], "excludeOnlyIfAllRecipientsAreTrusted": false }, "rules": [] }, "contentFiltering": { "enable": false, "exclusions": { "trustedSenders": [], "trustedRecipients": [], "excludeOnlyIfAllRecipientsAreTrusted": false }, "rules": [] } } }, "deviceControl": { "dataLossPrevention": { "enable": false, "rules": [ { "deviceClass": 1, "ruleName": "Bluetooth Devices", "productIds": [], "deviceIds": [], "permissions": { "ALL": 1, "PCI": 1, "PCMCIA": 1, "USB": 1, "UNKNOWN": 1 } }, { "deviceClass": 2, "ruleName": "CDROM Drives", "productIds": [], "deviceIds": [], "permissions": { "ALL": 1 } }, { "deviceClass": 4, "ruleName": "Floppy Disk Drives", "productIds": [], "deviceIds": [], "permissions": { "1394": 1, "ALL": 1, "IDE": 1, "ISAPNP": 1, "PCI": 1, "PCMCIA": 1, "SCSI": 1, "SD": 1, "USB": 1, "UNKNOWN": 1 } }, { "deviceClass": 5, "ruleName": "IEEE 1284 4", "productIds": [], "deviceIds": [], "permissions": { "1394": 1, "ALL": 1, "IDE": 1, "ISAPNP": 1, "PCI": 1, "PCMCIA": 1, "SCSI": 1, "USB": 1, "UNKNOWN": 1 } }, { "deviceClass": 6, "ruleName": "IEEE 1394", "productIds": [], "deviceIds": [], "permissions": { "1394": 1, "ALL": 1, "IDE": 1, "ISAPNP": 1, "PCI": 1, "PCMCIA": 1, "SCSI": 1, "USB": 1, "UNKNOWN": 1 } }, { "deviceClass": 7, "ruleName": "Imaging Devices", "productIds": [], "deviceIds": [], "permissions": { "1394": 1, "ALL": 1, "ISAPNP": 1, "PCI": 1, "PCMCIA": 1, "SCSI": 1, "USB": 1, "UNKNOWN": 1 } }, { "deviceClass": 8, "ruleName": "Modems", "productIds": [], "deviceIds": [], "permissions": { "1394": 1, "ALL": 1, "ISAPNP": 1, "PCI": 1, "PCMCIA": 1, "SCSI": 1, "USB": 1, "UNKNOWN": 1 } }, { "deviceClass": 10, "ruleName": "Tape Drives", "productIds": [], "deviceIds": [], "permissions": { "1394": 1, "ALL": 1, "IDE": 1, "ISAPNP": 1, "PCI": 1, "PCMCIA": 1, "SCSI": 1, "USB": 1, "UNKNOWN": 1 } }, { "deviceClass": 12, "ruleName": "Windows Portable", "productIds": [], "deviceIds": [], "permissions": { "1394": 1, "ALL": 1, "ISAPNP": 1, "PCI": 1, "PCMCIA": 1, "SCSI": 1, "USB": 1, "UNKNOWN": 1 } }, { "deviceClass": 13, "ruleName": "LPT/COM Ports", "productIds": [], "deviceIds": [], "permissions": { "1394": 1, "ALL": 1, "ISAPNP": 1, "PCI": 1, "PCMCIA": 1, "SCSI": 1, "USB": 1, "UNKNOWN": 1 } }, { "deviceClass": 14, "ruleName": "SCSI Raid", "productIds": [], "deviceIds": [], "permissions": { "ALL": 1, "PCI": 1, "PCMCIA": 1, "SCSI": 1, "UNKNOWN": 1 } }, { "deviceClass": 16, "ruleName": "Printers", "productIds": [], "deviceIds": [], "permissions": { "1394": 1, "ALL": 1, "ISAPNP": 1, "PCI": 1, "PCMCIA": 1, "SCSI": 1, "USB": 1, "UNKNOWN": 1 } }, { "deviceClass": 18, "ruleName": "Network Adapters", "productIds": [], "deviceIds": [], "permissions": { "1394": 1, "ALL": 1, "ISAPNP": 1, "PCI": 1, "PCMCIA": 1, "SCSI": 1, "USB": 1, "UNKNOWN": 1 } }, { "deviceClass": 19, "ruleName": "Wireless Network Adapters", "productIds": [], "deviceIds": [], "permissions": { "1394": 1, "ALL": 1, "ISAPNP": 