Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

CSA policy question

I have a client who does not want to stop users from installing applications but wants to protect against trojan/worms/rootkit etc.

It would seem these two competing philosophies would not be easily inmplemented within CSA.

Is there a base rule module that offers this minimum type of protection?


Re: CSA policy question

You can allow all users to install applications and/or you can allow only some users to perform this action. This all depends upon the group the end user is placed in and the rule modules associated with the group.

If you just want the minimum protection against trojans and worms that can be done, too.

Your client might find they want more than the basic protection. You could show them by placing the end users in Test Mode and logging the results to the CSA Management Console. This testing and tuning process allows for customized configurations based upon the type of machine and or the needs of the end user.

Hope this helps.