Page tree

Contents

To edit BloxOne Endpoint groups, complete the following:

  1. From the Cloud Services Portal, click Manage > Endpoints.
  2. On the Endpoints page, select the Endpoint Groups tab.
  3. Select the endpoint group to edit from among those listed in the NAME column on the page.
  4. Click the Edit button below the top Action bar.
  5. On the BloxOne Endpoints Group page, apply your edits to the following items:
    • Endpoint Group Name: This is a required field. Enter a name for the BloxOne Endpoint group. Ensure that you enter a unique name for each endpoint group.
    • Description: Enter a brief description about the group.
    • Associated Policy: This field displays the associate security policy when you add the group to the policy. It shows Default Global Policy by default.
    • State: Toggle the switch to the right to enable endpoints. 
    • Automatically remove endpoints after a period of inactivity: To automatically remove endpoints due to inactivity, enter a value from 1 to 180. If you specify 0, automatic removal will be disabled. If you specify 180, BloxOne Endpoint will monitor the status of inactive endpoints for 180 days and then remove the remaining inactive endpoints.  
    • Authentication Settings:
      • Session TTL: Specify the period of time the session is to persist. The default is 8 hours. 
      • Authentication Server Port: Specify the server port that will be used to authenticate the endpoint group. The default is 9094.
      • Authentication Profile: Click Select Authentication Profile to select an authentication profile from the list of profiles available for use with the endpoint group. The available authentication protocols are SAML, OpenID Connect, and MS Active Directory. To learn more, see Adding an Authentication Profile to an Endpoint Group to Enforce a Security Policy
    • Internal Domains List:
      • To add an internal domains list to an Endpoint Group, complete the following:
        • Click the Add button to call up the list of available internal domains.
        • From the Select List under the NAME column, choose an internal domains list to add it to the endpoint group.
        • For information on using internal domains lists with an endpoint group, see Adding Internal Domains to an Endpoint Group.
    • Bypass Mode: To enable Bypass Mode an internal domains list to an Endpoint Group, complete the following:
      • State: Toggle the State switch to Enable from the default disable state to enable bypass mode for the endpoint group.
      • Internal Domains List: Click Add to select an add an internal domains list from the Select List options.
      • FQDN: Use the default FQDN or a custom FQDN.
      • TXT Record: Use the default TXT Record or a custom TXT record by clicking Generate random TXT record.
    • Management Passwords: Change or modify a previously created password by applying changes in the management password text field. Once modifications are complete, click Save & Close
    • Schedule Updates: You can update endpoint groups automatically or defer updates from 1 to 30 days. Deferring can be useful when you want to validate the release of a new endpoint on a few devices prior to updating the endpoint for all users on your network. To schedule an update, specify the following:
      • Automatic Updates: Select this option to have updates installed automatically.
      • Schedule Updates: Select this option to manually choose the day, time, and duration for updates:
        • Day & Time: Schedule a day and time for updates. 
        • Duration: Specify the period of time the system will attempt to perform an update. Select 4 to 10 hours, in one-hour increments. 
      • Defer Updates: Toggle the Disable/Enable switch. You can choose to defer updates for up to four weeks. This option is available only for endpoint groups where automatic updates are enabled. 
  6. Click Save & Close to save your edited endpoint group.

To view addition information on endpoint groups, see the following:

  • No labels

This page has no comments.