1, "PCI": 1, "PCMCIA": 1, "SCSI": 1, "USB": 1, "UNKNOWN": 1 } }, { "deviceClass": 20, "ruleName": "Internal Storage", "productIds": [], "deviceIds": [], "permissions": { "ALL": 1, "IDE": 1, "UNKNOWN": 1 } }, { "deviceClass": 21, "ruleName": "External Storage", "productIds": [], "deviceIds": [], "permissions": { "1394": 1, "ALL": 1, "ISAPNP": 1, "PCI": 1, "PCMCIA": 1, "SCSI": 1, "SD": 1, "USB": 1, "UNKNOWN": 1 } } ] }, "dataLossPreventionExceptions": { "enable": false, "rules": [] } }, "integrityMonitor": { "realTime": { "enabled": false, "ruleProcessingMode": "medium", "mode": 2, "ruleSetIds": [] } }, "relay": { "communication": { "automaticDiscovery": false, "cloudServicesProxy": { "profile": 1 }, "applianceProxy": { "profile": 1 } }, "update": { "updateInterval": { "enable": true, "hours": 1 }, "downloadFolder": "", "updateLocations": { "enable": true, "locations": [ { "server": "https://update-cloud.2d585.cdn.bitdefender.net:443", "useProxy": false } ] } } }, "encryption": { "enabled": false, "mode": 0, "encryptPolicy": { "tpm": { "shouldAskForPassword": false } }, "exclusions": { "enabled": false, "items": [] } }, "patchManagement": { "maintenanceWindows": [ { "id": "66a21650b47a59a114082aa2", "name": "Patch Management Maintenance Window (1)", "settings": { "downloadSettings": { "fallbackOnDirectDownload": true, "cachingServers": [] }, "scanPatchesSettings": { "enabled": true, "useSameSchedule": false, "useFallbackSchedule": false, "runOnSystemChanges": true, "scheduler": { "recurrence": 3, "startDate": 1721865600, "between": { "startHour": 21, "startMinute": 0, "endHour": 23, "endMinute": 59 }, "weeklyRecurrence": { "every": 1, "days": [ 0, 1, 2, 3, 4, 5, 6 ] } } }, "installPatchesSettings": { "updateType": { "securityPatchesSettings": { "enabled": false }, "nonSecurityPatchesSettings": { "enabled": false }, "manuallyApprovedPatchesSettings": { "enabled": false } }, "enabled": false, "manuallyApprovedPatchIds": [], "ifMissedRunAsSoonAsPossible": false, "specificVendorAndProduct": { "type": 1, "enabled": false, "vendorProductsPairs": [] } } } } ] }, "storageProtection": { "icap": { "enabled": false, "serviceName": "bdicap", "enablePort": true, "listenPort": 1344, "enableSslPort": false, "listenSslPort": 11344, "archiveScan": { "enabled": false, "archiveMaxSize": 3, "archiveMaxDepth": 2 }, "congestionControl": { "mode": 1, "maxConnections": 300 }, "scanAction": { "defaultAction": 1 } }, "exclusions": { "enabled": false, "exclusionItems": [] } }, "indicatorsOfRisk": { "enabled": false, "scheduler": { "recurrenceType": 1, "runEvery": 1, "runPer": 2, "recurrentDaySun": 0, "recurrentDayMon": 0, "recurrentDayTue": 0, "recurrentDayWed": 0, "recurrentDayThu": 0, "recurrentDayFri": 0, "recurrentDaySat": 0, "recovery": { "mode": { "runImmediately": false } }, "startDate": { "date": "07/29/2024", "hours": 15, "minutes": 30 } } }, "liveSearch": { "enabled": false } }