Enabling and Disabling End Point Control
You can globally enable or disable End Point Control in AMC. Here are two examples of situations where you
might want to temporarily disable EPC:
You have upgraded your version of antimalware software company-wide from version 2.x to 3.x. You could temporarily disable EPC in order to change the device profile that specifies the antimalware software.
You can create new device profiles and zones on a production appliance without disrupting users.
When End Point Control is disabled (which is the default setting), the appliance does not perform the following
Evaluate the attributes of client devices
Classify connection requests into zones
Enforce zone restrictions in access control rules
If End Point Control is disabled, settings for the Default Zone are applied to all user sessions
because, with End Point Control disabled, all users are put in the Default Zone.
To enable End Point Control
In the AMC, navigate to User Access > End Point Control.
In the General section, click Edit.
The End Point Control Settings page displays.
Select Enable End Point Control.
When EPC is enabled, you can specify (on a per-zone basis) how often EPC checks are done: only
once (at login), or at login and then every
<n> minutes for the duration of the session. See Creating a Device Zone or Configuring the Default Zone for more information.
Was This Article Helpful?
Help us to improve our support portal